5 matches found
EUVD-2025-6937
Malicious code in bioql PyPI...
CVE-2024-8196
CVE-2024-8196 affects mintplex-labs/anything-llm v1.5.11 desktop for Windows. The app opens server port 3001 on 0.0.0.0 with no authentication by default, enabling an attacker to gain full backend access and potentially delete all data from the workspace. Connected sources reiterate the same beha...
PT-2025-12223 · Unknown · Anything-Llm
Name of the Vulnerable Software and Affected Versions: mintplex-labs/anything-llm version 1.5.11 Description: The application opens server port 3001 on 0.0.0.0 with no authentication by default, allowing an attacker to gain full backend access. This enables them to perform actions such as deletin...
PT-2023-19671 · Sap · Sap Host Agent
Name of the Vulnerable Software and Affected Versions: SAP Host Agent Start Service versions 7.21, 7.22 Description: An attacker authenticated as a non-admin user with local access to a server port assigned to the SAP Host Agent can submit a crafted ConfigureOutsideDiscovery request with an...
Дырка в iptables/nat в linux (protection bypass)
Некорректная обработка команд FTP и других протоколов позволяет открыть любой порт сервера и приводит к возможности атаки из демилитаризованной в приватную зону...