Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.14 views

PT-2026-47650

Name of the Vulnerable Software and Affected Versions Spring Framework versions 7.0.0 through 7.0.7 Spring Framework versions 6.2.0 through 6.2.18 Spring Framework versions 6.1.0 through 6.1.27 Spring Framework versions 5.3.0 through 5.3.48 Description A WebFlux application with a compromised...

4.2CVSS5.6AI score0.00197EPSS
Exploits0References8
CVE
CVE
added 2025/02/18 6:39 p.m.175 views

CVE-2025-24894

CVE-2025-24894 concerns SPID.AspNetCore.Authentication (AspNetCore Remote Authenticator for SPID). The vulnerability arises from insufficient validation of SAML response signatures in VerifySignature(), which may allow an attacker to impersonate any SPID/CIE user by injecting a valid signature in...

9.1CVSS7.1AI score0.0056EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/09 12:0 a.m.9 views

CVE-2024-55225

An issue in the component src/api/identity.rs of Vaultwarden prior to v1.32.5 allows attackers to impersonate users, including Administrators, via a crafted authorization request...

9.2AI score0.00587EPSS
Exploits0References3
NVD
NVD
added 2019/11/04 5:15 p.m.16 views

CVE-2013-2258

Cryptocat before 2.0.22 has Nickname User Impersonation...

5.3CVSS5.4AI score0.0136EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2019/04/09 12:0 a.m.4 views

PT-2019-2081 · Palo Alto Networks · Globalprotect Agent

Name of the Vulnerable Software and Affected Versions: GlobalProtect Agent version 4.1.0 for Windows GlobalProtect Agent versions 4.1.10 and earlier for macOS Description: The issue is related to weaknesses in the authentication procedure of the GlobalProtect Agent, which may allow a local...

10CVSS5.3AI score0.00275EPSS
Exploits0References10
Rows per page
Query Builder