Lucene search
K

39 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:19 a.m.3 views

CVE-2021-22979

On BIG-IP version 16.0.x before 16.0.1, 15.1.x before 15.1.1, 14.1.x before 14.1.2.8, 13.1.x before 13.1.3.5, and all 12.1.x versions, a reflected Cross-Site Scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility when Fraud Protection Service is provisioned...

6.1CVSS6AI score0.00583EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-10097

Malware in sbrugna...

6.1CVSS6.4AI score0.00583EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-2122

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.00335EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/02/18 11:34 p.m.15 views

CVE-2025-1364

A vulnerability has been found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by this vulnerability is the function passPrompt of the component USB Protection Service. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on...

5.3CVSS6.7AI score0.00335EPSS
Exploits1References1
NVD
NVD
added 2025/02/16 11:15 p.m.38 views

CVE-2025-1364

A vulnerability has been found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by this vulnerability is the function passPrompt of the component USB Protection Service. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on...

6.6CVSS0.00335EPSS
Exploits1References4
OSV
OSV
added 2025/02/16 11:15 p.m.3 views

CVE-2025-1364

A vulnerability has been found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by this vulnerability is the function passPrompt of the component USB Protection Service. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on...

6.6CVSS5.7AI score0.00335EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/02/16 11:0 p.m.34 views

CVE-2025-1364 MicroWord eScan Antivirus USB Protection Service passPrompt stack-based overflow

A vulnerability has been found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by this vulnerability is the function passPrompt of the component USB Protection Service. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on...

5.3CVSS0.00335EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/02/16 11:0 p.m.5 views

CVE-2025-1364 MicroWord eScan Antivirus USB Protection Service passPrompt stack-based overflow

A vulnerability has been found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by this vulnerability is the function passPrompt of the component USB Protection Service. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on...

5.3CVSS6.7AI score0.00335EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/02/16 12:0 a.m.3 views

eScan Antivirus 安全漏洞

eScan Antivirus is a network anti-virus security software from eScan. A security vulnerability exists in eScan Antivirus version 7.0.32, which originates from a stack buffer overflow in the function passPrompt of the component USB Protection Service...

6.6CVSS5.8AI score0.00335EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/02/16 12:0 a.m.6 views

PT-2025-6894 · Microworld · Microword Escan Antivirus

Name of the Vulnerable Software and Affected Versions: MicroWord eScan Antivirus version 7.0.32 Description: A critical issue has been discovered in the passPrompt function of the USB Protection Service component. This issue leads to a stack-based buffer overflow. The attack can be launched on th...

5.3CVSS7AI score0.00335EPSS
Exploits1References10
BDU FSTEC
BDU FSTEC
added 2023/12/06 12:0 a.m.8 views

The vulnerability of the BIG-IP Access Policy Manager’s access control and remote authentication mechanisms, as well as the software products such as BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Enforcement Manager, BIG-IP Orchestrator, allows a perpetrator to trigger a service failure.

The vulnerabilities of the BIG-IP Access Policy Manager, as well as the BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link...

7.8CVSS7.5AI score0.00626EPSS
Exploits0References3Affected Software12
BDU FSTEC
BDU FSTEC
added 2023/12/06 12:0 a.m.6 views

The vulnerability of the BIG-IP Access Policy Manager’s access control and remote authentication mechanisms, as well as the software products such as BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Enforcement Manager, BIG-IP Orchestrator, allows a perpetrator to trigger a service failure.

The vulnerabilities of the BIG-IP Access Policy Manager, as well as the BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link...

7.8CVSS7.2AI score0.00626EPSS
Exploits0References3Affected Software13
BDU FSTEC
BDU FSTEC
added 2023/12/04 12:0 a.m.4 views

The vulnerability of the BIG-IP Access Policy Manager’s access control and remote authentication mechanisms, as well as the software products such as BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Enforcement Manager, BIG-IP Orchestrator, allows a perpetrator to trigger a service failure.

The vulnerabilities of the BIG-IP Access Policy Manager, as well as the BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link...

