OpenSSL 安全特征问题漏洞

Openssl is an open source capable of implementing the Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols as a general purpose cryptographic library by the Openssl team. The product supports a variety of encryption algorithms , including symmetric ciphers , hash algorithms ,...

istio/istio: authorization bypass when using AUTO_PASSTHROUGH

An authorization bypass vulnerability was found in istio. When the istio gateway is configured with TLS mode AUTOPASSTHROUGH, it is possible for a malicious user to bypass the authorization checks and gain access to protected services. The highest threat from this vulnerability is to data...

lldpd: buffer overflow in the lldp_decode function in daemon/protocols/lldp.c

A buffer overflow was found in the lldpdecode function in daemon/protocols/lldp.c in lldpd. This flaw allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries. This threatens the...

CVE-2021-28683

An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable NULL pointer dereference and crash in TLS when an unknown TLS alert code is received...

PT-2021-17903 · Envoy · Envoy

Name of the Vulnerable Software and Affected Versions: Envoy versions prior to 1.71.1 Description: A remotely exploitable issue exists where a NULL pointer dereference and crash can occur in TLS when an unknown TLS alert code is received. Recommendations: For versions prior to 1.71.1, update to a...

Protecting SAP applications with the new Azure Sentinel SAP threat monitoring solution

As one of the leading solution providers for applications that manage business processes, SAP is the custodian for massive amounts of sensitive data in many of the biggest organizations in the world. Since these applications are business-critical, an SAP security breach can be catastrophic. Yet,...

Protecting SAP applications with the new Azure Sentinel SAP threat monitoring solution

As one of the leading solution providers for applications that manage business processes, SAP is the custodian for massive amounts of sensitive data in many of the biggest organizations in the world. Since these applications are business-critical, an SAP security breach can be catastrophic. Yet,...

Open Redirect in Flask-Security-Too

Flask-Security allows redirects after many successful views e.g. /login by honoring the ?next query param. There is code in FS to validate that the url specified in the next parameter is either relative OR has the same netloc network location as the requesting URL. This check utilizes Pythons...

UBUNTU-CVE-2021-32920

Prosody before 0.11.9 allows Uncontrolled CPU Consumption via a flood of SSL/TLS renegotiation requests...

jetty: Resource exhaustion when receiving an invalid large TLS frame

When using SSL/TLS with Jetty, either with HTTP/1.1, HTTP/2, or WebSocket, the server may receive an invalid large greater than 17408 TLS frame that is incorrectly handled, causing high CPU resources utilization. The highest threat from this vulnerability is to service availability...

Elasticsearch Logstash 信任管理问题漏洞

Elasticsearch Logstash is a suite of log analysis and monitoring tools from the Dutch company Elasticsearch. A security vulnerability exists in Logstash. The vulnerability stems from a TLS certificate validation vulnerability in the program's monitoring feature, which could allow a...

The vulnerability of the implementation of the SSL VPN micro-programming software for network interfaces of the SMA 100 series, which allows a intruder to gain unauthorized access to protected information.

The vulnerability of the implementation of the SSL VPN micro-programming system for network interfaces of SONICWALL series SMA 100 is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow an attacker, operating remotely, to gain...

Istio 授权问题漏洞

Istio is a set of open platforms for connecting, managing, and securing microservices. Istio is vulnerable to an authorization issue. The vulnerability stems from the fact that when the istio gateway is configured in TLS mode "AUTOPASSTHROUGH", it is possible for an attacker to bypass authorizati...

Juniper Junos OS DoS (JSA11137)

The version of Junos OS installed on the remote host is affected by a denial of service vulnerability as referenced in the JSA11137 advisory. An unauthenicated remote attacker can bypass the storm-control feature on devices due to a rare race condition exists in the Layer 2 Address Learning Daemo...

CVE-2021-25848

Improper validation of the length field of LLDP-MED TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to using fixed loop counter variable without checking the actual available length via a crafted lldp packet...

CVE-2021-25847

Improper validation of the length field of LLDP-MED TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to controllable loop counter variable via a crafted lldp packet...

Moxa Camera VPort 06EC-2V 数字错误漏洞

MOXA Camera VPort 06EC-2V is a camera device from MOXA Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can cause a denial of service via a crafted lldp packet...

Moxa Camera VPort 06EC-2V 缓冲区错误漏洞

Moxa Camera VPort 06EC-2V is a camera device from Moxa MOXA of Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can obtain compromised information by controlling a loop counter variable via a crafted lldp packet...

Juniper Junos DoS (JSA11148)

The version of Junos OS installed on the remote host is affected by a denial of service vulnerability as referenced in the JSA11148 advisory. On Juniper Networks MX Series and EX9200 Series platforms with Trio-based MPCs Modular Port Concentrators where Integrated Routing and Bridging IRB...

Moxa Camera VPort 06EC-2V 数字错误漏洞

MOXA Moxa Camera VPort 06EC-2V is a camera device from Moxa Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can cause a denial of service by passing a carefully crafted lldp packet to a negative number in the memcpy function...