175 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-38968
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ntopng through 6.6 is vulnerable to Predictable Session Identifier which can lead to Session Hijacking. HTTP session identifiers in src/HTTPserver.cpp use weak...
CVE-2026-38968
ntopng through 6.6 is vulnerable to Predictable Session Identifier which can lead to Session Hijacking. HTTP session identifiers in src/HTTPserver.cpp use weak time-seeded pseudo-randomness during session creation. As a result, fresh authenticated logins can receive deterministic or colliding...
UBUNTU-CVE-2026-38968
ntopng through 6.6 is vulnerable to Predictable Session Identifier which can lead to Session Hijacking. HTTP session identifiers in src/HTTPserver.cpp use weak time-seeded pseudo-randomness during session creation. As a result, fresh authenticated logins can receive deterministic or colliding...
CVE-2026-38968
ntopng (through 6.6) is reported vulnerable to a Predictable Session Identifier flaw. The issue occurs in HTTPsession creation within src/HTTPserver.cpp, where time-seeded pseudo-randomness can yield deterministic or colliding cookies, enabling session hijacking under attacker-controlled timing. ...
CVE-2026-38968
ntopng through 6.6 is vulnerable to Predictable Session Identifier which can lead to Session Hijacking. HTTP session identifiers in src/HTTPserver.cpp use weak time-seeded pseudo-randomness during session creation. As a result, fresh authenticated logins can receive deterministic or colliding...
CVE-2026-38968
ntopng through 6.6 is vulnerable to Predictable Session Identifier which can lead to Session Hijacking. HTTP session identifiers in src/HTTPserver.cpp use weak time-seeded pseudo-randomness during session creation. As a result, fresh authenticated logins can receive deterministic or colliding...
CVE-2026-45448
CVE-2026-45448 is associated with an open redirect (CWE-601) affecting ntopng per CVE listings. The vulnerability involves URL redirection to an untrusted site. Concrete exploit details, affected versions, and remediation steps are not provided in the connected documents. The CVSS-based impact is...
CVE-2026-45448 ntopng - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
CWE-601 URL redirection to untrusted site 'open redirect'...
CVE-2026-45448 ntopng - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
CWE-601 URL redirection to untrusted site 'open redirect'...
CVE-2026-24809 affecting package ntopng for versions less than 5.2.1-4
CVE-2026-24809 affecting package ntopng for versions less than 5.2.1-4. A patched version of the package is available...
Ntopng Authentication Bypass
Ntopng, a passive network monitoring tool, contains an authentication bypass vulnerability in ntopng = 4.2 id: CVE-2021-28073 info: name: Ntopng Authentication Bypass author: z3bd severity: critical description: Ntopng, a passive network monitoring tool, contains an authentication bypass...
AZL-75542 CVE-2026-24809 affecting package ntopng for versions less than 5.2.1-4
An issue from the component luaGrunerror in dependencies/lua/src/ldebug.c in praydog/REFramework version before 1.5.5 leads to a heap-buffer overflow when a recursive error occurs...
AZL-75470 CVE-2026-24809 affecting package ntopng for versions less than 5.2.1-4
An issue from the component luaGrunerror in dependencies/lua/src/ldebug.c in praydog/REFramework version before 1.5.5 leads to a heap-buffer overflow when a recursive error occurs...
CVE-2021-44964 affecting package ntopng for versions less than 5.2.1-6
CVE-2021-44964 affecting package ntopng for versions less than 5.2.1-6. A patched version of the package is available...
EUVD-2014-0106
Malware in sbrugna...
EUVD-2017-14577
Malware in sbrugna...
EUVD-2017-16482
Malware in sbrugna...
EUVD-2017-16483
Malware in sbrugna...
EUVD-2015-8252
Malware in sbrugna...
EUVD-2017-16440
Malware in sbrugna...