11 matches found
CVE-2026-33063
free5GC is an open source 5G core network. free5GC AUSF prior to version 1.4.2 has is an Improper Null Check vulnerability leading to Denial of Service. All deployments of free5GC v4.0.1 using the AUSF UE authentication service /nausf-auth/v1/ue-authentications endpoint are affected. A remote...
PT-2025-11183 · Tenda · Tenda Rx3
Name of the Vulnerable Software and Affected Versions: Tenda RX3 US RX3V1.0br V16.03.13.11 multi TDE01 Description: The issue is related to a Buffer Overflow vulnerability via the list parameter at the "/goform/setPptpUserList" API endpoint. This allows attackers to cause a Denial of Service DoS ...
PT-2024-16296 · Delta Electronics · Infrasuite Device Master
Name of the Vulnerable Software and Affected Versions: Delta Electronics InfraSuite Device Master versions prior to 1.0.12 Description: The issue is a deserialization vulnerability that targets the Device-Gateway, allowing deserialization of arbitrary .NET objects prior to authentication. This...
PT-2024-4519
Name of the Vulnerable Software and Affected Versions: Ffmpeg version N113007-g8d24a28d06 Description: The issue is related to a buffer overflow vulnerability in the interpolate component of the Ffmpeg library, specifically in the libavfilter/vf minterpolate.c file. This vulnerability is caused b...
PT-2023-31833 · Gradio · Gradio
Name of the Vulnerable Software and Affected Versions: Gradio versions prior to 4.11.0 Description: The issue concerns a vulnerability in the /file route of Gradio, making it susceptible to file traversal attacks. An attacker could access arbitrary files on a machine running a Gradio app with a...
PT-2023-7273 · Sysaid · Sysaid
Name of the Vulnerable Software and Affected Versions: SysAid versions prior to 23.2.15 Description: The issue allows for Indirect Object Reference IDOR attacks, enabling unauthorized access to protected information. This can be achieved by modifying the sid parameter to EmailHtmlSourceIframe.jsp...
PT-2023-4084 · Siemens · Simatic Cn 4100
Name of the Vulnerable Software and Affected Versions: SIMATIC CN 4100 versions prior to V2.5 Description: A vulnerability has been identified in the SIMATIC CN 4100, related to an incorrect default value in the SSH configuration. This issue could allow an attacker to bypass network isolation. Th...
PT-2023-22421 · Abstrium · Abstrium Pydio Cells
Name of the Vulnerable Software and Affected Versions: Abstrium Pydio Cells version 4.2.0 Description: A critical vulnerability was found in the User Creation Handler component, leading to improper control of resource identifiers. The attack can be initiated remotely. Upgrading to version 4.2.1 i...
PT-2022-6327 · D Link · D-Link Dir-859 A1
Name of the Vulnerable Software and Affected Versions: D-Link DIR-859 A1 version 1.05 Description: The issue is related to a command injection vulnerability in the soapcgi main function of the D-Link DIR-859 A1 router's firmware. This vulnerability can be exploited by a remote attacker to execute...
PT-2020-15041 · Istio · Istio
Name of the Vulnerable Software and Affected Versions: Kiali versions 0.4.0 through 1.15.0 Description: The issue is related to insufficient JWT validation, allowing a remote attacker to steal a valid JWT cookie and use it to spoof a user session. This could potentially grant privileges to view a...
Fedora 16 : java-1.6.0-openjdk-1.6.0.0-69.1.11.6.fc16 (2013-1898)
Rewritten java-1.6.0-openjdk-java-access-bridge-security.patch - Updated to icedtea6 1.11.6 - Security fixes - S6563318, CVE-2013-0424: RMI data sanitization - S6664509, CVE-2013-0425: Add logging context - S6664528, CVE-2013-0426: Find log level matching its name or value given at construction...