8 matches found
EUVD-2023-43010
Malicious code in bioql PyPI...
CVE-2023-39278
SonicOS post-authentication user assertion failure leads to Stack-Based Buffer Overflow vulnerability via main.cgi leads to a firewall crash...
Stack overflow
SonicOS post-authentication user assertion failure leads to Stack-Based Buffer Overflow vulnerability via main.cgi leads to a firewall crash...
CVE-2023-39278
SonicOS post-authentication user assertion failure leads to Stack-Based Buffer Overflow vulnerability via main.cgi leads to a firewall crash...
CVE-2023-39278
SonicOS post-authentication user assertion failure leads to Stack-Based Buffer Overflow vulnerability via main.cgi leads to a firewall crash...
CVE-2023-39278
CVE-2023-39278 is a SonicOS vulnerability in which a post-authentication user assertion failure in main.cgi leads to a Stack-Based Buffer Overflow and a firewall crash. The connected sources corroborate that SonicOS Management Web Interface and SSLVPN portal are affected by multiple related post-...
SonicWALL SonicOS Buffer Error Vulnerability
SonicWALL SonicOS is an operating system from SonicWALL, Inc. designed for SonicWall firewall appliances. A security vulnerability exists in SonicWALL SonicOS that stems from a user assertion failure and a stack-based buffer overflow vulnerability in main.cgi that causes the firewall to crash...
Internet Bug Bounty: Cross-site information assertion leak via Content Security Policy
It is possible to test for the satisfaction of certain assertions across origins by abuse of Content Security Policy. These could be assertions such as 'is the client logged into this website', or 'is the client logged in as this user', or 'does the client have access to these panels'. This gener...