Lucene search
K

1326 matches found

BDU FSTEC
BDU FSTEC
added 2022/12/07 12:0 a.m.5 views

The vulnerability of the SSL-VPN portal for operating systems FortiOS and the proxy server used for protecting against internet attacks by FortiProxy allows attackers to induce a service failure.

The vulnerability of the SSL-VPN portal for FortiOS operating systems and the FortiProxy proxy server used to protect against internet attacks is related to access to an uninitialized pointer. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending a...

7.8CVSS7.2AI score0.00868EPSS
Exploits0References4Affected Software2
GithubExploit
GithubExploit
added 2022/11/08 3:22 p.m.195 views

Exploit for Improper Access Control in Webmin

WebminRCE-exploit CVE-2022-0824, CVE-2022-0829 - File Manger p...

9CVSS7.3AI score0.96977EPSS
Exploits14
Redos
Redos
added 2022/11/08 12:0 a.m.72 views

ROS-20221108-01

A vulnerability in the cURL command line utility is related to an error in parsing URLs with IDN characters that are replaced by ASCII analogs during IDN conversion. Exploitation of the vulnerability could allow an attacker acting remotely to bypass curl's HSTS inspection and force it to Use the...

8.1CVSS8.5AI score0.02927EPSS
Exploits0
CNNVD
CNNVD
added 2022/10/19 12:0 a.m.4 views

Red Hat OpenShift 安全漏洞

Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat, Inc. that supports building, testing, deploying, and running applications. A security vulnerability exists in Red Hat OpenShift. An attacker exploited the vulnerability to read pem files on a proxy server...

5.5CVSS6.9AI score0.00195EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2022/10/06 2:56 p.m.24 views

Important: Red Hat Security Advisory: squid security update

An update for squid is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.6CVSS7.2AI score0.0282EPSS
Exploits0References2
OSV
OSV
added 2022/10/06 2:37 p.m.33 views

RLSA-2022:6839 Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: buffer-over-read in SSPI and SMB authentication CVE-2022-41318 For more details about the security issues, including the impact, a CVSS score, acknowledgments, a...

8.9CVSS8.3AI score0.0282EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2022/10/06 12:0 a.m.43 views

Important: squid security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: buffer-over-read in SSPI and SMB authentication CVE-2022-41318 For more details about the security issues, including the impact, a CVSS score, acknowledgments, a...

8.6CVSS8.7AI score0.0282EPSS
Exploits0References4
Fedora
Fedora
added 2022/10/05 1:5 a.m.50 views

[SECURITY] Fedora 35 Update: squid-5.7-1.fc35

Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DN...

8.6CVSS7.9AI score0.0282EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2022/10/04 3:19 p.m.41 views

Important: Red Hat Security Advisory: squid:4 security update

An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.6CVSS7.2AI score0.0282EPSS
Exploits0References2
Fedora
Fedora
added 2022/10/04 3:13 p.m.37 views

[SECURITY] Fedora 37 Update: squid-5.7-1.fc37

Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DN...

8.6CVSS7.9AI score0.0282EPSS
Exploits0
OSV
OSV
added 2022/10/04 2:29 p.m.29 views

RLSA-2022:6775 Important: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: buffer-over-read in SSPI and SMB authentication CVE-2022-41318 For more details about the security issues, including the impact, a CVSS score, acknowledgments, a...

8.9CVSS8.3AI score0.0282EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2022/10/04 12:0 a.m.37 views

Important: squid:4 security update

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: buffer-over-read in SSPI and SMB authentication CVE-2022-41318 For more details about the security issues, including the impact, a CVSS score, acknowledgments, a...

8.6CVSS8.4AI score0.0282EPSS
Exploits0References4
NVD
NVD
added 2022/09/28 2:15 p.m.26 views

CVE-2022-28815

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query other tables of the Sentilo service...

2.7CVSS0.00428EPSS
Exploits0References1
Prion
Prion
added 2022/09/28 2:15 p.m.19 views

Sql injection

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query other tables of the Sentilo service...

3.3CVSS4.9AI score0.00428EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2022/09/28 1:45 p.m.47 views

CVE-2022-28815

The CVE-2022-28815 entry describes a SQL injection vulnerability in the Sentilo Proxy component used by Carlo Gavazzi UWP3.0 and CPY Car Park Server (version 2.8.3). The underlying issue is unsafe SQL handling within the Sentilo Proxy, enabling an attacker to query other tables of the Sentilo ser...

2.7CVSS4.4AI score0.00428EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/28 1:45 p.m.6 views

CVE-2022-28815 SQL-Injection in Carlo Gavazzi UWP 3.0 Sentilo Proxy

In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 the Sentilo Proxy server was discovered to contain a SQL injection vulnerability allowing an attacker to query other tables of the Sentilo service...

2.7CVSS4.6AI score0.00428EPSS
Exploits0References1
CNVD
CNVD
added 2022/09/28 12:0 a.m.39 views

Squid Out-of-Bounds Read Vulnerability

Squid is a suite of proxy server and web caching server software. The software provides features such as caching the World Wide Web, filtering traffic, and proxying the Internet. Squid suffers from an out-of-bounds read vulnerability. The vulnerability stems from a boundary error when handling...

8.6CVSS7.9AI score0.0282EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/09/23 12:0 a.m.2 views

Squid 安全漏洞

Squid is a suite of proxy server and web caching server software. The software provides features such as caching the World Wide Web, filtering traffic, and proxying the Internet. Squid has a security vulnerability. An attacker can exploit this vulnerability to read sensitive information by...

6.5CVSS6.8AI score0.0169EPSS
Exploits0References13
Github Security Blog
Github Security Blog
added 2022/09/16 5:11 p.m.31 views

VNCAuthProxy authentication bypass vulnerability

OSU Open Source Lab VNCAuthProxy through 1.1.1 is affected by an vncap/vnc/protocol.py VNCServerAuthenticator authentication-bypass vulnerability that could allow a malicious actor to gain unauthorized access to a VNC session or to disconnect a legitimate user from a VNC session. A remote attacke...

9.8CVSS9.1AI score0.01653EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2022/09/16 5:11 p.m.23 views

GHSA-237R-MX84-7X8C VNCAuthProxy authentication bypass vulnerability

OSU Open Source Lab VNCAuthProxy through 1.1.1 is affected by an vncap/vnc/protocol.py VNCServerAuthenticator authentication-bypass vulnerability that could allow a malicious actor to gain unauthorized access to a VNC session or to disconnect a legitimate user from a VNC session. A remote attacke...

9.8CVSS9.6AI score0.01653EPSS
Exploits1References7
Rows per page
Query Builder