Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2026/07/06 4:52 a.m.6 views

Node.js: Node.js: Trust-policy bypass due to hostname matching inconsistency

A flaw was found in Node.js. An inconsistency in how Node.js matches hostnames can be exploited by a remote attacker in multi-context mTLS mutual Transport Layer Security setups. This vulnerability allows for a trust-policy bypass, potentially leading to unauthorized access to sensitive informati...

5.4CVSS6.3AI score0.00256EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/26 3:11 p.m.5 views

CVE-2026-32941

Sliver is a command and control framework that uses a custom Wireguard netstack. Versions 1.7.3 and below contain a Remote OOM Out-of-Memory vulnerability in the Sliver C2 server's mTLS and WireGuard C2 transport layer. The socketReadEnvelope and socketWGReadEnvelope functions trust an...

7.1CVSS5.8AI score0.00298EPSS
Exploits1References1
OSV
OSV
added 2025/12/05 10:2 p.m.5 views

GHSA-XRHH-HX36-485Q Strimzi allows unrestricted access to all Secrets in the same Kubernetes namespace from Kafka Connect and MirrorMaker 2 operands

Impact In some situations, Strimzi creates an incorrect Kubernetes Role which grants the Apache Kafka Connect and Apache Kafka MirrorMaker 2 operands the GET access to all Kubernetes Secrets that exist in the given Kubernetes namespace. The exact scenario when this happens is when: Apache Kafka...

7.4CVSS7AI score0.00187EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/11/18 12:5 p.m.10 views

CVE-2025-9312 Improper Certificate-Based Authentication Enforcement in Multiple WSO2 Products

A missing authentication enforcement vulnerability exists in the mutual TLS mTLS implementation used by System REST APIs and SOAP services in multiple WSO2 products. Due to improper validation of client certificate–based authentication in certain default configurations, the affected components ma...

9.8CVSS0.00222EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.9 views

WSO2多款产品 安全漏洞

WSO2 API Manager and others are products of WSO2 Corporation, USA.WSO2 API Manager is an API lifecycle management solution.WSO2 Identity Server IS is an identity server.WSO2 API Control Plane is a control panel. A security vulnerability exists in several WSO2 products that stems from a lack of...

9.8CVSS6.8AI score0.00222EPSS
Exploits0References2
OSV
OSV
added 2025/11/06 11:32 p.m.3 views

GHSA-38JW-G2QX-4286 KubeVirt Affected by an Authentication Bypass in Kubernetes Aggregation Layer

Summary Short summary of the problem. Make the impact and severity as clear as possible. A flawed implementation of the Kubernetes aggregation layer's authentication flow could enable bypassing RBAC controls. Details Give all details on the vulnerability. Pointing to the incriminated source code ...

4.7CVSS7.6AI score0.00139EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2023/04/12 12:0 a.m.9 views

The vulnerability in the implementation of the mTLS protocol for the Envoy proxy server allows a attacker to send hidden HTTP requests (HTTP Request Smuggling attack).

The vulnerability of the mTLS protocol implementation in Envoy proxy servers is related to insufficient validation of input data during the processing of HTTP headers. Exploiting this vulnerability allows a malicious actor to send hidden HTTP requests HTTP Request Smuggling attack...

9.4CVSS7.7AI score0.00507EPSS
Exploits1References6Affected Software2
Rows per page
Query Builder