EUVD-2007-5546

Malware in sbrugna...

PT-2024-34665 · Unknown · Meshtastic

Name of the Vulnerable Software and Affected Versions: Meshtastic firmware versions prior to 2.5.6 Description: The Meshtastic firmware does not check for packets claiming to be from the special broadcast address 0xFFFFFFFF, which could result in unexpected behavior and potential for DDoS attacks...

Rockwell Automation PowerFlex 527 Denial of Service Vulnerability

The Rockwell Automation PowerFlex 527 is an adjustable AC frequency converter from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation PowerFlex 527, which stems from improper restriction of device traffic and can be exploited by an attacker to cause the devic...

Rockwell Automation PowerFlex 525 安全漏洞

The Rockwell Automation PowerFlex 527 is an adjustable AC frequency converter from Rockwell Automation. A denial of service vulnerability exists in the Rockwell Automation PowerFlex 527, which stems from improper restriction of device traffic and can be exploited by an attacker to cause the devic...

CVE-2022-31055 Improper Access Control in kctf

kCTF is a Kubernetes-based infrastructure for capture the flag CTF competitions. Prior to version 1.6.0, the kctf cluster set-src-ip-ranges was broken and allowed traffic from any IP. The problem has been patched in v1.6.0. As a workaround, those who want to test challenges privately can mark the...

Potential DoS Attack on RSA's ACE/Server

Hi folks, RSA Security http://www.rsasecurity.com/ produce a 2 factor secure authentication solution called ACE/Server. This uses SecurID tokens to enforce authentication and runs on NT/2000 and Solaris. It is possible for a nonprivileged user on the same network as the ACE/Server to trivially...