17 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-5246
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mgtlsverifycertsignature of the file mongoose.c of the component P-384...
CVE-2026-5246
A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mgtlsverifycertsignature of the file mongoose.c of the component P-384 Public Key Handler. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely. Attacks of this nature...
CVE-2026-5246
A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mgtlsverifycertsignature of the file mongoose.c of the component P-384 Public Key Handler. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely. Attacks of this nature...
CVE-2026-5246 Cesanta Mongoose P-384 Public Key mongoose.c mg_tls_verify_cert_signature authorization
A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mgtlsverifycertsignature of the file mongoose.c of the component P-384 Public Key Handler. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely. Attacks of this nature...
CVE-2026-5246
A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mgtlsverifycertsignature of the file mongoose.c of the component P-384 Public Key Handler. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely. Attacks of this nature...
CVE-2026-5246 Cesanta Mongoose P-384 Public Key mongoose.c mg_tls_verify_cert_signature authorization
A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mgtlsverifycertsignature of the file mongoose.c of the component P-384 Public Key Handler. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely. Attacks of this nature...
CVE-2026-5246
CVEs details (CVE-2026-5246) : Affects Cesanta Mongoose up to version 7.20. The vulnerability is in the function mg_tls_verify_cert_signature (mongoose.c) within the P-384 Public Key Handler. Remote exploitation could lead to an authorization bypass. Exploitation is described as complex, and ther...
Cesanta Mongoose 安全漏洞
Cesanta Mongoose is a set of embedded server libraries developed by the Irish company Cesanta. It includes functions for TCP and HTTP clients and servers, as well as WenSocket clients and servers. Versions of Cesanta Mongoose 7.20 and earlier contained security vulnerabilities. These...
EUVD-2022-52065
Malicious code in bioql PyPI...
CVE-2022-4768
A vulnerability was found in Dropbox merou. It has been classified as critical. Affected is the function addpublickey of the file grouper/publickey.py of the component SSH Public Key Handler. The manipulation of the argument publickeystr leads to injection. It is possible to launch the attack...
CVE-2022-4768
A vulnerability was found in Dropbox merou. It has been classified as critical. Affected is the function addpublickey of the file grouper/publickey.py of the component SSH Public Key Handler. The manipulation of the argument publickeystr leads to injection. It is possible to launch the attack...
CVE-2022-4768
A vulnerability was found in Dropbox merou. It has been classified as critical. Affected is the function addpublickey of the file grouper/publickey.py of the component SSH Public Key Handler. The manipulation of the argument publickeystr leads to injection. It is possible to launch the attack...
Design/Logic Flaw
A vulnerability was found in Dropbox merou. It has been classified as critical. Affected is the function addpublickey of the file grouper/publickey.py of the component SSH Public Key Handler. The manipulation of the argument publickeystr leads to injection. It is possible to launch the attack...
CVE-2022-4768 Dropbox merou SSH Public Key public_key.py add_public_key injection
A vulnerability was found in Dropbox merou. It has been classified as critical. Affected is the function addpublickey of the file grouper/publickey.py of the component SSH Public Key Handler. The manipulation of the argument publickeystr leads to injection. It is possible to launch the attack...
CVE-2022-4768
CVE-2022-4768 affects Dropbox Merou’s SSH Public Key Handler. The vulnerability lies in the add_public_key function of grouper/public_key.py, where manipulating the argument public_key_str leads to injection. It is possible to launch the attack remotely. The patch identified is d93087973afa26bc0a...
PT-2022-28082 · Dropbox · Dropbox
Name of the Vulnerable Software and Affected Versions: Dropbox merou affected versions not specified Description: A critical issue was found in the SSH Public Key Handler component, specifically in the add public key function of the grouper/public key.py file. The manipulation of the public key s...
Dropbox Merou 注入漏洞
Dropbox Merou is an open source Dropbox application that allows users to create and manage their group memberships. Dropbox Merou suffers from an injection vulnerability that stems from a problem with the addpublickey function in the grouper/publickey.py file in the component SSH Public Key...