11 matches found
CVE-2024-51995
Combodo iTop is a web based IT Service Management tool. An attacker can request any route we want as long as we specify an operation that is allowed. This issue has been addressed in version 3.2.0 by applying the same access control pattern as in UI.php to the ajax.render.php page which does not...
The vulnerability of the DHCP protocol lies in the lack of authentication for the critical function, allowing attackers to manipulate routes to redirect VPN traffic.
The vulnerability of the DHCP protocol lies in the lack of authentication for the critical function. Exploiting this vulnerability allows a malicious actor to remotely manipulate routing mechanisms, thereby redirecting VPN traffic...
K000139553: VPN TunnelVision vulnerability CVE-2024-3661
Security Advisory Description By design, the DHCP protocol does not authenticate messages, including for example the classless static route option 121. An attacker with the ability to send DHCP messages can manipulate routes to redirect VPN traffic, allowing the attacker to read, disrupt, or...
CVE-2024-3661
DHCP can add routes to a client’s routing table via the classless static route option 121. VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify...
CVE-2024-3661
CVE-2024-3661 – Summary : DHCP can inject routes via option 121 in the classless static route option, enabling an attacker on the same LAN to cause VPN traffic to leak onto the physical interface. This affects NetworkManager-based VPN setups where routes aren’t strictly bound to VPN interfaces. I...
PT-2024-3325
Name of the Vulnerable Software and Affected Versions DHCP affected versions not specified Description The issue is related to a lack of authentication in the DHCP protocol, specifically with the classless static route option 121. This allows an attacker to manipulate routes and potentially...
CVE-2024-25123 Path Manipulation in file mslib/index.py in MSS
MSS Mission Support System is an open source package designed for planning atmospheric research flights. In file: index.py, there is a method that is vulnerable to path manipulation attack. By modifying file paths, an attacker can acquire sensitive information from different resources. The filena...
Design/Logic Flaw
An access control issue in the component /ManageRoute/postRoute of FreeTAKServer v1.9.8 allows unauthenticated attackers to cause a Denial of Service DoS via an unusually large amount of created routes, or create unsafe or false routes for legitimate users...
CVE-2017-8333
An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of adding new routes to the device. It seems that the POST parameters passed in this request to set up routes on the device can be set in such a way...
CVE-2016-8631
CVE-2016-8631 affects the OpenShift router in OpenShift Container Platform 3 (and OpenShift Enterprise 3) where routes are not sorted correctly when new routes are added. The underlying issue allows a user with permission to create routes to potentially overwrite existing routes and redirect traf...
CVE-2016-8631
The OpenShift Enterprise 3 router does not properly sort routes when processing newly added routes. An attacker with access to create routes can potentially overwrite existing routes and redirect network traffic for other users to their own site...