Lucene search
K

21 matches found

Snyk
Snyk
added 2026/03/18 8:49 p.m.10 views

Origin Validation Error

Overview Glances is an A cross-platform curses-based monitoring tool Affected versions of this package are vulnerable to Origin Validation Error in the REST/WebUI FastAPI application due to the lack of host header validation and the absence of an allowlist for trusted hosts. An attacker can gain...

6CVSS5.8AI score0.0016EPSS
Exploits1References2
Snyk
Snyk
added 2026/03/18 8:49 p.m.3 views

Origin Validation Error

Overview Glances is an A cross-platform curses-based monitoring tool Affected versions of this package are vulnerable to Origin Validation Error via the Central Browser mode autodiscovery. An attacker can obtain authentication secrets by advertising a malicious Zeroconf service on the same local...

8.6CVSS5.8AI score0.00282EPSS
Exploits1References2
Snyk
Snyk
added 2026/03/18 6:52 p.m.3 views

SQL Injection

Overview Glances is an A cross-platform curses-based monitoring tool Affected versions of this package are vulnerable to SQL Injection via the construction of SQL statements in the glancesduckdb. An attacker can execute arbitrary SQL commands or manipulate the database schema by supplying crafted...

9.1CVSS6.2AI score0.00325EPSS
Exploits1References2
Snyk
Snyk
added 2026/03/18 6:54 a.m.11 views

Information Exposure

Overview Glances is an A cross-platform curses-based monitoring tool Affected versions of this package are vulnerable to Information Exposure via the web server which runs without authentication by default when started with glances -w. An attacker can access sensitive system information, includin...

8.7CVSS5.8AI score0.0155EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-25643

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00218EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-25642

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.00216EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-9385

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fixipv6checksums of the file editpacket.c of the component...

5.5CVSS5.5AI score0.00218EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-9386

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function getl2lenprotocol of the file get.c of the component...

5.5CVSS5.4AI score0.00216EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/08/26 10:32 a.m.5 views

CVE-2025-9385

A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fixipv6checksums of the file editpacket.c of the component tcprewrite. This manipulation causes use after free. The attack is restricted to local execution. The exploit has been published and may be used...

5.3CVSS7AI score0.00218EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2025/08/25 11:33 p.m.5 views

SUSE CVE-2025-9385

A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fixipv6checksums of the file editpacket.c of the component tcprewrite. This manipulation causes use after free. The attack is restricted to local execution. The exploit has been published and may be used...

5.5CVSS4.9AI score0.00218EPSS
Exploits1References3
OSV
OSV
added 2025/08/24 11:15 a.m.4 views

CVE-2025-9386

A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function getl2lenprotocol of the file get.c of the component tcprewrite. Such manipulation leads to use after free. The attack must be carried out locally. The exploit has been disclosed to the public and...

5.5CVSS7AI score
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/08/24 11:2 a.m.4 views

CVE-2025-9386 appneta tcpreplay tcprewrite get.c get_l2len_protocol use after free

A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function getl2lenprotocol of the file get.c of the component tcprewrite. Such manipulation leads to use after free. The attack must be carried out locally. The exploit has been disclosed to the public and...

5.3CVSS7.1AI score0.00216EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2025/08/24 11:2 a.m.4 views

CVE-2025-9386

A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function getl2lenprotocol of the file get.c of the component tcprewrite. Such manipulation leads to use after free. The attack must be carried out locally. The exploit has been disclosed to the public and...

5.5CVSS4.8AI score0.00216EPSS
Exploits1
CVE
CVE
added 2025/08/24 10:32 a.m.32 views

CVE-2025-9385

CVE-2025-9385 affects appneta tcpreplay (tcprewrite component) where the function fix_ipv6_checksums in edit_packet.c can trigger a use-after-free. Impact is limited to local execution; the exploit has been published. Multiple advisories (openSUSE, Fedora, etc.) reference the same issue and note ...

5.5CVSS5.3AI score0.00218EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2025/08/24 10:32 a.m.11 views

CVE-2025-9385 appneta tcpreplay tcprewrite edit_packet.c fix_ipv6_checksums use after free

A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fixipv6checksums of the file editpacket.c of the component tcprewrite. This manipulation causes use after free. The attack is restricted to local execution. The exploit has been published and may be used...

5.3CVSS0.00218EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2025/08/24 10:32 a.m.4 views

CVE-2025-9385

A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fixipv6checksums of the file editpacket.c of the component tcprewrite. This manipulation causes use after free. The attack is restricted to local execution. The exploit has been published and may be used...

5.5CVSS5AI score0.00218EPSS
Exploits1
OSV
OSV
added 2025/08/24 10:15 a.m.2 views

UBUNTU-CVE-2025-9384

A vulnerability was detected in appneta tcpreplay up to 4.5.1. Impacted is the function tcpeditpostargs of the file /src/tcpedit/parseargs.c. The manipulation results in null pointer dereference. The attack is only possible with local access. The exploit is now public and may be used. Upgrading t...

5.5CVSS5.6AI score0.00223EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/08/24 10:2 a.m.3 views

CVE-2025-9384 appneta tcpreplay parse_args.c tcpedit_post_args null pointer dereference

A vulnerability was detected in appneta tcpreplay up to 4.5.1. Impacted is the function tcpeditpostargs of the file /src/tcpedit/parseargs.c. The manipulation results in null pointer dereference. The attack is only possible with local access. The exploit is now public and may be used. Upgrading t...

4.8CVSS6.9AI score0.00223EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/08/24 10:2 a.m.13 views

CVE-2025-9384 appneta tcpreplay parse_args.c tcpedit_post_args null pointer dereference

A vulnerability was detected in appneta tcpreplay up to 4.5.1. Impacted is the function tcpeditpostargs of the file /src/tcpedit/parseargs.c. The manipulation results in null pointer dereference. The attack is only possible with local access. The exploit is now public and may be used. Upgrading t...

4.8CVSS0.00223EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/08/24 12:0 a.m.5 views

PT-2025-34558 · Appneta +1 · Tcprewrite +2

Name of the Vulnerable Software and Affected Versions: appneta tcpreplay versions through 4.5.1 Description: A use-after-free issue exists in the fix ipv6 checksums function within the edit packet.c file of the tcprewrite component. This manipulation is exploitable locally. Recommendations: Upgra...

5.3CVSS5.1AI score0.00218EPSS
Exploits1References15
Rows per page
Query Builder