4 matches found
PT-2026-55879
Name of the Vulnerable Software and Affected Versions Apache IoTDB versions 1.3.3 through 2.0.7 Description An authentication bypass issue exists due to insufficient validation of the sessionId parameter within certain Thrift RPC query handlers. An attacker can forge the sessionId to bypass the...
EUVD-2019-8349
Malware in sbrugna...
PT-2024-7691 · Haproxy +2 · Haproxy +2
Name of the Vulnerable Software and Affected Versions: HAProxy versions 2.9.x through 2.9.10 HAProxy versions 3.0.x through 3.0.4 HAProxy versions 3.1.x through 3.1-dev6 Description: The issue allows an attacker to open a 0-RTT session with a spoofed IP address, bypassing the IP allow/block list...
Webmin < 1.230 miniserv.pl Authentication Bypass
According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.230. It is, therefore, affected by a potential authentication bypass via spoofed session IDs. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid108548; scriptversion"1.5";...