6 matches found
EUVD-2026-43556
Spring Boot Admin Server before 4.1.2 contains a server-side request forgery vulnerability that allows unauthenticated attackers to register instances with attacker-controlled healthUrl and managementUrl parameters without validation against private IP ranges or metadata endpoints. Attackers can...
CVE-2026-62242 Spring Boot Admin Server < 4.1.2 SSRF via Unauthenticated Instance Registration
Spring Boot Admin Server before 4.1.2 contains a server-side request forgery vulnerability that allows unauthenticated attackers to register instances with attacker-controlled healthUrl and managementUrl parameters without validation against private IP ranges or metadata endpoints. Attackers can...
EUVD-2002-0862
Malware in sbrugna...
CVE-2007-1527
The LLTD Mapper in Microsoft Windows Vista does not verify that an IP address in a TLV type 0x07 field in a HELLO packet corresponds to a valid IP address for the local network, which allows remote attackers to trick users into communicating with an external host by sending a HELLO packet with th...
CVE-2007-1527
The CVE-2007-1527 issue affects the LLTD Mapper in Microsoft Windows Vista. It occurs because the LLTD Mapper does not verify that an IP address in a TLV type 0x07 field in a HELLO packet corresponds to a valid local-network address, enabling a remote attacker to trick users into communicating wi...
CVE-2002-0870
The original patch for the Cisco Content Service Switch 11000 Series authentication bypass vulnerability CVE-2001-0622 was incomplete, which still allows remote attackers to gain additional privileges by directly requesting the web management URL instead of navigating through the interface,...