3 matches found
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-23209link is external Craft CMS Code Injection Vulnerability CVE-2025-0111link is external Palo Alto Networks PAN-OS File Read Vulnerability These types of...
Riverbed OPNET App Response Xpert Path Traversal Vulnerability
Riverbed OPNET App Response Xpert ARX is a suite of network performance management solutions from Riverbed Technology, USA. A directory traversal vulnerability exists in the viewerscript.jsp file in Riverbed OPNET ARX version 9.6.1. A remote attacker can exploit this vulnerability to inject...
McAfee Cloud Identity Manager ExtensionAccessServlet Information Disclosure Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of McAfee Cloud Identify Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within a servlet called ExtensionAccessServlet which contains a directory...