7 matches found
PT-2026-36999
Name of the Vulnerable Software and Affected Versions Eclipse Equinox OSGi versions 3.7.2 and earlier Description An issue allows unauthenticated attackers to execute arbitrary commands by sending payloads to the console interface. Attackers can connect to the OSGi console port and send...
mDNS Service Public WAN (Internet) Accessible
The script checks if the target host is exposing a service supporting the Multicast DNS mDNS protocol to a Public WAN Internet. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
PT-2024-10440 · Ibm · Ibm Security Verify Governance
Name of the Vulnerable Software and Affected Versions: IBM Security Verify Governance 10.0.2 Identity Manager Description: The issue is related to the transmission of user credentials in clear text by the Identity Manager component, which could be obtained by an attacker using man-in-the-middle...
The ESXiArgs ransomware attack is targeting VMware ESXi servers globally
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A global ransomware attack, known as ESXiArgs, is affecting servers using VMware ESXi hypervisors version 6.x prior to 6.7 due to a vulnerability CVE-2021-21974 caused by a heap overflow issue in the Ope...
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.
...
Server side request forgery (ssrf)
An issue was discovered in DigDash 2018R2 before p20200210 and 2019R1 before p20200210. The login page is vulnerable to Server-Side Request Forgery SSRF that allows use of the application as a proxy. Sent to an external server, a forged request discloses application credentials. For a request to ...
Google Chrome Security Bypass Vulnerability (CNVD-2019-26520)
Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome versions prior to 76.0.3809.87, which stems from the program not adequately filtering the Open URL service parameter. The vulnerability can be exploited by an attacker to bypass...