Lucene search
K

9 matches found

Cvelist
Cvelist
added 2024/11/15 9:57 p.m.21 views

CVE-2017-13314

In setAllowOnlyVpnForUids of NetworkManagementService.java, there is a possible security settings bypass due to a missing permission check. This could lead to local escalation of privilege allowing users to access non-VPN networks, when they are supposed to be restricted to the VPN networks, with...

0.00074EPSS
Exploits0References1
NVD
NVD
added 2021/06/21 5:15 p.m.25 views

CVE-2021-0517

In updateCapabilities of ConnectivityService.java, there is a possible incorrect network state determination due to a logic error in the code. This could lead to biasing of networking tasks to occur on non-VPN networks, which could lead to remote information disclosure, with no additional executi...

7.5CVSS0.00802EPSS
Exploits0References1
NVD
NVD
added 2020/12/14 10:15 p.m.24 views

CVE-2020-0467

In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. This could lead to local information disclosure of secure network traffic over a non-VPN link with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.2AI score0.00172EPSS
Exploits0References1
OSV
OSV
added 2020/12/14 10:15 p.m.4 views

CVE-2020-0467

In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. This could lead to local information disclosure of secure network traffic over a non-VPN link with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS6.2AI score0.00172EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2020/12/14 10:15 p.m.2 views

CVE-2020-0467

In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. This could lead to local information disclosure of secure network traffic over a non-VPN link with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.6AI score0.00172EPSS
Exploits0References2
Prion
Prion
added 2020/12/14 10:15 p.m.13 views

Design/Logic Flaw

In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. This could lead to local information disclosure of secure network traffic over a non-VPN link with no additional execution privileges needed. User interaction is not needed for...

2.1CVSS5.8AI score0.00172EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/12/14 9:52 p.m.26 views

CVE-2020-0467

In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. This could lead to local information disclosure of secure network traffic over a non-VPN link with no additional execution privileges needed. User interaction is not needed for...

5.4AI score0.00172EPSS
Exploits0References1
OSV
OSV
added 2020/12/01 12:0 a.m.26 views

ASB-A-168500792

In onUserStopped of Vpn.java, there is a possible resetting of user preferences due to a logic issue. This could lead to local information disclosure of secure network traffic over a non-VPN link with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.1AI score0.00172EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2006/11/06 12:0 a.m.15 views

Solaris 2.5.1 (i386) : 104749-01

The remote host is missing Sun Security Patch number 104749-01 Solstice FireWall-1 2.1c: FD leak in fwd Non-VPN. Date this patch was last updated by Sun : Thu Mar 27 17:00:00 MST 1997 You should install this patch for your system to be up-to-date. %NASLMINLEVEL 999999 @DEPRECATED@ This script has...

Exploits0
Rows per page
Query Builder