8 matches found
EUVD-2019-0131
Malware in sbrugna...
HoneyCreds - Network Credential Injection To Detect Responder And Other Network Poisoners
HoneyCreds network credential injection to detect responder and other network poisoners. Requirements Requires Python 3.6+ tested on Python 3.9 smbprotocol cffi splunk-sdk Installation git clone https://github.com/Ben0xA/HoneyCreds.git cd HoneyCreds pip3 install -r requirements.txt Running python...
GHSA-F58W-649R-QJR9 splunk-sdk does not properly verify untrusted TLS server certificates
Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates, which could result in man-in-the-middle attacks...
Man-in-the-Middle (MitM)
splunk-sdk is vulnerable to man-in-the-middle MitM attacks. Untrusted TLS server certificates are not verified and validated on the client, which would allow an attacker to sniff or modify network traffic between the client and the server...
CVE-2019-5729
Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates, which could result in man-in-the-middle attacks...
PYSEC-2019-203
Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates, which could result in man-in-the-middle attacks...
Code injection
Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates, which could result in man-in-the-middle attacks...
CVE-2019-5729
Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates, which could result in man-in-the-middle attacks...