55 matches found
Check Point Identity Agent Full 代码问题漏洞
Check Point Identity Agent Full is a terminal identity awareness agent developed by Check Point Technologies. There is a code vulnerability in Check Point Identity Agent Full, which stems from improper handling of executable file parsing during log collection. This vulnerability may allow...
EUVD-2019-5594
Malware in sbrugna...
EUVD-2006-6285
Malware in sbrugna...
EUVD-2017-3297
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2022-3279
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An unhandled exception in job log parsing in GitLab CE/EE affecting all versions prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1 allows an...
Semantic-Aware Parsing for Security Logs
Security analysts struggle to quickly and efficiently query and correlate log data due to the heterogeneity and lack of structure in real-world logs. Existing AI-based parsers focus on learning syntactic log templates but lack the semantic interpretation needed for querying. Directly querying lar...
CVE-2019-10410
Jenkins Log Parser Plugin 2.0 and earlier did not escape an error message, resulting in a cross-site scripting vulnerability exploitable by users able to define log parsing rules...
CVE-2019-14388
cPanel before 82.0.2 allows unauthenticated file creation because Exim log parsing is mishandled SEC-507...
GitLab 安全漏洞
GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, and CI/CD continuous integration and continuous delivery features. A security vulnerability exists in GitLab that stems from uncontrolled CPU consumptio...
Siemens SIMATIC WinCC和Siemens SIMATIC STEP 代码问题漏洞
SIMATIC S7-PLCSIM simulates the S7-1200, S7-1500 and several other PLC derivatives and is shipped as part of SIMATIC STEP 7. SIMATIC STEP 7 TIA Portal is an engineering software package for configuring and programming SIMATIC controllers.SIMOCODE ES is the central software package for the...
SUSE CVE-2024-42332
The researcher is showing that due to the way the SNMP trap log is parsed, an attacker can craft an SNMP trap with additional lines of information and have forged data show in the Zabbix UI. This attack requires SNMP auth to be off and/or the attacker to know the community/auth details. The attac...
CVE-2024-42332
The researcher is showing that due to the way the SNMP trap log is parsed, an attacker can craft an SNMP trap with additional lines of information and have forged data show in the Zabbix UI. This attack requires SNMP auth to be off and/or the attacker to know the community/auth details. The attac...
CVE-2024-42332 New line injection in Zabbix SNMP traps
The researcher is showing that due to the way the SNMP trap log is parsed, an attacker can craft an SNMP trap with additional lines of information and have forged data show in the Zabbix UI. This attack requires SNMP auth to be off and/or the attacker to know the community/auth details. The attac...
ABB Cylon Aspect 3.08.00 Off-By-One
ABB Cylon Aspect 3.08.00 logMix/YumLookup.php Off-by-One Error in Log Parsing Vendor: ABB Ltd. Product web page: https://www.global.abb Affected version: NEXUS Series, MATRIX-2 Series, ASPECT-Enterprise, ASPECT-Studio Firmware: =3.08.00 Summary: ASPECT is an award-winning scalable building energy...
ABB Cylon Aspect 3.08.00 (log(Mix/Yum)Lookup.php) Off-by-One Error in Log Parsing
Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description A vulnerability was identified in a PHP script where an off-by-one...
DRUPAL-CONTRIB-2024-039
This module provides Drupal with various security-hardening options, for example by emitting various configurable HTTP response headers. The module doesn't sufficiently validate input in Content Security Policy CSP violation reports. This can cause errors when a logging module e.g. dblog or syslo...
CVE-2024-30072
CVE-2024-30072 is a Windows Event Logging Service vulnerability described as a Windows Event Trace Log File Parsing Remote Code Execution vulnerability. Affected product is Microsoft Windows (Event Logging Service); the underlying issue relates to parsing Event Trace Log files that can lead to ar...
Gato - GitHub Self-Hosted Runner Enumeration And Attack Tool
Gato, or GitHub Attack Toolkit, is an enumeration and attack tool that allows both blue teamers and offensive security practitioners to evaluate the blast radius of a compromised personal access token within a GitHub organization. The tool also allows searching for and thoroughly enumerating publ...
K30683410: systemd vulnerability CVE-2018-16866
Security Advisory Description An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable. CVE-2018-16866 Impact There is n...
SUSE CVE-2018-16866
An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A local attacker can use this flaw to disclose process memory data. Versions from v221 to v239 are vulnerable...