28 matches found
CVE-2026-39807 Client-supplied URI scheme trusted without transport verification in bandit
Reliance on Untrusted Inputs in a Security Decision vulnerability in mtrudel bandit allows unauthenticated transport-state spoofing on plaintext HTTP connections. 'Elixir.Bandit.Pipeline':determinescheme/2 in lib/bandit/pipeline.ex returns the client-supplied URI scheme verbatim, ignoring the...
CVE-2026-23601 Frame Injection via Shared GTK Allows Traffic Spoofing and Client Compromise
A vulnerability has been identified in the wireless encryption handling of Wi-Fi transmissions. A malicious actor can generate shared-key authenticated transmissions containing targeted payloads while impersonating the identity of a primary BSSID.Successful exploitation allows for the delivery of...
CVE-2026-23601
CVE-2026-23601 describes a vulnerability in the wireless encryption handling of Wi‑Fi transmissions. A malicious actor can generate shared-key authenticated transmissions that impersonate a primary BSSID, delivering targeted, tampered data to specific endpoints and bypassing standard cryptographi...
EUVD-2013-6286
Malware in sbrugna...
EUVD-2014-2186
Malware in sbrugna...
EUVD-2007-3827
Malware in sbrugna...
EUVD-2020-26226
Malware in sbrugna...
EUVD-2005-4435
Malware in sbrugna...
EUVD-2011-0117
Malware in sbrugna...
EUVD-2003-1220
Malware in sbrugna...
EUVD-2025-3077
Malicious code in bioql PyPI...
CVE-2025-59824
Omni manages Kubernetes on bare metal, virtual machines, or in a cloud. Prior to version 0.48.0, Omni Wireguard SideroLink has the potential to escape. Omni and each Talos machine establish a peer-to-peer P2P SideroLink connection using WireGuard to mutually authenticate and authorize access. The...
CVE-2022-30319
Saia Burgess Controls SBC PCD through 2022-05-06 allows Authentication bypass. According to FSCT-2022-0062, there is a Saia Burgess Controls SBC PCD S-Bus authentication bypass issue. The affected components are characterized as: S-Bus 5050/UDP authentication. The potential impact is:...
Tenda RX2 Pro 安全漏洞
Tenda RX2 Pro is a high performance WiFi 6 signal amplifier from Tenda China. A security bypass vulnerability exists in Tenda RX2 Pro version 16.03.30.14, which can be exploited by an attacker to cause decryption, replay, or spoofing of traffic...
CVE-2025-23019
IPv6-in-IPv4 tunneling RFC 4213 allows an attacker to spoof and route traffic via an exposed network interface...
CVE-2025-23019
CVE-2025-23019 describes a vulnerability in IPv6-in-IPv4 tunneling (RFC 4213) where an unauthenticated or unverified packet source can lead to spoofing and traffic routing via an exposed interface. The available documents associate this with multiple vulnerability trackers and advisories; some so...
CVE-2025-23019
IPv6-in-IPv4 tunneling RFC 4213 allows an attacker to spoof and route traffic via an exposed network interface...
freeradius: forgery attack
A vulnerability in the RADIUS Remote Authentication Dial-In User Service protocol allows attackers to forge authentication responses when the Message-Authenticator attribute is not enforced. This issue arises from a cryptographically insecure integrity check using MD5, enabling attackers to spoof...
UBUNTU-CVE-2023-5366
A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to...
CVE-2022-30319
Saia Burgess Controls SBC PCD through 2022-05-06 allows Authentication bypass. According to FSCT-2022-0062, there is a Saia Burgess Controls SBC PCD S-Bus authentication bypass issue. The affected components are characterized as: S-Bus 5050/UDP authentication. The potential impact is:...