7.8CVSS7.4AI score0.00626EPSS
Exploits0References3Affected Software12
BDU FSTEC
BDU FSTEC
added 2023/10/25 12:0 a.m.4 views

The vulnerabilities of the BIG-IP Access Policy Manager, as well as of software solutions such as BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Application Visibility and Reporting (AVR), BIG-IP Camer-Grade NAT (CGNAT), BIG-IP DDos Hybrid Defender, BIG-IP Domain Name System, BIG-IP Edge Gateway, BIG-IP Fraud Protection Service, BIG-IP Global Traffic Manager, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Inforcement Manager, BIG-IP SSL Orchestrator, BIG-IP Webaccelerator, and BIG-IP WebSafe, when running on the BIG-IP TMOS Shel operating system, allow attackers to expose the protected information.

The vulnerabilities of the BIG-IP Access Policy Manager, as well as of software solutions such as BIG-IP Advanced Firewall Manager, BIG-IP Advanced Web Application Firewall, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Application Visibili...

4.4CVSS5.5AI score0.00175EPSS
Exploits0References3Affected Software19
BDU FSTEC
BDU FSTEC
added 2023/03/07 12:0 a.m.4 views

The vulnerabilities of the BIG-IP Access Policy Manager, as well as the BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Enforcement Manager, BIG-IP Orchestrator, allow a perpetrator to access confidential data.

The vulnerabilities of the BIG-IP Access Policy Manager, as well as the BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link...

7.8CVSS5.6AI score0.00521EPSS
Exploits0References2Affected Software12
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.27 views

K63497634: BIG-IP FPS XSS vulnerability CVE-2021-22979

Security Advisory Description A reflected cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility when Fraud Protection Service is provisioned, which allows an attacker to execute JavaScript in the context of the current logged-in user...

6.1CVSS6.4AI score0.00583EPSS
Exploits0Affected Software14
BDU FSTEC
BDU FSTEC
added 2023/02/21 12:0 a.m.9 views

The vulnerability of the BIG-IP Access Policy Manager’s access control and remote authentication mechanisms, as well as the software products such as BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Enforcement Manager, BIG-IP Orchestrator, allows a perpetrator to trigger a service failure.

The vulnerabilities of the BIG-IP Access Policy Manager, as well as the BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Hybrid Defender, BIG-IP Domain Name System, BIG-IP Fraud Protection Service, BIG-IP Link...

7.5CVSS7.2AI score0.00626EPSS
Exploits0References3Affected Software12
CNVD
CNVD
added 2022/10/12 12:0 a.m.17 views

Trend Micro Apex One Elevation of Privilege Vulnerability

Trend Micro Apex One is an endpoint protection software from Trend Micro, Inc. An elevation of privilege vulnerability exists in the 2019 on-prem, SaaS version of Trend Micro Apex One, which stems from the use of local time for Vulnerability Protection Service checks, which could be exploited to...

7CVSS3.7AI score0.00181EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/07/21 12:0 a.m.8 views

The vulnerability of the iControl REST API interface for access control and remote authentication, the BIG-IP Access Policy Manager, the virtual server for application protection, the BIG-IP Advanced Web Application Firewall, the BIG-IP Advanced Firewall Manager, the infrastructure status analysis tool, the BIG-IP Application Acceleration Manager, the DDoS protection module, the BIG-IP Fraud Protection Service, the Internet traffic balancing system, the BIG-IP Link Controller, and the local traffic balancing system – all of these allow a perpetrator to cause service interruptions.

The vulnerabilities of the iControl REST API interface for access control and remote authentication, the BIG-IP Access Policy Manager, the virtual server for application protection, the BIG-IP Advanced Web Application Firewall, the BIG-IP Advanced Firewall Manager, the infrastructure status...

6.8CVSS6.7AI score0.00895EPSS
Exploits0References3Affected Software15
NVD
NVD
added 2022/02/02 11:15 a.m.36 views

CVE-2021-43062

A improper neutralization of input during web page generation 'cross-site scripting' in Fortinet FortiMail version 7.0.1 and 7.0.0, version 6.4.5 and below, version 6.3.7 and below, version 6.0.11 and below allows attacker to execute unauthorized code or commands via crafted HTTP GET requests to...

6.1CVSS0.12936EPSS
Exploits5References2
Rows per page
Query Builder