Lucene search
K

28 matches found

Cvelist
Cvelist
added 2026/05/01 8:34 p.m.27 views

CVE-2026-39807 Client-supplied URI scheme trusted without transport verification in bandit

Reliance on Untrusted Inputs in a Security Decision vulnerability in mtrudel bandit allows unauthenticated transport-state spoofing on plaintext HTTP connections. 'Elixir.Bandit.Pipeline':determinescheme/2 in lib/bandit/pipeline.ex returns the client-supplied URI scheme verbatim, ignoring the...

6.3CVSS0.00454EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/04 4:7 p.m.34 views

CVE-2026-23601 Frame Injection via Shared GTK Allows Traffic Spoofing and Client Compromise

A vulnerability has been identified in the wireless encryption handling of Wi-Fi transmissions. A malicious actor can generate shared-key authenticated transmissions containing targeted payloads while impersonating the identity of a primary BSSID.Successful exploitation allows for the delivery of...

5.4CVSS0.00084EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 4:7 p.m.13 views

CVE-2026-23601

CVE-2026-23601 describes a vulnerability in the wireless encryption handling of Wi‑Fi transmissions. A malicious actor can generate shared-key authenticated transmissions that impersonate a primary BSSID, delivering targeted, tampered data to specific endpoints and bypassing standard cryptographi...

5.4CVSS5.8AI score0.00084EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-6286

Malware in sbrugna...

6.4CVSS6AI score0.03885EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-2186

Malware in sbrugna...

6.5CVSS6.6AI score0.01255EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2007-3827

Malware in sbrugna...

4.3CVSS6AI score0.02624EPSS
Exploits0References24
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-26226

Malware in sbrugna...

9.8CVSS7.8AI score0.01604EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-4435

Malware in sbrugna...

5CVSS6.4AI score0.01611EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2011-0117

Malware in sbrugna...

6.4CVSS6.2AI score0.05486EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2003-1220

Malware in sbrugna...

6.4CVSS7.5AI score0.01351EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-3077

Malicious code in bioql PyPI...

6.5CVSS6AI score0.00929EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/25 8:49 p.m.6 views

CVE-2025-59824

Omni manages Kubernetes on bare metal, virtual machines, or in a cloud. Prior to version 0.48.0, Omni Wireguard SideroLink has the potential to escape. Omni and each Talos machine establish a peer-to-peer P2P SideroLink connection using WireGuard to mutually authenticate and authorize access. The...

2.1CVSS7AI score0.00182EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:18 a.m.11 views

CVE-2022-30319

Saia Burgess Controls SBC PCD through 2022-05-06 allows Authentication bypass. According to FSCT-2022-0062, there is a Saia Burgess Controls SBC PCD S-Bus authentication bypass issue. The affected components are characterized as: S-Bus 5050/UDP authentication. The potential impact is:...

8.1CVSS7.1AI score0.00616EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/01 12:0 a.m.3 views

Tenda RX2 Pro 安全漏洞

Tenda RX2 Pro is a high performance WiFi 6 signal amplifier from Tenda China. A security bypass vulnerability exists in Tenda RX2 Pro version 16.03.30.14, which can be exploited by an attacker to cause decryption, replay, or spoofing of traffic...

8.8CVSS6.8AI score0.0083EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/01/14 12:0 a.m.9 views

CVE-2025-23019

IPv6-in-IPv4 tunneling RFC 4213 allows an attacker to spoof and route traffic via an exposed network interface...

5.4CVSS6.5AI score0.00929EPSS
Exploits0References3
CVE
CVE
added 2025/01/14 12:0 a.m.74 views

CVE-2025-23019

CVE-2025-23019 describes a vulnerability in IPv6-in-IPv4 tunneling (RFC 4213) where an unauthenticated or unverified packet source can lead to spoofing and traffic routing via an exposed interface. The available documents associate this with multiple vulnerability trackers and advisories; some so...

6.5CVSS7AI score0.00929EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/01/14 12:0 a.m.29 views

CVE-2025-23019

IPv6-in-IPv4 tunneling RFC 4213 allows an attacker to spoof and route traffic via an exposed network interface...

5.4CVSS0.00929EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/10/29 6:51 p.m.4 views

freeradius: forgery attack

A vulnerability in the RADIUS Remote Authentication Dial-In User Service protocol allows attackers to forge authentication responses when the Message-Authenticator attribute is not enforced. This issue arises from a cryptographically insecure integrity check using MD5, enabling attackers to spoof...

9CVSS7.2AI score0.14859EPSS
Exploits2References10
OSV
OSV
added 2023/10/06 6:15 p.m.4 views

UBUNTU-CVE-2023-5366

A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to...

7.1CVSS6.8AI score0.00389EPSS
Exploits0References5
NVD
NVD
added 2022/07/28 4:15 p.m.20 views

CVE-2022-30319

Saia Burgess Controls SBC PCD through 2022-05-06 allows Authentication bypass. According to FSCT-2022-0062, there is a Saia Burgess Controls SBC PCD S-Bus authentication bypass issue. The affected components are characterized as: S-Bus 5050/UDP authentication. The potential impact is:...

8.1CVSS0.00616EPSS
Exploits0References2
Rows per page
Query Builder