EUVD-2021-10082

Malware in sbrugna...

EUVD-2021-10081

Malware in sbrugna...

GO-2023-1850 HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul

HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul...

PyTorch < 2.2.2 RCE

The remote host contains a torchserve version that is prior to 2.2.2. It is, therefore, affected by a remote code execution vulnerability. A vulnerability in the PyTorch's torch.distributed.rpc framework, specifically in versions prior to 2.2.2, allows for remote code execution RCE. The framework...

CVE-2023-48364

A vulnerability has been identified in OpenPCS 7 V9.1 All versions V9.1 SP2 UC05, SIMATIC BATCH V9.1 All versions V9.1 SP2 UC05, SIMATIC PCS 7 V9.1 All versions V9.1 SP2 UC05, SIMATIC Route Control V9.1 All versions V9.1 SP2 UC05, SIMATIC WinCC Runtime Professional V18 All versions V18 Update 4,...

CVE-2023-48364

A vulnerability has been identified in OpenPCS 7 V9.1 All versions V9.1 SP2 UC05, SIMATIC BATCH V9.1 All versions V9.1 SP2 UC05, SIMATIC PCS 7 V9.1 All versions V9.1 SP2 UC05, SIMATIC Route Control V9.1 All versions V9.1 SP2 UC05, SIMATIC WinCC Runtime Professional V18 All versions V18 Update 4,...

RPCMon - RPC Monitor Tool Based On Event Tracing For Windows

A GUI tool for scanning RPC communication through Event Tracing for Windows ETW. The tool was published as part of a research on RPC communication between the host and a Windows container. Overview RPCMon can help researchers to get a high level view over an RPC communication between processes. I...

CVE-2021-22955

A unauthenticated denial of service vulnerability exists in Citrix ADC 13.0-83.27, 12.1-63.22 and 11.1-65.23 when configured as a VPN Gateway or AAA virtual server could allow an attacker to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication...

CVE-2021-22956

An uncontrolled resource consumption vulnerability exists in Citrix ADC 13.0-83.27, 12.1-63.22 and 11.1-65.23 that could allow an attacker with access to NSIP or SNIP with management interface access to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication...

Design/Logic Flaw

An uncontrolled resource consumption vulnerability exists in Citrix ADC 13.0-83.27, 12.1-63.22 and 11.1-65.23 that could allow an attacker with access to NSIP or SNIP with management interface access to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication...

Denial of service

A unauthenticated denial of service vulnerability exists in Citrix ADC 13.0-83.27, 12.1-63.22 and 11.1-65.23 when configured as a VPN Gateway or AAA virtual server could allow an attacker to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication...

CVE-2021-22955

A unauthenticated denial of service vulnerability exists in Citrix ADC 13.0-83.27, 12.1-63.22 and 11.1-65.23 when configured as a VPN Gateway or AAA virtual server could allow an attacker to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication...

Citrix Application Delivery Controller, Citrix Gateway, and Citrix SD-WAN WANOP Edition appliance Security Update

Vulnerabilities have been discovered in Citrix ADCformerlyknown asNetScaler ADC,Citrix Gateway formerlyknown asNetScaler Gateway,and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO.These vulnerabilities,if exploited,could result in the following security issues: CVE-ID|...

MaxClient on Httpd

As highlighted athttps://support.citrix.com/article/CTX330728,it is possible for a malicious actor totemporarily disruptthe performance oftheManagementGUI, NitroAPI, and RPC communicationonCitrixADC, CitrixGateway, and Citrix SD-WAN WANOP Edition appliancesunlessthe appliancehas been...

Man-in-the-Middle (MitM)

github.com/hashicorp/consul is vulnerable to man-in-the-middle. The agent-to-agent RPC communication does not verify the hostname of outgoing connections which results in an insecure plaintext communications channel. This allows an attacker to perform a man-in-the-middle attack against vulnerable...

CVE-2018-19653

HashiCorp Consul 0.5.1 through 1.4.0 can use cleartext agent-to-agent RPC communication because the verifyoutgoing setting is improperly documented. NOTE: the vendor has provided reconfiguration steps that do not require a software upgrade...

Microsoft Windows: Require secure RPC communication (Remote Desktop Services)

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winrdhostsecurerpc.nasl 11363 2018-09-12 13:46:05Z emoss $ Check value for Require secure RPC communication Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is...

Debian: Security Advisory (DSA-1368-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-1368-1 : librpcsecgss - buffer overflow

It was discovered that a buffer overflow of the library for secure RPC communication over the rpcsecgss protocol allows the execution of arbitrary code. The oldstable distribution sarge doesn't contain librpcsecgss. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...