Lucene search
K

9 matches found

Github Security Blog
Github Security Blog
added 2026/05/08 11:2 p.m.11 views

free5GC's SMF UPI management interface lacks auth middleware; unauthenticated topology read/write requests reach handlers

Summary free5GC's SMF mounts the UPI management route group without OAuth2/bearer-token authorization middleware. A network attacker who can reach SMF on the SBI can hit UPI endpoints with no Authorization header at all, and the requests reach the SMF business handlers. In the running Docker lab...

10CVSS5.8AI score0.00331EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/07 2:58 a.m.11 views

CVE-2026-41656 Admidio: Path Traversal via Unvalidated `name` Parameter in Document Add Mode Enables Arbitrary Server File Read

Admidio is an open-source user management solution. Prior to version 5.0.9, the add mode in modules/documents-files.php accepts a name parameter validated only as 'string' type HTML encoding, allowing path traversal characters ../ to pass through unfiltered. Combined with the absence of CSRF...

4.5CVSS5.9AI score0.00362EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/06 7:55 a.m.5 views

CVE-2026-23767

ESC/POS, a printer control language designed by Seiko Epson Corporation, lacks mechanisms for user authentication and command authorization, does not provide controls to restrict sources or destinations of network communication, and transmits commands without encryption or integrity protection...

9.8CVSS5.8AI score0.00447EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/28 12:0 a.m.4 views

PT-2025-35101

Name of the Vulnerable Software and Affected Versions: Meitrack T366G-L GPS Tracker devices affected versions not specified Description: The SPI flash chip Winbond 25Q64JVSIQ in Meitrack T366G-L GPS Tracker devices is accessible without authentication or tamper protection. An attacker with physic...

2.4CVSS6AI score0.00245EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 9:17 a.m.4 views

CVE-2024-23444

It was discovered by Elastic engineering that when elasticsearch-certutil CLI tool is used with the csr option in order to create a new Certificate Signing Requests, the associated private key that is generated is stored on disk unencrypted even if the --pass parameter is passed in the command...

7.5CVSS6.9AI score0.00206EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/12/12 12:0 a.m.5 views

The Naumen Service Management Platform’s vulnerability regarding automation of business processes arises from insufficient filtering of input data and lack of measures to protect the structure of web pages. This allows attackers to carry out XSS attacks.

The Naumen Service Management Platform is vulnerable to automation of business processes due to insufficient filtering of input data and lack of measures to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks by loading a specially...

8CVSS5.5AI score
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/07/26 10:15 p.m.1 views

CVE-2022-29958

JTEKT TOYOPUC PLCs through 2022-04-29 do not ensure data integrity. They utilize the unauthenticated CMPLink/TCP protocol for engineering purposes, including downloading projects and control logic to the PLC. Control logic is downloaded to the PLC on a block-by-block basis with a given memory...

9.8CVSS7.5AI score0.00488EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/01/11 12:0 a.m.6 views

PT-2021-14351 · Pypi +1 · Flask-Security-Too +1

Name of the Vulnerable Software and Affected Versions: Flask-Security-Too versions 3.3.0 through 3.4.5 Description: The issue concerns the Flask-Security-Too package, which is used to add security features to Flask applications. In affected versions, the /login and /change endpoints can return th...

8.3CVSS6.5AI score0.01079EPSS
Exploits2References29
OSV
OSV
added 2019/03/15 8:29 p.m.3 views

CVE-2018-17955

In yast2-multipath before version 4.1.1 a static temporary filename allows local attackers to overwrite files on systems without symlink protection...

5.5CVSS5.8AI score0.00309EPSS
Exploits0References1
Rows per page
Query Builder