Lucene search
K

64 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-9667

Malicious code in bioql PyPI...

5.8CVSS6AI score0.00399EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-35199

Malicious code in bioql PyPI...

8.2CVSS8.1AI score0.00902EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-31254

Malicious code in bioql PyPI...

9.1CVSS7.9AI score0.00636EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-1427

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.0026EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-40420

Malicious code in bioql PyPI...

8.3CVSS7.6AI score0.00573EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-2624

Malicious code in bioql PyPI...

6.3CVSS7AI score0.00908EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-2053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When a POST request comes through AJP and the request exceeds the max-post-size limit maxEntitySize, Undertow's AjpServerRequestConduit implementation closes a...

7.5CVSS6.8AI score0.0087EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.11 views

Debian dla-4270 : apache2 - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4270 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4270-1 [email protected]...

9.1CVSS7.2AI score0.04409EPSS
Exploits2References20
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/14 4:54 p.m.4 views

Security Bulletin: PrismMatching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component which affects IBM watsonx.data

Summary PrismMatching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NOPROXY environment variable is set to ".example.com", a request to "::1%25.example.com:80 will incorrectly match and not be proxied. These can affect...

4.4CVSS6.9AI score0.00384EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 2: curl (TSSA-2023:0311)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0311 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

5.9CVSS6.7AI score0.02511EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:16 p.m.7 views

CVE-2022-1337

The image proxy component in Mattermost version 6.4.1 and earlier allocates memory for multiple copies of a proxied image, which allows an authenticated attacker to crash the server via links to very large image files...

6.5CVSS6.6AI score0.00882EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:24 p.m.18 views

CVE-2021-29416

An issue was discovered in PortSwigger Burp Suite before 2021.2. During viewing of a malicious request, it can be manipulated into issuing a request that does not respect its upstream proxy configuration. This could leak NetNTLM hashes on Windows systems that fail to block outbound SMB...

6.5CVSS6.7AI score0.01149EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:25 p.m.5 views

CVE-2020-27664

admin/src/containers/InputModalStepperProvider/index.js in Strapi before 3.2.5 has unwanted /proxy?url= functionality...

9.8CVSS6.8AI score0.02264EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/16 6:4 p.m.21 views

CVE-2025-0130

A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthenticated attacker to send a burst of maliciously crafted packets that causes the firewall to become unresponsive and eventually reboot. Repeated successful attempts to trigger this...

8.2CVSS6.9AI score0.00358EPSS
Exploits0References3
CVE
CVE
added 2025/04/04 2:10 a.m.49 views

CVE-2025-25061

CVE-2025-25061 affects JTEKT/HMI ViewJet C-more and HMI GC-A2 series. Description: an unintended proxy/intermediary (Confused Deputy) vulnerability could allow a remote unauthenticated attacker to use the product as an intermediary for an FTP bounce attack. Impact: attacker may misuse the product...

5.8CVSS7.3AI score0.00399EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/04 12:0 a.m.11 views

JTEKT ELECTRONICS HMI ViewJet C-more 安全漏洞

JTEKT ELECTRONICS HMI ViewJet C-more is a series of human-machine interfaces from JTEKT ELECTRONICS, Japan. A security vulnerability exists in JTEKT ELECTRONICS HMI ViewJet C-more that stems from a proxy issue that could lead to an FTP bounce attack...

5.8CVSS5.8AI score0.00399EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/02 12:0 a.m.4 views

PT-2025-14826 · Unknown · Hmi Gc-A2 Series +1

Name of the Vulnerable Software and Affected Versions: HMI ViewJet C-more series affected versions not specified HMI GC-A2 series affected versions not specified Description: The issue is related to an unintended proxy or intermediary problem, also known as 'Confused Deputy', which may allow a...

5.8CVSS5.6AI score0.00399EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/03/21 2:49 p.m.38 views

CVE-2025-30157 Envoy crashes when HTTP ext_proc processes local replies

Envoy is a cloud-native high-performance edge/middle/service proxy. Prior to 1.33.1, 1.32.4, 1.31.6, and 1.30.10, Envoy's extproc HTTP filter is at risk of crashing if a local reply is sent to the external server due to the filter's life time issue. A known situation is the failure of a websocket...

6.5CVSS0.00406EPSS
Exploits0References2
CVE
CVE
added 2025/03/12 6:27 p.m.336 views

CVE-2025-22870

CVE-2025-22870 has concrete details across connected docs: it impacts multiple Go-related packages (notably golang) and related ecosystems via a proxy matching bug. The flaw arises when IPv6 zone IDs are misinterpreted as hostname components in NO_PROXY, causing requests to [::1%25.example.com] t...

4.4CVSS6.4AI score0.00384EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2022-35957

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana is an open-source platform for monitoring and observability. Versions prior to 9.1.6 and 8.5.13 are vulnerable to an escalation from admin to server adm...

6.6CVSS7.4AI score0.01302EPSS
Exploits0References3
Rows per page
Query Builder