3 matches found
CVE-2025-0556
In Progress® Telerik® Report Server, versions prior to 2025 Q1 11.0.25.211 when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local netwo...
CVE-2025-0556
In Progress Telerik Report Server, before 2025 Q1 (11.0.25.211) using the older .NET Framework implementation, the communication of non-sensitive information between the service agent process and the app host process happens over an unencrypted tunnel, exposing it to potential local network traff...
ABB Ellipse information leakage hole reveals vulnerabilities
Ellipse is an EAM software application for asset-intensive industries. ABB Ellipse is vulnerable to an information leakage hole disclosure vulnerability that allows an attacker to discover authentication credentials by sniffing local network traffic when authenticating Ellipse to LDAP/AD using th...