Lucene search
K

10068 matches found

CVE
CVE
added 2025/08/14 4:29 p.m.21 views

CVE-2025-20251

CVE-2025-20251 affects Cisco Secure Firewall ASA/FTD VPN Web Server: authenticated remote attacker can use crafted HTTP requests to create or delete arbitrary files on the OS due to insufficient input validation, potentially dropping VPN sessions and causing DoS; device reboot may be required. Ex...

8.5CVSS7.4AI score0.00407EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/14 4:28 p.m.7 views

CVE-2025-20127 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software for Firepower 3100 and 4200 Series TLS Cipher Denial of Service Vulnerability

A vulnerability in the TLS 1.3 implementation for a specific cipher for Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software for Cisco Firepower 3100 and 4200 Series devices could allow an authenticated, remote attacker to consume...

7.7CVSS0.00577EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 4:28 p.m.36 views

CVE-2025-20127

CVE-2025-20127 affects Cisco Secure Firewall ASA/FTD on Firepower 3100 and 4200 Series. The issue stems from TLS 1.3 cipher TLS_CHACHA20_POLY1305_SHA256, allowing an authenticated, remote attacker to exhaust resources tied to incoming TLS 1.3 connections and potentially deny new SSL/TLS or VPN co...

7.7CVSS7.3AI score0.00577EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/14 4:28 p.m.3 views

CVE-2025-20134 Cisco Adaptive Security Appliance and Firepower Threat Defense Software SSL/TLS Certificate Denial of Service Vulnerability

A vulnerability in the certificate processing of Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service DoS...

8.6CVSS6.7AI score0.00371EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 4:15 p.m.6 views

CVE-2025-33142

IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for TLS connections...

7.5CVSS0.00252EPSS
Exploits0References1
OSV
OSV
added 2025/08/14 4:15 p.m.4 views

CVE-2025-33142

IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for TLS connections...

7.5CVSS5.8AI score
Exploits0References1
Cisco
Cisco
added 2025/08/14 4:0 p.m.6 views

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 3100 and 4200 Series TLS 1.3 Cipher Denial of Service Vulnerability

A vulnerability in the TLS 1.3 implementation for a specific cipher for Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software for Cisco Firepower 3100 and 4200 Series devices could allow an authenticated, remote attacker to consume...

7.7CVSS7.3AI score0.00577EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 3:41 p.m.3 views

CVE-2025-33142 IBM WebSphere Application Server information disclosure

IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for TLS connections...

5.3CVSS7.1AI score0.00252EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/14 3:41 p.m.6 views

CVE-2025-33142 IBM WebSphere Application Server information disclosure

IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for TLS connections...

5.3CVSS0.00252EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 3:41 p.m.36 views

CVE-2025-33142

IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for TLS connections (CVE-2025-33142). The issue is described as improper certificate validation (CWE-295). IBM has issued multiple security bulletins across products that bundle or include WAS (e.g., IBM Engi...

7.5CVSS7.1AI score0.00252EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2025/08/14 1:51 p.m.3 views

httpd: mod_ssl: access control bypass by trusted clients is possible using TLS 1.3 session resumption

An access control bypass vulnerability was found in Apache httpd. The Apache HTTP Server with some modssl configurations can bypass the access controls by trusted clients using TLS 1.3 session resumption. A client trusted to access one virtual host may be able to access another if...

9.1CVSS5.7AI score0.0097EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/08/14 1:51 p.m.1 views

httpd: HTTP Session Hijack via a TLS upgrade

An HTTP session hijacking flaw was found in Apache httpd. In some modssl configurations on Apache HTTP Server, an HTTP desynchronization attack allows a man-in-the-middle attacker to hijack an HTTP session via a TLS upgrade...

7.4CVSS5.7AI score0.00516EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/08/14 1:43 p.m.2 views

httpd: HTTP Session Hijack via a TLS upgrade

An HTTP session hijacking flaw was found in Apache httpd. In some modssl configurations on Apache HTTP Server, an HTTP desynchronization attack allows a man-in-the-middle attacker to hijack an HTTP session via a TLS upgrade...

7.4CVSS5.7AI score0.00516EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/08/14 1:43 p.m.2 views

httpd: mod_ssl: access control bypass by trusted clients is possible using TLS 1.3 session resumption

An access control bypass vulnerability was found in Apache httpd. The Apache HTTP Server with some modssl configurations can bypass the access controls by trusted clients using TLS 1.3 session resumption. A client trusted to access one virtual host may be able to access another if...

9.1CVSS5.7AI score0.0097EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/08/14 12:0 a.m.2 views

Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞

Cisco Secure Firewall Adaptive Security Appliance and Cisco Secure Firewall Threat Defense are both products of Cisco, Inc.Cisco Secure Firewall Adaptive Cisco Secure Firewall Adaptive Security Appliance is an enterprise-class firewall software.Cisco Secure Firewall Threat Defense is an integrate...

7.7CVSS6.6AI score0.00577EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/08/14 12:0 a.m.3 views

A Hierarchical IDS for Zero-Day Attack Detection in Internet of Medical Things Networks

The Internet of Medical Things IoMT is driving a healthcare revolution but remains vulnerable to cyberattacks such as denial of service, ransomware, data hijacking, and spoofing. These networks comprise resource constrained, heterogeneous devices e.g., wearable sensors, smart pills, implantables,...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.5 views

Fedora 42 : perl-Authen-SASL (2025-fddaaaf9f0)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-fddaaaf9f0 advisory. 2.1900 Fixed - CVE-2025-40918 Insecure source of randomness, required addition of dependency on Crypt::URandom Changed - Modules Authen::SASL::Perl::CRAMMD5,...

6.5CVSS5.5AI score0.00394EPSS
Exploits0References2
NVD
NVD
added 2025/08/13 3:15 p.m.8 views

CVE-2025-52585

When a BIG-IP LTM Client SSL profile is configured on a virtual server with SSL Forward Proxy enabled and Anonymous Diffie-Hellman ADH ciphers enabled, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical...

8.7CVSS0.00312EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/08/13 2:43 a.m.6 views

CVE-2025-8901

Out of bounds write in ANGLE in Google Chrome prior to 139.0.7258.127 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS8AI score0.00289EPSS
Exploits0
Debian
Debian
added 2025/08/12 5:58 p.m.6 views

[SECURITY] [DSA 5972-1] openjdk-17 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5972-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 12, 2025 https://www.debian.org/security/faq -...

8.6CVSS7.7AI score0.01058EPSS
Exploits1
Rows per page
Query Builder