CVE-2023-43870

When installing the Net2 software a root certificate is installed into the trusted store. A potential hacker could access the installer batch file or reverse engineer the source code to gain access to the root certificate password. Using the root certificate and password they could then create...

EUVD-2022-3525

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2020-35919

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the net2 crate before 0.2.36 for Rust. It has false expectations about the std::net::SocketAddr memory representation. CVE-2020-35919...

CVE-2024-48939

Insufficient validation performed on the REST API License file in Paxton Net2 before 6.07.14023.5015 SR4 enables use of the REST API with an invalid License File. Attackers may be able to retrieve access-log data...

CVE-2020-35919

An issue was discovered in the net2 crate before 0.2.36 for Rust. It has false expectations about the std::net::SocketAddr memory representation...

CVE-2024-48939

Insufficient validation performed on the REST API License file in Paxton Net2 before 6.07.14023.5015 SR4 enables use of the REST API with an invalid License File. Attackers may be able to retrieve access-log data...

CVE-2024-48939

Insufficient validation performed on the REST API License file in Paxton Net2 before 6.07.14023.5015 SR4 enables use of the REST API with an invalid License File. Attackers may be able to retrieve access-log data...

CVE-2024-48939

Paxton Net2 prior to version 6.07.14023.5015 (SR4) has insufficient validation of the REST API License file, which can allow using the REST API with an invalid license and may enable retrieval of access-log data. Confirmed in multiple sources (NVD, Red Hat, CNVD/CNNVD, PT Security) across CVE-202...

CVE-2024-48939

Insufficient validation performed on the REST API License file in Paxton Net2 before 6.07.14023.5015 SR4 enables use of the REST API with an invalid License File. Attackers may be able to retrieve access-log data...

Paxton Access Net2 安全漏洞

Paxton Access Net2 is an application from Paxton Access that provides simple and flexible site management. A security vulnerability exists in Paxton Access Net2 versions prior to 6.07.14023.5015 SR4, which stems from insufficient validation of the REST API license file implementation, resulting i...

PT-2024-33285 · Paxton · Net2

Name of the Vulnerable Software and Affected Versions: Paxton Net2 versions prior to 6.07.14023.5015 SR4 Description: Insufficient validation is performed on the REST API License file, enabling the use of the REST API with an invalid License File. This allows attackers to potentially retrieve...

Malicious code in coffin-codes-net2 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 694b0573155beac08991f19b534c13e193d82c520d5d0fd8c6733daf1de774ce So far, it looks like a legit tunneling software, but in tcp.py there is an attempt to send a strange email using gmail. Update: Identified as malicious by...

CVE-2023-43870

When installing the Net2 software a root certificate is installed into the trusted store. A potential hacker could access the installer batch file or reverse engineer the source code to gain access to the root certificate password. Using the root certificate and password they could then create...

CVE-2023-43870

When installing the Net2 software a root certificate is installed into the trusted store. A potential hacker could access the installer batch file or reverse engineer the source code to gain access to the root certificate password. Using the root certificate and password they could then create...

Code injection

When installing the Net2 software a root certificate is installed into the trusted store. A potential hacker could access the installer batch file or reverse engineer the source code to gain access to the root certificate password. Using the root certificate and password they could then create...

CVE-2023-43870

The CVE-2023-43870 issue affects Paxton Net2: during installation a root certificate is installed into the trusted store, and an attacker could access the installer batch file or reverse-engineer the source to obtain the root certificate password. With the password, an attacker could issue their ...

CVE-2023-43870

When installing the Net2 software a root certificate is installed into the trusted store. A potential hacker could access the installer batch file or reverse engineer the source code to gain access to the root certificate password. Using the root certificate and password they could then create...

Paxton Access Net2 Trust Management Issues Vulnerability

Paxton Access Net2 is an application from Paxton Access that provides simple and flexible site management. Paxton Access Net2 suffers from a trust management issue vulnerability that originates when installing the Net2 software, where the root certificate is installed to a trusted store. An...

SUSE CVE-2020-35919

An issue was discovered in the net2 crate before 0.2.36 for Rust. It has false expectations about the std::net::SocketAddr memory representation...

GHSA-C79C-GWPH-GQFM `net2` invalidly assumes the memory layout of std::net::SocketAddr

The net2 crate has assumed std::net::SocketAddrV4 and std::net::SocketAddrV6 have the same memory layout as the system C representation sockaddr. It has simply casted the pointers to convert the socket addresses to the system representation. The standard library does not say anything about the...