Lucene search
K

6 matches found

EUVD
EUVD
added yesterday5 views

EUVD-2026-43556

Spring Boot Admin Server before 4.1.2 contains a server-side request forgery vulnerability that allows unauthenticated attackers to register instances with attacker-controlled healthUrl and managementUrl parameters without validation against private IP ranges or metadata endpoints. Attackers can...

8.6CVSS6.2AI score0.00283EPSS
Exploits0References6
Cvelist
Cvelist
added 2 days ago29 views

CVE-2026-62242 Spring Boot Admin Server < 4.1.2 SSRF via Unauthenticated Instance Registration

Spring Boot Admin Server before 4.1.2 contains a server-side request forgery vulnerability that allows unauthenticated attackers to register instances with attacker-controlled healthUrl and managementUrl parameters without validation against private IP ranges or metadata endpoints. Attackers can...

8.6CVSS0.00283EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2002-0862

Malware in sbrugna...

7.5CVSS6.4AI score0.01499EPSS
Exploits0References2
NVD
NVD
added 2007/03/20 8:19 p.m.22 views

CVE-2007-1527

The LLTD Mapper in Microsoft Windows Vista does not verify that an IP address in a TLV type 0x07 field in a HELLO packet corresponds to a valid IP address for the local network, which allows remote attackers to trick users into communicating with an external host by sending a HELLO packet with th...

5CVSS6.4AI score0.10623EPSS
Exploits0References6
CVE
CVE
added 2007/03/20 8:0 p.m.61 views

CVE-2007-1527

The CVE-2007-1527 issue affects the LLTD Mapper in Microsoft Windows Vista. It occurs because the LLTD Mapper does not verify that an IP address in a TLV type 0x07 field in a HELLO packet corresponds to a valid local-network address, enabling a remote attacker to trick users into communicating wi...

5CVSS6.4AI score0.10623EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2002/09/05 4:0 a.m.22 views

CVE-2002-0870

The original patch for the Cisco Content Service Switch 11000 Series authentication bypass vulnerability CVE-2001-0622 was incomplete, which still allows remote attackers to gain additional privileges by directly requesting the web management URL instead of navigating through the interface,...

7.5CVSS7.2AI score0.01499EPSS
Exploits0References1
Rows per page
Query Builder