CommScope Ruckus R500 安全漏洞

The CommScope Ruckus R500 is a wireless access point from CommScope, Inc. A security vulnerability exists in multiple RUCKUS Networks products that originates from a full switch to an unauthorized system image to boot as the primary authentication system image...

Authentication Bypass

Overview Versions of samlify prior to 2.4.0 are vulnerable to Authentication Bypass. The package fails to prevent XML Signature Wrapping, allowing tokens to be reused with different usernames. A remote attacker can modify SAML content for a SAML service provider without invalidating the...

DUO-PSA-2014-006: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2014-006 Publication Date: 2014-10-09 Revision Date: 2014-10-16 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in which it may be possible for users to perform certain actions without completing...

DUO-PSA-2015-003: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2015-003 Original Publication Date: 2015-08-06 Revision Date: 2015-08-10 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue which, under certain configurations, could have enabled attackers to bypass...