37 matches found
CVE-2026-48689
FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in the dynamicbinarybuffert class src/dynamicbinarybuffer.hpp. Five methods appenddynamicbuffer, appenddataaspointer, appenddataasobjectptr, memcpyfromptr, memcpyfromobjectptr use an incorrect bounds chec...
net: flow_dissector: use DEBUG_NET_WARN_ON_ONCE
...
EUVD-2021-30909
Malicious code in bioql PyPI...
nfp: bpf: Add check for nfp_app_ctrl_msg_alloc()
...
About Anomalous Data Transfer detection in InsightIDR
By Shivangi Pandey Shivangi is a Senior Product Manager for D&R at Rapid7. Data exfiltration is an unauthorized movement or transfer of data occurring on an organization’s network. This can occur when a malicious actor gains access to a corporation’s network with the intention of stealing or...
CVE-2021-44050
CA Network Flow Analysis NFA 21.2.1 and earlier contain a SQL injection vulnerability in the NFA web application, due to insufficient input validation, that could potentially allow an authenticated user to access sensitive data...
CVE-2021-44050
CA Network Flow Analysis NFA 21.2.1 and earlier contain a SQL injection vulnerability in the NFA web application, due to insufficient input validation, that could potentially allow an authenticated user to access sensitive data...
Sql injection
CA Network Flow Analysis NFA 21.2.1 and earlier contain a SQL injection vulnerability in the NFA web application, due to insufficient input validation, that could potentially allow an authenticated user to access sensitive data...
CVE-2021-44050
CA Network Flow Analysis NFA 21.2.1 and earlier contain a SQL injection vulnerability in the NFA web application, due to insufficient input validation, that could potentially allow an authenticated user to access sensitive data...
CVE-2021-44050
CVE-2021-44050 concerns Broadcom CA Network Flow Analysis (NFA) version 21.2.1 and earlier. The connected sources specify a SQL injection vulnerability in the NFA web application caused by insufficient input validation, with an impact of potentially exposing sensitive data to an authenticated use...
IBM Qradar SIEM XML External Entity Injection Vulnerability (CNVD-2021-57226)
QRadar SIEM is an IBM enterprise security information and event management product that consolidates log events and network flow data from thousands of devices, endpoints, and applications scattered across the network.IBM QRadar SIEM has a security vulnerability that could be exploited by an...
Caronte - A Tool To Analyze The Network Flow During Attack/Defence Capture The Flag Competitions
Caronte is a tool to analyze the network flow during capture the flag events of type attack/defence. It reassembles TCP packets captured in pcap files to rebuild TCP connections, and analyzes each connection to find user-defined patterns. The patterns can be defined as regex or using protocol...
IBM QRadar SIEM Hardcoded Credentials Vulnerability
QRadar SIEM is an IBM enterprise security information and event management product that consolidates log event and network flow data from thousands of devices, endpoints and applications scattered across the network. A hard-coded credentials vulnerability exists in IBM QRadar SIEM versions 7.3 an...
Broadcom CA Network Flow Analysis Default Credentials Vulnerability
Broadcom CA Network Flow Analysis is a network traffic monitoring solution from Broadcom. A security vulnerability exists in Broadcom CA Network Flow Analysis versions 9.x and 10.0.x. The vulnerability arises from a lack of an effective trust management mechanism in a network system or product. T...
CVE-2019-13658
CA Network Flow Analysis 9.x and 10.0.x have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security...
CVE-2019-13658
CA Network Flow Analysis 9.x and 10.0.x have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security...
Design/Logic Flaw
CA Network Flow Analysis 9.x and 10.0.x have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security...
CVE-2019-13658
CA Network Flow Analysis 9.x and 10.0.x have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security...
CVE-2019-13658
CA Network Flow Analysis versions 9.x and 10.0.x have a default credential vulnerability that can allow a remote attacker to bypass authentication and execute arbitrary commands , compromising system security. The issue is documented across multiple sources (CVE-2019-13658 references and the Syma...
CA Network Flow Analysis CVE-2019-13658 Default Credentials Security Bypass Vulnerability
Description CA Network Flow Analysis is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass the authentication mechanism and execute arbitrary command. The following versions are vulnerable: CA Network Flow Analysis 10.0.xCA Network Flow Analysis 9.x Technologie...