Lucene search
K

7 matches found

EUVD
EUVD
added 2026/06/20 6:27 p.m.8 views

EUVD-2026-38132

AVideo through 29.0 contains an authorization bypass vulnerability in the Meet plugin's uploadRecordedVideo.json.php endpoint that derives the target usersid from the uploaded filename without verification. An attacker with knowledge of the Meet shared secret can craft a malicious file upload wit...

9.2CVSS6AI score0.00295EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-6089

Malware in sbrugna...

7.5CVSS7.4AI score0.01673EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-2524

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00628EPSS
Exploits1References7
F5 Networks
F5 Networks
added 2023/10/10 9:58 a.m.28 views

K06110200: BIG-IP and BIG-IQ TACACS+ audit log vulnerability CVE-2023-43485

Security Advisory Description When TACACS+ audit forwarding is configured on a BIG-IP or BIG-IQ system, shared secret is logged in plaintext in the audit log. CVE-2023-43485 Impact An authenticated attacker with at least auditor role privileges can view shared secret. There is no data plane...

5.5CVSS5.8AI score0.00171EPSS
Exploits0Affected Software13
SUSE CVE
SUSE CVE
added 2023/09/20 11:26 p.m.3 views

SUSE CVE-2023-43617

An issue was discovered in Croc through 9.6.5. When a custom shared secret is used, the sender and receiver may divulge parts of this secret to an untrusted Relay, as part of composing a room name...

5.3CVSS6.9AI score0.00628EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2017/02/17 12:0 a.m.32 views

Fortinet FortiManager TLS Certificate Validation Failure (FG-IR-16-055)

Fortinet FortiManager is prone to a TLS certificate validation failure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.4CVSS7.3AI score0.00899EPSS
Exploits0References2
OSV
OSV
added 2012/06/20 5:55 p.m.5 views

DEBIAN-CVE-2011-5095

The Diffie-Hellman key-exchange implementation in OpenSSL 0.9.8, when FIPS mode is enabled, does not properly validate a public parameter, which makes it easier for man-in-the-middle attackers to obtain the shared secret key by modifying network traffic, a related issue to CVE-2011-1923...

4CVSS8.2AI score0.02088EPSS
Exploits0References1
Rows per page
Query Builder