Lucene search
+L

446 matches found

OSV
OSV
•added 2025/12/09 5:17 p.m.•3 views

GHSA-WX63-35HW-2482 HTTP/HTTPS Traffic Interception Bypass in mad-proxy

A vulnerability in mad-proxy versions = 0.3 allows attackers to bypass HTTP/HTTPS traffic interception rules, potentially exposing sensitive traffic...

5.3CVSS6.7AI score0.00211EPSS
Exploits0References3
Positive Technologies
Positive Technologies
•added 2025/12/09 12:0 a.m.•9 views

PT-2026-5735

Name of the Vulnerable Software and Affected Versions Notepad++ versions prior to 8.8.9 Description The Notepad++ WinGUp updater has a flaw in how it verifies the integrity of updates. This allows an attacker who can intercept or redirect update traffic to cause the updater to download and execut...

7.7CVSS6.7AI score0.01268EPSS
Exploits0References47
OSV
OSV
•added 2025/12/01 4:15 p.m.•4 views

CVE-2024-32384

Kerlink gateways running KerOS prior to version 5.10 expose their web interface exclusively over HTTP, without HTTPS support. This lack of transport layer security allows a man-in-the-middle attacker to intercept and modify traffic between the client and the device...

7.4CVSS5.8AI score0.0015EPSS
Exploits0References2
NVD
NVD
•added 2025/12/01 4:15 p.m.•8 views

CVE-2024-32384

Kerlink gateways running KerOS prior to version 5.10 expose their web interface exclusively over HTTP, without HTTPS support. This lack of transport layer security allows a man-in-the-middle attacker to intercept and modify traffic between the client and the device...

7.4CVSS0.0015EPSS
Exploits0References2
OSV
OSV
•added 2025/11/24 5:16 p.m.•7 views

CVE-2025-63433

Xtooltech Xtool AnyScan Android Application 4.40.40 and prior uses a hardcoded cryptographic key and IV to decrypt update metadata. The key is stored as a static value within the application's code. An attacker with the ability to intercept network traffic can use this hardcoded key to decrypt,...

4.6CVSS5.8AI score0.00167EPSS
Exploits1References2
EUVD
EUVD
•added 2025/11/24 12:0 a.m.•18 views

EUVD-2025-198966

Xtooltech Xtool AnyScan Android Application 4.40.40 and prior uses a hardcoded cryptographic key and IV to decrypt update metadata. The key is stored as a static value within the application's code. An attacker with the ability to intercept network traffic can use this hardcoded key to decrypt,...

4.6CVSS6.3AI score0.00167EPSS
Exploits1References3
CVE
CVE
•added 2025/11/24 12:0 a.m.•21 views

CVE-2025-63433

Summary of CVE-2025-63433 : Xtooltech Xtool AnyScan Android Application 4.40.40 and earlier uses a hardcoded cryptographic key and IV stored statically in code to decrypt update metadata. This enables an attacker who can intercept network traffic to use the hardcoded key to decrypt, modify, and r...

4.6CVSS6.4AI score0.00167EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
•added 2025/11/24 12:0 a.m.•13 views

PT-2025-47947

Xtooltech Xtool AnyScan Android Application 4.40.40 and prior uses a hardcoded cryptographic key and IV to decrypt update metadata. The key is stored as a static value within the application's code. An attacker with the ability to intercept network traffic can use this hardcoded key to decrypt,...

6.8AI score0.00167EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2025/10/16 8:41 p.m.•16 views

CVE-2025-11619

Improper certificate validation when connecting to gateways in Devolutions Server 2025.3.2 and earlier allows attackers in MitM position to intercept traffic...

8.8CVSS6.8AI score0.00225EPSS
Exploits0References1
EUVD
EUVD
•added 2025/10/15 9:31 p.m.•8 views

EUVD-2025-34693

Improper certificate validation when connecting to gateways in Devolutions Server 2025.3.2 and earlier allows attackers in MitM position to intercept traffic...

8.8CVSS6.3AI score0.00225EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•6 views

EUVD-2020-24468

Malware in sbrugna...

5.3CVSS4.8AI score0.00991EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•4 views

EUVD-2016-3449

Malware in sbrugna...

5.9CVSS6.6AI score0.02431EPSS
Exploits1References12
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•7 views

EUVD-2020-7774

Malware in sbrugna...

6.5CVSS7AI score0.00712EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•7 views

EUVD-2017-12006

Malware in sbrugna...

9.6CVSS8.8AI score0.00556EPSS
Exploits1References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•6 views

EUVD-2020-30240

Malware in sbrugna...

6.5CVSS6.5AI score0.00468EPSS
Exploits1References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•5 views

EUVD-2020-18350

Malware in sbrugna...

3.5CVSS4.8AI score0.00248EPSS
Exploits0References4
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•6 views

EUVD-2020-28638

Malware in sbrugna...

7.5CVSS7.6AI score0.00815EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•5 views

EUVD-2007-2473

Malware in sbrugna...

4.6CVSS6.4AI score0.00351EPSS
Exploits0References4
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•7 views

EUVD-2019-16224

Malware in sbrugna...

9.4CVSS8.9AI score0.0113EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-6407

Malware in sbrugna...

7.5CVSS7.6AI score0.0064EPSS
Exploits0References2
Rows per page
Query Builder