Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

ATTACKERKB
ATTACKERKBadded 2021/08/24 7:15 p.m.2 views

CVE-2021-30874

An authorization issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. A VPN configuration may be installed by an app without user permission...

7.5CVSS5.3AI score0.00926EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2021/07/21 12:4 a.m.2 views

389-ds-base: sync_repl NULL pointer dereference in sync_create_state_control()

A flaw was found In 389-ds-base. When the Content Synchronization plugin is enabled, an authenticated user can reach a NULL pointer dereference using a specially crafted query. This flaw allows an authenticated attacker to cause a denial of service. The highest threat from this vulnerability is t...

6.5CVSS5.8AI score0.01177EPSS
Exploits0References5
Hacker One
Hacker Oneadded 2020/08/13 4:58 p.m.18 views

New Relic: Adding your account to victim's app via deeplink

At your android app, there is a feature for passwordless login. It sends an email and if you click the link, it triggers a deeplink on the app for login. I think this feature needs a state control, for example setting loginstatetoken=ABC on the requester device and adding this loginstatetoken to...

1.8AI score
Exploits0
BDU FSTEC
BDU FSTECadded 2019/01/15 12:0 a.m.5 views

The vulnerability of the Cisco HyperFlex hyper-converged infrastructure, related to the insecure external control of critical data states, allows attackers to create valid signed tokens for sessions and increase their privileges.

The vulnerability of the Cisco HyperFlex hyper-converged infrastructure is related to the insecure external control of critical data states. Exploiting this vulnerability allows a malicious actor to create valid signed tokens for sessions and enhance their privileges...

9CVSS7.7AI score0.01281EPSS
Exploits0References3
Citrix
Citrixadded 2017/12/31 12:0 a.m.7 views

Citrix SD-WAN Path State Sensitivity Control Overview

Bad Loss Sensitive – Select a setting from the drop-down menu. The options are: Enable– Default If enabled, paths will be marked BAD due to loss, and will incur a path scoring penalty. Disable – Disabling Bad Loss Sensitive can be useful when the loss of bandwidth is intolerable. Custom – Select...

7AI score
Exploits0
The Hacker News
The Hacker Newsadded 2011/02/23 6:27 p.m.9 views

Libyan authorities restrict internet access !

The Libyan government could pull the plug on the country's internet as protests sweep the country. On Friday and Saturday night the country experienced a near black-out, with continued patchy access this week, according to a Google Transparency Report. Libya has had periods of partial or total...

6.6AI score
Exploits0
Rows per page
Query Builder