59 matches found
CVE-2026-0268
A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS...
Remote Code Execution
Sonatype Nexus Repository is vulnerable to Remote Code Execution. The vulnerability is due to a flaw in the task management component, where an authenticated attacker with task creation permissions can bypass the nexus.scripts.allowCreation security control and execute arbitrary code...
CVE-2025-40536
CVE-2025-40536 relates to SolarWinds Web Help Desk and is described in connected sources as a security control bypass that could allow an unauthenticated attacker to access certain restricted functionality. The KEV/KEA entries note active exploitation risk, and a Metasploit module documents an un...
EUVD-2021-25665
Malware in sbrugna...
EUVD-2011-2418
Malware in sbrugna...
EUVD-2021-21461
Malware in sbrugna...
EUVD-2022-39674
Malicious code in bioql PyPI...
CVE-2022-37017
Symantec Endpoint Protection Windows agent, prior to 14.3 RU6/14.3 RU5 Patch 1, may be susceptible to a Security Control Bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing security controls. This CVE applies narrowly to the Client User...
CVE-2021-39304
Proofpoint Enterprise Protection before 8.12.0-2108090000 allows security control bypass...
CVE-2021-34814
Proofpoint Spam Engine before 8.12.0-2106240000 has a Security Control Bypass...
CVE-2021-31608
Proofpoint Enterprise Protection before 18.8.0 allows a Bypass of a Security Control...
CVE-2023-34108
mailcow is a mail server suite based on Dovecot, Postfix and other open source software, that provides a modern web UI for user/server administration. A vulnerability has been discovered in mailcow which allows an attacker to manipulate internal Dovecot variables by using specially crafted...
Symantec Endpoint Protection Client < 14.3 RU5 Security Control Bypass
The version of Symantec Endpoint Protection Client SEP installed on the remote host is prior to 14.3 RU5 Patch 1. It is therefore affected by a Security Control Bypass if Client User Interface Password protection and/or Policy Import/Export Password protection is enabled. CVE-2022-37017 Note that...
Symantec Endpoint Protection Manager < 14.3 RU5 Security Control Bypass (deprecated)
This plugin has been deprecated. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2009/04/02. Deprecated by symantecendpointprotclient143RU5P1.nasl. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid169425; scriptversion"1.3";...
CVE-2022-37017
Symantec Endpoint Protection Windows agent, prior to 14.3 RU6/14.3 RU5 Patch 1, may be susceptible to a Security Control Bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing security controls. This CVE applies narrowly to the Client User...
Security feature bypass
Symantec Endpoint Protection Windows agent, prior to 14.3 RU6/14.3 RU5 Patch 1, may be susceptible to a Security Control Bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing security controls. This CVE applies narrowly to the Client User...
CVE-2022-37017
CVE-2022-37017 affects Symantec Endpoint Protection Client for Windows prior to 14.3 RU6 (and 14.3 RU5 Patch 1). The vulnerability targets UI Password protection and Policy Import/Export Password protection, allowing a security control bypass. Root-cause details in public disclosures describe a b...
CVE-2022-37017
Symantec Endpoint Protection Windows agent, prior to 14.3 RU6/14.3 RU5 Patch 1, may be susceptible to a Security Control Bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing security controls. This CVE applies narrowly to the Client User...
CVE-2022-37017
Symantec Endpoint Protection Windows agent, prior to 14.3 RU6/14.3 RU5 Patch 1, may be susceptible to a Security Control Bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing security controls. This CVE applies narrowly to the Client User...
CVE-2021-31608
Proofpoint Enterprise Protection before 18.8.0 allows a Bypass of a Security Control...