3 matches found
📄 Extensis Portfolio Manager 4.0.1 Shell Upload
This Metasploit module exploits multiple vulnerabilities in Extensis Portfolio Server to achieve remote code execution. It leverages CVE-2022-24251 and related issues to upload a JSP webshell and execute arbitrary commands. Version 4.0.1 is affected...
SUSE-SU-2017:3370-1 Security update for python-PyJWT
This update for python-PyJWT fixes the following issues: - CVE-2017-12880: fix symmetric/asymmetric confusion when handling PKCS1 public keys bsc1054106...
CVE-2007-5981
CVE-2007-5981 affects Lantronix SCS3200. The device reportedly does not properly handle public-key requests, enabling remote attackers to cause a denial of service (unresponsive device) via unspecified keyscan requests. This entry’s provenance is described as originating from third-party informat...