31 matches found
EUVD-2014-3359
Malware in sbrugna...
EUVD-2014-3358
Malware in sbrugna...
EUVD-2014-3357
Malware in sbrugna...
EUVD-2021-23763
Malware in sbrugna...
EUVD-2016-7282
Malware in sbrugna...
CVE-2021-37189
An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session...
CVE-2021-37189
An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session...
CVE-2021-37189
An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session...
Session fixation
An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session...
CVE-2021-37189
An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session...
CVE-2021-37189
CVE-2021-37189 affects Digi TransPort Gateway devices up to version 5.2.13.4. The issue is that these devices do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause cookies to be sent in cleartext over an HTTP session. This behavior is described in the NVD entr...
Digi TransPort 安全漏洞
The Digi International Digi TransPort is a full-featured cellular router from Digi International USA. A security vulnerability exists in the Digi TransPort Gateway that stems from them not setting the Secure attribute for sensitive cookies in HTTPS sessions, which could result in a user agent...
CVE-2016-6359
Cross-site scripting XSS vulnerability in Cisco Transport Gateway Installation Software 4.14.0 on Smart Call Home Transport Gateway devices allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka Bug IDs CSCva40650 and CSCva40817...
CVE-2016-6359
Cross-site scripting XSS vulnerability in Cisco Transport Gateway Installation Software 4.14.0 on Smart Call Home Transport Gateway devices allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka Bug IDs CSCva40650 and CSCva40817...
Cross site scripting
Cross-site scripting XSS vulnerability in Cisco Transport Gateway Installation Software 4.14.0 on Smart Call Home Transport Gateway devices allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka Bug IDs CSCva40650 and CSCva40817...
CVE-2016-6359
CVE-2016-6359 is an XSS vulnerability in Cisco Smart Call Home Transport Gateway, affecting the Transport Gateway Installation Software 4.1(4.0). The root cause is insufficient input validation in the web framework, enabling remote attackers to inject arbitrary script or HTML by supplying a craft...
CVE-2016-6359
Cross-site scripting XSS vulnerability in Cisco Transport Gateway Installation Software 4.14.0 on Smart Call Home Transport Gateway devices allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka Bug IDs CSCva40650 and CSCva40817...
Cisco Smart Call Home Transport Gateway Cross-Site Scripting Vulnerability
Cisco Smart Call Home Transport Gateway is the United States Cisco Cisco company for intelligent messaging equipment in a message transport gateway products. A cross-site scripting vulnerability exists in the web framework of Cisco Smart Call Home Transport Gateway version 4.14.0 running on the...
Cisco Smart Call Home Transport Gateway Cross-Site Scripting Vulnerability
A vulnerability in the web framework of the Cisco Smart Call Home Transport Gateway could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack. The vulnerability is due to insufficient input validation of a user-supplied value. An attacker could exploit this...
CVE-2014-3346
CVE-2014-3346 affects the web framework in Cisco Transport Gateway for Smart Call Home (TG-SCH). The issue stems from missing validation of an unspecified parameter, allowing remote authenticated users to trigger a denial of service (service crash) via a crafted string. Impact per CVSS: Network v...