12 matches found
JLSEC-2026-424 curl's code for managing SSH connections when SFTP was done using the wolfSSH powered backend was...
curl's code for managing SSH connections when SFTP was done using the wolfSSH powered backend was flawed and missed host verification mechanisms. This prevents curl from detecting MITM attackers and more...
CVE-2025-10966
curl's code for managing SSH connections when SFTP was done using the wolfSSH powered backend was flawed and missed host verification mechanisms. This prevents curl from detecting MITM attackers and more...
SSH PrivX 安全漏洞
SSH PrivX is a scalable, cost-effective and highly automated privileged access management PAM solution from SSH. A security vulnerability exists in SSH PrivX versions 18.0 through 36.0 that stems from insufficient validation of public key signatures during a native SSH connection using a proxy po...
Cisco Firepower Management Center和Firepower Threat Defense 资源管理错误漏洞
Cisco Firepower Management Center FMC and Cisco Firepower Threat Defense FTD are both products of Cisco, Inc. Cisco Firepower Management Center is the next-generation firewall management center software. Cisco Firepower Threat Defense is a unified set of software that provides next-generation...
Exploit for Improper Access Control in Webmin
WebminRCE-exploit CVE-2022-0824, CVE-2022-0829 - File Manger p...
USN-5327-1: rsh vulnerability
Hiroyuki Yamamori discovered that rsh incorrectly handled certain filenames. If a user or automated system were tricked into connecting to a malicious rsh server, a remote attacker could possibly use this issue to modify directory permissions...
Jenkins 插件权限许可和访问控制问题漏洞
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins SCP publisher Plugin 1.8 and earlier versions have an access control error vulnerability that stems from not...
[SECURITY] [DLA 2822-1] netkit-rsh security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2822-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz November 19, 2021 https://wiki.debian.org/LTS -...
FIBARO Home Center 2 信任管理问题漏洞
FIBARO Home Center 2 is an application system of the Polish company FIBARO. A system integration system. A security vulnerability exists in Fibaro Home Center 2 that originates from an SSH connection that can be intercepted by a DNS spoofing attack...
Mac cryptocurrency ticker app installs backdoors
An astute contributor to our forums going by the handle 1vladimir noticed that an app named CoinTicker was exhibiting some fishy behavior over the weekend. It seems that the app is covertly installing not just one but two different backdoors. Behaviors The CoinTicker app, on the surface, appears ...
Cisco IOS XR for Cisco Network Convergence System Denial of Service Vulnerability
Cisco IOS XR on NCS 6000 is an operating system from Cisco that runs on 6000 series router devices. A denial of service vulnerability exists in Cisco IOS XR versions 5.x through 5.2.5 on NCS 6000 devices, which arises from the program failing to properly manage system timer resources. A remote...
PT-2013-2960 · Cisco · Cisco Firewall Services Module +1
Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA devices affected versions not specified Cisco Firewall Services Module FWSM affected versions not specified Description: The Secure Shell SSH implementation does not properly terminate sessions, allowing...