14 matches found
CVE-2026-42344 FastGPT: DNS rebinding TOCTOU bypass in isInternalAddress allows SSRF on all protected endpoints
FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress function in packages/service/common/system/utils.ts is vulnerable to DNS rebinding TOCTOU — Time-of-Check to Time-of-Use. The function resolves the hostname via dns.resolve4/dns.resolve6 and check...
SUSE CVE-2023-54059
In the Linux kernel, the following vulnerability has been resolved: soc: mediatek: mtk-svs: Enable the IRQ later If the system does not come from reset like when is booted via kexec, the peripheral might triger an IRQ before the data structures are initialised. 0.227710 Unable to handle kernel NU...
EUVD-2017-16177
Malware in sbrugna...
Mozilla: Potential permissions request bypass via clickjacking
The Mozilla Foundation Security Advisory describes this flaw as: A bug in popup notifications delay calculation could have made it possible for an attacker to trick a user into granting permissions...
PT-2023-7120 · Cisco · Cisco Secure Endpoint Connector For Windows
Name of the Vulnerable Software and Affected Versions: Cisco Secure Endpoint Connector for Windows affected versions not specified Description: The issue is related to a timing problem between various software components, which can be exploited by an authenticated, local attacker to evade endpoin...
UBUNTU-CVE-2023-34241
OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should have logged the data...
GSocketClient in GNOME GLib through 2.62.4 may occasionally connect directly to a target address instead of connecting via a proxy server when configured to do so because the proxy_addr field is mishandled. This bug is timing-dependent and may occur only sporadically depending on network delays. The greatest security relevance is in use cases where a proxy is used to help with privacy/anonymity even though there is no technical barrier to a direct connection. NOTE: versions before 2.60 are unaffected.
...
ALPINE-CVE-2020-6750
GSocketClient in GNOME GLib through 2.62.4 may occasionally connect directly to a target address instead of connecting via a proxy server when configured to do so, because the proxyaddr field is mishandled. This bug is timing-dependent and may occur only sporadically depending on network delays...
UBUNTU-CVE-2020-6750
GSocketClient in GNOME GLib through 2.62.4 may occasionally connect directly to a target address instead of connecting via a proxy server when configured to do so, because the proxyaddr field is mishandled. This bug is timing-dependent and may occur only sporadically depending on network delays...
CVE-2017-7139
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Phone" component. It allows attackers to obtain sensitive information by leveraging a timing bug to read a secure-content screenshot that occurred during a locking action...
Design/Logic Flaw
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Phone" component. It allows attackers to obtain sensitive information by leveraging a timing bug to read a secure-content screenshot that occurred during a locking action...
CVE-2017-7139
CVE-2017-7139 affects Apple iOS prior to 11 in the Phone component. A timing bug during the locking action could allow an attacker to read a secure-content screenshot. The issue is acknowledged by Apple and mitigated by disabling screenshots while locking; guidance indicates upgrading to iOS 11 (...
CVE-2017-7139
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Phone" component. It allows attackers to obtain sensitive information by leveraging a timing bug to read a secure-content screenshot that occurred during a locking action...
Apple iOS7 iPhone5 iPad2 - Pass Code Bypass Vulnerability
Document Title: =============== Apple iOS7 iPhone5 iPad2 - Pass Code Bypass Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1092 View: http://www.youtube.com/watch?v=71k7szhokg Release Date: ============= 2013-09-24 Vulnerability Laboratory ID VL-ID:...