20 matches found
EVE Seals Vault Key With SHA1 PCRs
Impact The vault key is sealed using SHA1 PCRs instead of SHA256 PCRs Thus an attacker with physical access to an EVE-OS device can try to brute force creating a kernel or rootfs image which produces the same SHA1 PCR but with malicious content. Patches Fixed in 9.4.3-lts and 10.1.0 Workarounds N...
EVE Doesn't Measure Config Partition From 2 Fronts
Impact PCR14 is not included in the list of PCRs that seal/unseal the vault key. Additionally, the vault key uses SHA1 PCRs instead of SHA256. Thus an attacker with physical access can take out the disk, use a different computer to modify the files in the /config partition, and re-insert the disk...
PT-2026-6461
Impact PCR14 is not included in the list of PCRs that seal/unseal the vault key. Additionally, the vault key uses SHA1 PCRs instead of SHA256. Thus an attacker with physical access can take out the disk, use a different computer to modify the files in the /config partition, and re-insert the disk...
EUVD-2019-4746
Malware in sbrugna...
WordPress Booking Calendar Plugin <= 9.4.3 is vulnerable to SQL Injection
Software Booking Calendar Type Plugin Vulnerable versions = 9.4.3 Fixed in 9.4.3.1 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-23991 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 35338ed5afc5 Credits Rafshanzani Suhada Required privilege...
Drupal Multiple Vulnerabilities (SA-CORE-2022-015) - Linux
Drupal is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2019-14666
GLPI through 9.4.3 is prone to account takeover by abusing the ajax/autocompletion.php autocompletion feature. The lack of correct validation leads to recovery of the token generated via the password reset functionality, and thus an authenticated attacker can set an arbitrary password for any use...
F5 BIG-IP 9.4.3 - Web Management Interface Console HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28151/info F5 BIG-IP Web Management Interface is prone to a HTML-injection vulnerability because the web management interface fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...
ISC BIND DNSSEC Query Response Additional Section Remote Cache Poisoning Vulnerability
ISC BIND is prone to a remote cache-poisoning vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind";...
ISC BIND OpenSSL DSA_verify() Security Bypass Vulnerability
ISC BIND is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:isc:bind"; ifdescription...
f5bigip-inject.txt
F5 BIG-IP Management Interface Perl Injection Product: F5 BIG-IP http://www.f5.com/products/big-ip/ The F5 BIG-IP reconfiguration facility, used by both the web management interface and the CLI, suffers from insufficient input validation and/or sanitization of certain reconfiguration requests. It...
F5 BIG-IP Management Interface Perl Injection
F5 BIG-IP Management Interface Perl Injection Product: F5 BIG-IP http://www.f5.com/products/big-ip/ The F5 BIG-IP reconfiguration facility, used by both the web management interface and the CLI, suffers from insufficient input validation and/or sanitization of certain reconfiguration requests. It...
F5 BIG-IP Web Management Audit Log XSS
F5 BIG-IP Web Management Audit Log XSS Product: F5 BIG-IP http://www.f5.com/products/big-ip/ The F5 BIG-IP web management interface contains a persistent cross-site scripting vulnerability in the audit log facility. Log entries are output raw, without being HTML-encoded first. This allows an...
F5 BIG-IP Web Management Console XSS
F5 BIG-IP Web Management Console XSS Product: F5 BIG-IP http://www.f5.com/products/big-ip/ The F5 BIG-IP web management interface contains a potentially persistent cross-site scripting vulnerability in the "Console" feature. Output from executed console commands is wrapped in textarea intentional...
F5 BIG-IP Web Management Console CSRF (with example)
F5 BIG-IP Web Management Console CSRF Product: F5 BIG-IP http://www.f5.com/products/big-ip/ By design the F5 BIG-IP web management interface allows a logged-in user with Resource Manager or Administrator privileges to execute an arbitrary bigpipe shell command through the web "Console" feature. I...
f5big-xsrf.txt
F5 BIG-IP Web Management Console CSRF Product: F5 BIG-IP http://www.f5.com/products/big-ip/ By design the F5 BIG-IP web management interface allows a logged-in user with Resource Manager or Administrator privileges to execute an arbitrary bigpipe shell command through the web "Console" feature. I...
f5asm-xss.txt
F5 BIG-IP Web Management ASM Security Report XSS Product: F5 BIG-IP Application Security Manager http://www.f5.com/products/big-ip/product-modules/application-security-manager.html The F5 BIG-IP ASM web management interface contains a cross-site scripting vulnerability in the Security Report...
F5 BIG-IP Web Management ASM Security Report XSS
F5 BIG-IP Web Management ASM Security Report XSS Product: F5 BIG-IP Application Security Manager http://www.f5.com/products/big-ip/product-modules/application-security-manager.html The F5 BIG-IP ASM web management interface contains a cross-site scripting vulnerability in the Security Report...
F5 BIG-IP 9.4.3 - SearchString Multiple Cross-Site Scripting Vulnerabilities
F5 BIG-IP 9.4.3 - SearchString Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/27272/info F5 BIG-IP is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...
f5-xss.txt
F5 BIG-IP Web Management List Search XSS Product: F5 BIG-IP http://www.f5.com/products/big-ip/ The F5 BIG-IP web management interface contains a cross-site scripting vulnerability in the Search function present on several list-like pages. Parameter SearchString is not sanitized before it gets...