Bandit 安全漏洞

Bandit is a high-performance HTTP and WebSocket server from the individual developer Mat Trudel. A security vulnerability exists in Bandit version 1.0.0 through versions prior to 1.11.0, which stems from a reliance on untrustworthy input to make security decisions, and could lead to an...

CVE-2025-25728

Bosscomm IF740 Firmware versions:11001.7078 & v11001.0000 and System versions: 6.25 & 6.00 were discovered to send communications to the update API in plaintext, allowing attackers to access sensitive information via a man-in-the-middle attack...

CVE-2025-25728

Bosscomm IF740 Firmware versions:11001.7078 & v11001.0000 and System versions: 6.25 & 6.00 were discovered to send communications to the update API in plaintext, allowing attackers to access sensitive information via a man-in-the-middle attack...

PT-2025-9044 · Bosscomm · Bosscomm If740 System +1

Name of the Vulnerable Software and Affected Versions: Bosscomm IF740 Firmware versions 11001.7078 through 11001.0000 Bosscomm IF740 System versions 6.25 through 6.00 Description: The issue allows attackers to access sensitive information via a man-in-the-middle attack because communications to t...

CVE-2025-25728

Bosscomm IF740 Firmware versions:11001.7078 & v11001.0000 and System versions: 6.25 & 6.00 were discovered to send communications to the update API in plaintext, allowing attackers to access sensitive information via a man-in-the-middle attack...

Man-in-the-Middle (MitM)

github.com/hashicorp/consul is vulnerable to man-in-the-middle. The agent-to-agent RPC communication does not verify the hostname of outgoing connections which results in an insecure plaintext communications channel. This allows an attacker to perform a man-in-the-middle attack against vulnerable...