Lucene search
K

4 matches found

Veracode
Veracode
added 2025/08/19 9:50 a.m.6 views

Remote Code Execution (RCE)

github.com/1panel-dev/1panel is vulnerable to Remote Code Execution RCE. The vulnerability is due to incomplete certificate verification during HTTPS communication between the Core and Agent endpoints, which allows an attacker to gain unauthorized access and execute commands with high privileges...

9.8CVSS8.3AI score0.00901EPSS
Exploits5References6Affected Software1
Snyk
Snyk
added 2025/08/01 11:42 p.m.2 views

Arbitrary Command Injection

Overview Affected versions of this package are vulnerable to Arbitrary Command Injection due to incomplete certificate verification during HTTPS communication between Core and Agent endpoints. An attacker can execute arbitrary commands with high privileges by bypassing authentication and accessin...

9.8CVSS8.1AI score0.00901EPSS
Exploits5References2
Positive Technologies
Positive Technologies
added 2025/08/01 12:0 a.m.6 views

PT-2025-31703 · 1Panel · 1Panel

Name of the Vulnerable Software and Affected Versions: 1Panel versions 2.0.5 and below Description: 1Panel is a web interface and MCP Server that manages websites, files, containers, databases, and LLMs on a Linux server. The HTTPS protocol used for communication between the Core and Agent...

8.1CVSS8.2AI score0.00901EPSS
Exploits5References13
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 1:40 p.m.33 views

Security Bulletin: Vulnerabilities in Apache HttpComponents affect IBM InfoSphere Information Server (CVE-2012-6153 CVE-2014-3577)

Summary Apache HttpComponents vulnerabilities while verifying certificates was addressed by IBM InfoSphere Information Server. Vulnerability Details CVEID: CVE-2012-6153 DESCRIPTION: Apache HttpComponents could allow a remote attacker to conduct spoofing attacks, caused by an incomplete fix relat...

5.8CVSS0.09149EPSS
Exploits1Affected Software1
Rows per page
Query Builder