GHSA-3WWX-63FV-PFQ6 Cilium's CIDR deny policies may not take effect when a more narrow CIDR allow is present

Impact A policy rule denying a prefix that is broader than /32 may be ignored if there is - A policy rule referencing a more narrow prefix CIDRSet or toFQDN and - This narrower policy rule specifies either enableDefaultDeny: false or - toEntities: all Note that a rule specifying toEntities: world...

Gateway API route matching order contradicts specification

Impact Gateway API HTTPRoutes and GRPCRoutes do not follow the match precedence specified in the Gateway API specification. In particular, request headers are matched before request methods, when the specification describes that the request methods must be respected before headers are matched...

GHSA-QCM3-7879-XCWW Gateway API route matching order contradicts specification

Impact Gateway API HTTPRoutes and GRPCRoutes do not follow the match precedence specified in the Gateway API specification. In particular, request headers are matched before request methods, when the specification describes that the request methods must be respected before headers are matched...

CVE-2023-41908

Cerebrate before 1.15 lacks the Secure attribute for the session cookie...

SUSE CVE-2020-8559

The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an attacker to escalate privileges from a node compromise to a full cluster compromise...

Buffer overflow

A buffer overflow vulnerability in the parameter of the CGI program in Zyxel NR7101 firmware prior to V1.15ACCC.3C0, which could allow an authenticated attacker to cause denial-of-service DoS conditions by sending a crafted HTTP request...

Buffer overflow

A buffer overflow vulnerability in the parameter of web server in Zyxel NR7101 firmware prior to V1.15ACCC.3C0, which could allow an authenticated attacker to cause denial-of-service DoS conditions by sending a crafted authorization request...

PT-2023-1413 · Zyxel · Zyxel Nr7101

Name of the Vulnerable Software and Affected Versions: Zyxel NR7101 firmware prior to V1.15ACCC.3C0 Description: The issue is related to a buffer overflow vulnerability in the parameter of the web server, which occurs due to the lack of input size validation. This could allow a remote attacker to...

Design/Logic Flaw

Keijiban Tsumiki v1.15 allows remote attackers to execute arbitrary OS commands via unspecified vectors...

CVE-2020-5561

CVE-2020-5561 concerns the Keijiban Tsumiki software. Multiple connected sources confirm an OS command injection vulnerability (CWE-78) in Keijiban Tsumiki v1.15 that could allow a remote attacker to execute arbitrary OS commands. Affected component: Keijiban Tsumiki v1.15; impact described as re...