Lucene search
K

200 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-0674

Malware in sbrugna...

4.3CVSS6.2AI score0.01015EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2006-3421

Malware in sbrugna...

7.5CVSS6.4AI score0.0229EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-2783

Malware in sbrugna...

2.6CVSS8.9AI score0.01766EPSS
Exploits0References59
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-1370

Malware in sbrugna...

5CVSS9.3AI score0.00949EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/10/06 7:1 a.m.7 views

CVE-2025-58584 Plain Text Transmission of Username and Password in the URL

In the HTTP request, the username and password are transferred directly in the URL as parameters. However, URLs can be stored in various systems such as server logs, browser histories or proxy servers. As a result, there is a high risk that this sensitive data will be disclosed unintentionally...

5.3CVSS0.00363EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-23314

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.00129EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-38546

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00186EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.6 views

NVIDIA Omniverse Launcher < 1.9.19 Information Disclosure

The version of NVIDIA Omniverse Launcher installed on the remote host is prior to 1.9.19. It is, therefore, affected by a vulnerability. NVIDIA Omniverse Launcher for Windows and Linux contains a vulnerability in the launcher logs, where a user could cause sensitive information to be written to t...

5.5CVSS5.5AI score0.00129EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/31 8:41 p.m.8 views

CVE-2025-23289

NVIDIA Omniverse Launcher for Windows and Linux contains a vulnerability in the launcher logs, where a user could cause sensitive information to be written to the log files through proxy servers. A successful exploit of this vulnerability might lead to information disclosure...

5.5CVSS0.00129EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/31 8:41 p.m.5 views

CVE-2025-23289

NVIDIA Omniverse Launcher for Windows and Linux contains a vulnerability in the launcher logs, where a user could cause sensitive information to be written to the log files through proxy servers. A successful exploit of this vulnerability might lead to information disclosure...

5.5CVSS6.5AI score0.00129EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/31 12:0 a.m.8 views

PT-2025-31586 · Nvidia · Nvidia Omniverse Launcher

Name of the Vulnerable Software and Affected Versions: NVIDIA Omniverse Launcher for Windows and Linux affected versions not specified Description: NVIDIA Omniverse Launcher for Windows and Linux contains an issue in the launcher logs. A user can cause sensitive information to be written to log...

5.5CVSS6.7AI score0.00129EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2025/03/17 12:0 a.m.4 views

Creating Scripts to Identify Vulnerable Proxy Servers

This whitepaper covers how to create Nmap scripts to identify banners and versions of proxy servers. It also covers methods to mitigate the public visibility of banners and version information on proxy servers. Written in Portuguese...

6.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/03/09 12:0 a.m.9 views

PT-2025-11679 · Openresty +1 · Lua-Nginx-Module +2

Name of the Vulnerable Software and Affected Versions: OpenResty/lua-nginx-module affected versions not specified Description: The issue concerns HTTP Request Smuggling in HEAD requests. When handling HTTP/1.1 requests, the lua-nginx-module incorrectly parses HEAD requests with a body, treating t...

7.7CVSS5.3AI score0.01313EPSS
Exploits1References31
OSV
OSV
added 2024/11/09 7:22 a.m.19 views

BIT-ZOOKEEPER-2024-51504 Apache ZooKeeper: Authentication bypass with IP-based authentication in Admin Server

When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing -- this only impacts IP based authentication implemented in ZooKeeper Admin Server. Default configuration of client's IP address detection in IPAuthenticationProvider, which...

9.1CVSS8.1AI score0.00924EPSS
Exploits0References3
NVD
NVD
added 2024/11/07 10:15 a.m.17 views

CVE-2024-51504

When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing -- this only impacts IP based authentication implemented in ZooKeeper Admin Server. Default configuration of client's IP address detection in IPAuthenticationProvider, which...

9.1CVSS0.00924EPSS
Exploits0References2
OSV
OSV
added 2024/11/07 10:15 a.m.16 views

CVE-2024-51504

When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing -- this only impacts IP based authentication implemented in ZooKeeper Admin Server. Default configuration of client's IP address detection in IPAuthenticationProvider, which...

9.1CVSS6.7AI score
Exploits0References2
CVE
CVE
added 2024/11/07 9:52 a.m.180 views

CVE-2024-51504

CVE-2024-51504 affects ZooKeeper Admin Server via IPAuthenticationProvider. Default IP detection uses HTTP headers (X-Forwarded-For) and can be spoofed, leading to authentication bypass for IP-based auth. Admin commands like snapshot/restore may be exploited after bypass. Impact: potential inform...

9.1CVSS9.2AI score0.00924EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/07 9:52 a.m.17 views

CVE-2024-51504 Apache ZooKeeper: Authentication bypass with IP-based authentication in Admin Server

When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing -- this only impacts IP based authentication implemented in ZooKeeper Admin Server. Default configuration of client's IP address detection in IPAuthenticationProvider, which...

7.1AI score0.00924EPSS
Exploits0References1
NVD
NVD
added 2024/08/14 8:15 p.m.12 views

CVE-2024-40620

CVE-2024-40620 IMPACT A vulnerability exists in the affected product due to lack of encryption of sensitive information. The vulnerability results in data being sent between the Console and the Dashboard without encryption, which can be seen in the logs of proxy servers, potentially impacting the...

7.5CVSS0.00186EPSS
Exploits0References1
CVE
CVE
added 2024/08/14 7:58 p.m.54 views

CVE-2024-40620

CVE-2024-40620 affects Rockwell Automation Pavilion8, specifically version 5.20 (and later). The root cause is missing encryption of sensitive data exchanged between the Console and the Dashboard, which can be observed in proxy-server logs, potentially compromising confidentiality. Rockwell Autom...

7.5CVSS6.4AI score0.00186EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder