Lucene search
K

132 matches found

NVD
NVD
added 2018/05/20 1:29 p.m.13 views

CVE-2018-11315

The Local HTTP API in Radio Thermostat CT50 and CT80 1.04.84 and below products allows unauthorized access via a DNS rebinding attack. This can result in remote device temperature control, as demonstrated by a tstat theat request that accesses a device purchased in the Spring of 2018, and sets a...

6.5CVSS6.3AI score0.00802EPSS
Exploits1References3
Prion
Prion
added 2018/05/20 1:29 p.m.17 views

Information disclosure

The Local HTTP API in Radio Thermostat CT50 and CT80 1.04.84 and below products allows unauthorized access via a DNS rebinding attack. This can result in remote device temperature control, as demonstrated by a tstat theat request that accesses a device purchased in the Spring of 2018, and sets a...

3.3CVSS6.3AI score0.01956EPSS
Exploits2References3Affected Software2
CVE
CVE
added 2018/05/20 1:0 p.m.38 views

CVE-2018-11315

CVE-2018-11315 affects Radio Thermostat CT50/CT80 Local HTTP API (firmware 1.04.84 and earlier). The vulnerability arises from unauthorized access enabled by DNS rebinding, enabling a remote attacker to issue commands via the Local HTTP API and, as described, potentially control device temperatur...

6.5CVSS6.3AI score0.00802EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2018/05/17 2:29 p.m.29 views

Remote code execution

The Node.js inspector, in 6.x and later is vulnerable to a DNS rebinding attack which could be exploited to perform remote code execution. An attack is possible from malicious websites open in a web browser on the same computer, or another computer with network access to the computer running the...

6.8CVSS8.3AI score0.09916EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2018/05/17 2:29 p.m.23 views

CVE-2018-7160

The Node.js inspector, in 6.x and later is vulnerable to a DNS rebinding attack which could be exploited to perform remote code execution. An attack is possible from malicious websites open in a web browser on the same computer, or another computer with network access to the computer running the...

8.8CVSS8.4AI score0.09916EPSS
Exploits0References3
OSV
OSV
added 2018/02/26 11:40 p.m.9 views

MGASA-2018-0147 Updated cups packages fix security vulnerability

Updated cups packages fix security vulnerability: Jann Horn discovered that CUPS permitted HTTP requests with the Host header set to "localhost.localdomain" from the loopback interface. If a user were tricked in to opening a specially crafted website in their web browser, an attacker could...

7.5CVSS7.4AI score0.02979EPSS
Exploits1References3
Mageia
Mageia
added 2018/02/26 11:40 p.m.46 views

Updated cups packages fix security vulnerability

Updated cups packages fix security vulnerability: Jann Horn discovered that CUPS permitted HTTP requests with the Host header set to "localhost.localdomain" from the loopback interface. If a user were tricked in to opening a specially crafted website in their web browser, an attacker could...

7.5CVSS0.9AI score0.02979EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2018/02/21 12:5 a.m.55 views

USN-3577-1: CUPS vulnerability

Jann Horn discovered that CUPS permitted HTTP requests with the Host header set to "localhost.localdomain" from the loopback interface. If a user were tricked in to opening a specially crafted website in their web browser, an attacker could potentially exploit this to obtain sensitive information...

7.5CVSS6.8AI score0.02979EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/02/21 12:0 a.m.30 views

Ubuntu 14.04 LTS / 16.04 LTS : CUPS vulnerability (USN-3577-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3577-1 advisory. Jann Horn discovered that CUPS permitted HTTP requests with the Host header set to localhost.localdomain from the loopback interface. If a user were...

7.5CVSS6.8AI score0.02979EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/02/21 12:0 a.m.35 views

Ubuntu: Security Advisory (USN-3577-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02979EPSS
Exploits1References2
Amazon
Amazon
added 2018/02/07 12:0 a.m.20 views

Medium: transmission

Issue Overview: Transmission relies on X-Transmission-Session-Id which is not a forbidden header for Fetch for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transmission/rpc in conjunction with a D...

8.8CVSS9.3AI score0.11926EPSS
Exploits1
Ubuntu
Ubuntu
added 2018/01/16 8:13 p.m.61 views

USN-3533-1: Transmission vulnerability

It was discovered that Transmission incorrectly handled certain POST requests to the RPC server and allowed DNS rebinding attack. An attacker could possibly use this issue to execute arbitrary code...

8.8CVSS8.6AI score0.11926EPSS
Exploits1
CNVD
CNVD
added 2018/01/16 12:0 a.m.3 views

TransmissionRPC DNS Rebinding Vulnerability

Transmission is a free BitTorrent BT client developed by the Transmission project team for use on the Linux and Mac OS X platforms, which supports data encryption, corruption repair and seeding. A security vulnerability exists in Transmission 2.92 and earlier versions. A remote attacker can execu...

8.8CVSS7.6AI score0.11926EPSS
Exploits1References1
Prion
Prion
added 2018/01/15 4:29 p.m.120 views

Design/Logic Flaw

Transmission through 2.92 relies on X-Transmission-Session-Id which is not a forbidden header for Fetch for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transmission/rpc in conjunction with a DNS...

6.8CVSS8.9AI score0.11926EPSS
Exploits1References7Affected Software2
OSV
OSV
added 2018/01/15 4:29 p.m.2 views

DEBIAN-CVE-2018-5702

Transmission through 2.92 relies on X-Transmission-Session-Id which is not a forbidden header for Fetch for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transmission/rpc in conjunction with a DNS...

8.8CVSS8.9AI score0.11926EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/01/15 4:0 p.m.17 views

CVE-2018-5702

Transmission through 2.92 relies on X-Transmission-Session-Id which is not a forbidden header for Fetch for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transmission/rpc in conjunction with a DNS...

8.9AI score0.11926EPSS
Exploits1References7
CVE
CVE
added 2018/01/15 4:0 p.m.91 views

CVE-2018-5702

Transmission 2.92 and earlier versions rely on X-Transmission-Session-Id for access control, which is not a forbidden header for Fetch. This allows remote attackers to execute arbitrary RPC commands and write arbitrary files via POST to /transmission/rpc when combined with a DNS rebinding attack....

8.8CVSS8.8AI score0.11926EPSS
Exploits1References7Affected Software1
Debian CVE
Debian CVE
added 2018/01/15 4:0 p.m.28 views

CVE-2018-5702

Transmission through 2.92 relies on X-Transmission-Session-Id which is not a forbidden header for Fetch for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transmission/rpc in conjunction with a DNS...

8.8CVSS9AI score0.11926EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2018/01/15 12:0 a.m.21 views

CVE-2018-5702

Transmission through 2.92 relies on X-Transmission-Session-Id which is not a forbidden header for Fetch for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transmission/rpc in conjunction with a DNS...

8.8CVSS7.5AI score0.11926EPSS
Exploits1References6
OSV
OSV
added 2016/09/25 12:0 a.m.1 views

UBUNTU-CVE-2016-4760

WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 allows remote attackers to conduct DNS rebinding attacks against non-HTTP Safari sessions by leveraging HTTP/0.9 support...

6.5CVSS7AI score0.01951EPSS
Exploits0References10
Rows per page
Query Builder