722 matches found
CVE-2024-48915
Agent Dart is an agent library built for Internet Computer for Dart and Flutter apps. Prior to version 1.0.0-dev.29, certificate verification in lib/agent/certificate.dart does not occur properly. During the delegation verification in the checkDelegation function, the canisterranges aren't...
CVE-2024-48915
Agent Dart (for Dart/Flutter) prior to version 1.0.0-dev.29 has certificate verification issues in lib/agent/certificate.dart. In _checkDelegation, canister_ranges are not verified, potentially allowing a subnet to sign canister responses on behalf of another subnet. The certificate’s /time path ...
Agent Dart is missing certificate verification checks
Certificate verification in lib/agent/certificate.dart has been found to contain two issues: - During the delegation verification in checkDelegation function the canisterranges aren't verified. The impact of not checking the canisterranges is that a subnet can sign canister responses in behalf of...
CVE-2024-39534
An Incorrect Comparison vulnerability in the local address verification API of Juniper Networks Junos OS Evolved allows an unauthenticated network-adjacent attacker to create sessions or send traffic to the device using the network and broadcast address of the subnet assigned to an interface. Thi...
Juniper Networks Junos OS Evolved 安全漏洞
Juniper Networks Junos OS Evolved is an upgraded version of Juniper Networks' Junos OS system. A security vulnerability exists in Juniper Networks Junos OS Evolved. An attacker exploits the vulnerability to create a session or send traffic to the device using the network and broadcast addresses...
PT-2024-7847 · Juniper Networks · Junos Evolved
Name of the Vulnerable Software and Affected Versions: Junos OS Evolved versions prior to 21.4R3-S8-EVO Junos OS Evolved version 22.2-EVO prior to 22.2R3-S4-EVO Junos OS Evolved version 22.3-EVO prior to 22.3R3-S4-EVO Junos OS Evolved version 22.4-EVO prior to 22.4R3-S3-EVO Junos OS Evolved versi...
Subnet Solutions Inc. PowerSYSTEM Center
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Subnet Solutions Inc. Equipment: PowerSYSTEM Center Vulnerabilities: Server-Side Request Forgery SSRF, Inefficient Regular Expression Complexity, Cross-Site Request Forgery CSRF 2. RISK...
D-Link DAP-1325 SubnetMask Command Injection Vulnerability
D-Link DAP-1325 is a wireless access point/bridge made by D-Link, which is mainly used to extend the wireless network coverage, support the conversion of wired network to wireless network or connect different wireless networks. The D-Link DAP-1325 suffers from a command injection vulnerability th...
Subnet Solutions PowerSYSTEM Center
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.9 ATTENTION : Exploitable remotely/low attack complexity Vendor : Subnet Solutions Inc. Equipment : Subnet PowerSYSTEM Center Vulnerability : Prototype Pollution 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an authenticated...
How to Move a XenServer Pool to a Different IP Subnet
This article describes how to change the IP subnet assigned to the management network on a XenServer pool. This procedure is long compared to changing the IP address while staying in the same subnet. Requirements Working knowledge of XenServer and XenCenter and basic knowledge of the Command Line...
Understanding Subnet Affinity and Auto Rebalance
This article details the Subnet Affinity and Auto Rebalance features and also provides the best practices for their use. Subnet Affinity When assigning the server and NIC combination to provide a vDisk to target devices, select from the following subnet settings: None: Ignore subnets; use least...
How to Configure NetScaler and StoreFront for Internal and External Connections
This article describes how to configure NetScaler and StoreFront with two NetScaler Gateways, two StoreFront sites, two different subnet IPs, and one URL for both internal and external connections...
The vulnerability of the EDNS Client Subnet (ECS) DNS-server BIND component, which allows a attacker to cause a service failure.
The vulnerability of the EDNS Client Subnet ECS component of the BIND DNS server is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures through the named parameter...
CVE-2024-26024
SUBNET Solutions Inc. has identified vulnerabilities in third-party components used in Substation Server...
CVE-2024-26024 SUBNET Substation Server Reliance on Insufficiently Trustworthy Component
SUBNET Solutions Inc. has identified vulnerabilities in third-party components used in Substation Server...
CVE-2024-26024 SUBNET Substation Server Reliance on Insufficiently Trustworthy Component
SUBNET Solutions Inc. has identified vulnerabilities in third-party components used in Substation Server...
SUBNET Solutions Substation Server 安全漏洞
Subnet Solutions Substation Server is a powerful and versatile substation integration solution from Subnet Solutions Canada. A security vulnerability exists in SUBNET Solutions Substation Server. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or t...
Important: Red Hat Security Advisory: bind and dhcp security update
An update for bind is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
CVE-2024-28042
SUBNET Solutions Inc. has identified vulnerabilities in third-party components used in PowerSYSTEM Center...
CVE-2024-28042
CVE-2024-28042 relates to SUBNET PowerSYSTEM Center’s reliance on third‑party components. The vulnerability affects PowerSYSTEM Center prior to update 5.20.x.x, arising from untrusted third‑party libraries used by the product. Impact per CISA ICS advisory includes potential privilege escalation, ...