Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 3 days ago5 views

gnutls: gnutls: Authentication Bypass via NUL Character in Username

A flaw was found in gnutls. Servers configured with RSA-PSK Rivest–Shamir–Adleman – Pre-Shared Key wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass...

9.8CVSS5.8AI score0.0105EPSS
Exploits0References5
NVD
NVD
added 2026/05/07 12:16 p.m.24 views

CVE-2026-42010

A flaw was found in gnutls. Servers configured with RSA-PSK Rivest–Shamir–Adleman – Pre-Shared Key wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass...

9.8CVSS0.0105EPSS
Exploits0References16
ATTACKERKB
ATTACKERKB
added 2026/05/07 12:0 p.m.7 views

CVE-2026-42010

A flaw was found in gnutls. Servers configured with RSA-PSK Rivest–Shamir–Adleman – Pre-Shared Key wrongfully matched usernames containing a NUL character with truncated usernames. A remote attacker could exploit this by sending a specially crafted username, leading to an authentication bypass...

9.8CVSS5.8AI score0.0105EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2024/11/13 12:0 a.m.12 views

Siemens SCALANCE M-800 Family Improper Input Validation (CVE-2024-50560)

Affected devices truncates usernames longer than 15 characters when accessed via SSH or Telnet. This could allow an attacker to compromise system integrity. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...

4.3CVSS7.7AI score0.00273EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2024/11/12 12:50 p.m.12 views

CVE-2024-50560

A vulnerability has been identified in RUGGEDCOM RM1224 LTE4G EU 6GK6108-4AM00-2BA2 All versions V8.2, RUGGEDCOM RM1224 LTE4G NAM 6GK6108-4AM00-2DA2 All versions V8.2, SCALANCE M804PB 6GK5804-0AP00-2AA2 All versions V8.2, SCALANCE M812-1 ADSL-Router 6GK5812-1AA00-2AA2 All versions V8.2, SCALANCE...

3.1CVSS4.1AI score0.00273EPSS
Exploits0References2
CVE
CVE
added 2024/11/12 12:50 p.m.54 views

CVE-2024-50560

Summary (CVE-2024-50560) Siemens industrial devices including RUGGEDCOM RM1224 LTE, SCALANCE M families, S615, W-series, MUM-series, and related products are affected by an input-validation vulnerability that causes truncation of usernames longer than 15 characters when accessed via SSH or Telnet...

4.3CVSS4.1AI score0.00273EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2008/09/18 5:59 p.m.2 views

DEBIAN-CVE-2008-4106

WordPress before 2.6.2 does not properly handle MySQL warnings about insertion of username strings that exceed the maximum column width of the userlogin column, and does not properly handle space characters when comparing usernames, which allows remote attackers to change an arbitrary user's...

5.1CVSS7.1AI score0.05481EPSS
Exploits0References1
Rows per page
Query Builder