Lucene search
K

8 matches found

The Hacker News
The Hacker News
added 2026/06/15 1:49 p.m.21 views

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More

Stuff broke again. Not in a movie way. An old tool was left exposed. An abandoned package was abused. A deprecated feature was still running in prod. This week is the same lesson in a new form: phishing kits are easier to rent, AI names are useful bait, old login paths still fail, and forgotten...

8.8CVSS7.4AI score0.01654EPSS
Exploits4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-31487

Malicious code in bioql PyPI...

8.6CVSS8.4AI score0.00228EPSS
Exploits0References5
NCSC
NCSC
added 2025/04/25 9:35 a.m.5 views

Vulnerability fixed in SonicWall SonicOS

SonicWall has fixed a vulnerability in SonicOS. The vulnerability is in how SonicOS' SSLVPN Virtual Office interface functions. An unauthenticated malicious person could exploit this vulnerability, which could result in a firewall crash. This could result in a Denial-of-Service DoS situation,...

8.7CVSS8.1AI score0.00786EPSS
Exploits0References1
hivepro
hivepro
added 2024/02/12 11:47 a.m.42 views

Ivanti Addresses Yet Another VPN Flaw Within a Month

Summary: Ivanti has addressed a newly discovered vulnerability impacting ZTA, Policy, and Connect Secure gateways. Tracked as CVE-2024-22024, this vulnerability stems from a weakness in the SAML component of the gateways related to XXE XML eXternal Entities, enabling remote attackers to access...

7.5CVSS7.2AI score0.94721EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2023/11/01 12:0 a.m.2 views

PT-2023-7121 · Cisco · Cisco Ftd +1

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: A vulnerability in the AnyConnect SSL VPN feature could allow an...

8.6CVSS8.2AI score0.00675EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2023/06/18 9:52 p.m.8 views

Exploit for Generation of Error Message Containing Sensitive Information in Checkpoint Ssl_Network_Extender

CVE-2021-30357CheckPointSNXVPNPoC Proof-of-Concept for pri...

5.3CVSS7.1AI score0.22792EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2019/05/01 12:0 a.m.4 views

PT-2019-2047 · Cisco · Cisco Ftd +1

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Cisco Firepower Threat Defense FTD Software affected versions not specified Description: A vulnerability in the WebVPN service could allow an authenticated, remote...

7.7CVSS6.6AI score0.02067EPSS
Exploits0References7
VulnCheck KEV
VulnCheck KEV
added 2016/09/28 12:0 a.m.6 views

VulnCheck KEV: CVE-2014-3393

The Clientless SSL VPN portal customization framework in Cisco ASA Software 8.2 before 8.25.51, 8.3 before 8.32.42, 8.4 before 8.47.23, 8.6 before 8.61.14, 9.0 before 9.04.24, 9.1 before 9.15.12, and 9.2 before 9.22.4 does not properly implement authentication, which allows remote...

4.3CVSS6AI score0.01995EPSS
Exploits0References1
Rows per page
Query Builder