EUVD-2024-16951

Malicious code in bioql PyPI...

undertow: Server identity in https connection is not checked by the undertow client

A flaw was found in undertow. The undertow client is not checking the server identity the server certificate presents in HTTPS connections. This is a compulsory step that should at least be performed by default in HTTPS and in http/2...

CVE-2018-21183

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.92, and WNDR4300 before 1.0.2.94...

OpenStack NeutronMAC Source Address Spoofing Vulnerability

OpenStack is a cloud platform management program developed by the National Aeronautics and Space Administration NASA in collaboration with Rackspace, Inc. in the U.S. Neutron is one of the networking components that provides Network-as-a-Service NaaS, which enables the creating networks between...

Cisco IOS/IOS XE SSHv2 Body Authentication Bypass Vulnerability

Cisco IOS is the interconnected Internet operating system used on most Cisco Systems routers and network switches. Cisco IOS and IOS XE Software have a security vulnerability in the implementation of the SSHv2 protocol. A remote attacker could exploit this vulnerability to bypass the user...

security flaw

The BER dissector in Ethereal 0.10.3 to 0.10.12 allows remote attackers to cause a denial of service infinite loop via unknown vectors...