243 matches found
CVE-2025-47410
Apache Geode is vulnerable to CSRF attacks through GET requests to the Management and Monitoring REST API that could allow an attacker who has tricked a user into giving up their Geode session credentials to submit malicious commands on the target system on behalf of the authenticated user. This...
Cross-site Request Forgery (CSRF)
Overview Affected versions of this package are vulnerable to Cross-site Request Forgery CSRF via the Management and Monitoring REST API when processing GET requests. An attacker can execute arbitrary commands on the target system by tricking an authenticated user into submitting malicious request...
CVE-2025-47410 Apache Geode: CSRF attacks through GET requests to the Management and Monitoring REST API that can execute gfsh commands on the target system
Apache Geode is vulnerable to CSRF attacks through GET requests to the Management and Monitoring REST API that could allow an attacker who has tricked a user into giving up their Geode session credentials to submit malicious commands on the target system on behalf of the authenticated user. This...
CVE-2025-47410
Apache Geode CVE-2025-47410: CSRF via GET requests to the Management and Monitoring REST API can allow an attacker to trick a logged-in user into submitting commands on behalf of that user. Affected versions are 1.10–1.15.1; remediation is to upgrade to 1.15.2. Public references corroborate the i...
EUVD-2013-1224
Malware in sbrugna...
EUVD-2020-0538
Malware in sbrugna...
EUVD-2021-10427
Malware in sbrugna...
EUVD-2023-34429
Malicious code in bioql PyPI...
EUVD-2025-19754
Malicious code in bioql PyPI...
EUVD-2024-18107
Malicious code in bioql PyPI...
EUVD-2025-27715
Malicious code in bioql PyPI...
EUVD-2025-13918
Malicious code in bioql PyPI...
EUVD-2021-9182
Malicious code in bioql PyPI...
EUVD-2025-16746
Malicious code in bioql PyPI...
EUVD-2025-22434
Malicious code in bioql PyPI...
EUVD-2025-10068
Malicious code in bioql PyPI...
EUVD-2023-2995
Malicious code in bioql PyPI...
EUVD-2025-10387
Malicious code in bioql PyPI...
PT-2025-39424
Name of the Vulnerable Software and Affected Versions O-RAN Near Realtime RIC versions affected versions not specified Description An issue exists in the O-RAN Near Realtime RIC ric-plt-submgr component within the J-Release environment. This allows remote attackers to cause a denial of service Do...
CVE-2025-41687
An unauthenticated remote attacker may use a stack based buffer overflow in the u-link Management API to gain full access on the affected devices...