Lucene search
K

310 matches found

Prion
Prion
added 2022/07/19 3:15 p.m.14 views

Authentication flaw

Unauthenticated users can access sensitive web URLs through GET request, which should be restricted to maintenance users only. A malicious attacker could use this sensitive information’s to launch further attacks on the system...

5CVSS5.2AI score0.00529EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/07/19 2:11 p.m.21 views

CVE-2021-32504

Unauthenticated users can access sensitive web URLs through GET request, which should be restricted to maintenance users only. A malicious attacker could use this sensitive information’s to launch further attacks on the system...

5.5AI score0.00529EPSS
Exploits0References1
Veracode
Veracode
added 2022/06/03 6:11 a.m.31 views

Open Redirect

github.com/caddyserver/caddy is vulnerable to open redirect attacks. A remote unauthenticated attacker is able to redirect users to arbitrary web URLs by tricking the victim to click on specifically crafted links...

6.1CVSS6.3AI score0.00983EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2022/06/02 9:15 p.m.31 views

CVE-2022-29718

Caddy v2.4 was discovered to contain an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links...

6.1CVSS0.00983EPSS
Exploits0References2
OSV
OSV
added 2022/06/02 12:0 a.m.21 views

CVE-2022-29718

Caddy v2.4 was discovered to contain an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links...

6.1CVSS6.3AI score0.00983EPSS
Exploits0References4
NVD
NVD
added 2022/03/01 2:15 a.m.12 views

CVE-2020-12775

Hicos citizen certificate client-side component does not filter special characters for command parameters in specific web URLs. An unauthenticated remote attacker can exploit this vulnerability to perform command injection attack to execute arbitrary system command, disrupt system or terminate...

10CVSS0.02981EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/03/01 1:55 a.m.21 views

CVE-2020-12775 Hicos citizen certificate client-side component - Command Injection

Hicos citizen certificate client-side component does not filter special characters for command parameters in specific web URLs. An unauthenticated remote attacker can exploit this vulnerability to perform command injection attack to execute arbitrary system command, disrupt system or terminate...

9.8CVSS10AI score0.02981EPSS
Exploits0References2
Prion
Prion
added 2021/08/03 4:15 p.m.18 views

Open redirect

Dell EMC iDRAC9 versions prior to 4.40.40.00 contain an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on maliciously crafted links...

5.8CVSS6.3AI score0.00945EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/08/03 3:30 p.m.20 views

CVE-2021-21578

Dell EMC iDRAC9 versions prior to 4.40.40.00 contain an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on maliciously crafted links...

6.1CVSS6.5AI score0.00945EPSS
Exploits0References1
Prion
Prion
added 2021/07/29 4:15 p.m.19 views

Open redirect

Dell EMC Avamar Server contains an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect application users to arbitrary web URLs by tricking the victim users to click on maliciously crafted links...

5.8CVSS6.3AI score0.00858EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/09/28 6:29 p.m.20 views

CVE-2018-1251

Dell EMC Unity and UnityVSA versions prior to 4.3.1.1525703027 contains a URL Redirection vulnerability. A remote unauthenticated attacker could potentially exploit this vulnerability to redirect Unity users to arbitrary web URLs by tricking the victim user to click on a maliciously crafted...

8.3CVSS8.2AI score0.02455EPSS
Exploits0References1
Cisco Threats
Cisco Threats
added 2018/08/15 1:21 p.m.500 views

Threat Outbreak Alert RuleID33373: Email Messages Distributing Malicious Software on August 13, 2018

Medium Alert ID: 58747 First Published: 2018 August 15 13:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33373 may contain the following files: Name |...

0.7AI score
Exploits0
Cisco Threats
Cisco Threats
added 2018/08/15 1:1 p.m.496 views

Threat Outbreak Alert RuleID33365: Email Messages Distributing Malicious Software on August 13, 2018

Medium Alert ID: 58743 First Published: 2018 August 15 13:01 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33365 may contain the following files: Name |...

0.1AI score
Exploits0
Cisco Threats
Cisco Threats
added 2018/08/15 12:27 p.m.507 views

Threat Outbreak Alert RuleID33333: Email Messages Distributing Malicious Software on August 13, 2018

Medium Alert ID: 58731 First Published: 2018 August 15 12:27 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33333 may contain the following files: Name |...

0.7AI score
Exploits0
Cisco Threats
Cisco Threats
added 2018/08/14 5:55 p.m.490 views

Threat Outbreak Alert RuleID33415: Email Messages Distributing Malicious Software on August 13, 2018

Medium Alert ID: 58690 First Published: 2018 August 14 17:55 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33415 may contain the following files: Name |...

0.3AI score
Exploits0
Cisco Threats
Cisco Threats
added 2018/07/11 2:25 p.m.7 views

Threat Outbreak Alert RuleID33105: Email Messages Distributing Malicious Software on July 11, 2018

Medium Alert ID: 58429 First Published: 2018 July 11 14:25 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33105 may contain the following files: Name | Siz...

0.1AI score
Exploits0
Cisco Threats
Cisco Threats
added 2018/07/11 2:25 p.m.13 views

Threat Outbreak Alert RuleID33169: Email Messages Distributing Malicious Software on July 11, 2018

Medium Alert ID: 58427 First Published: 2018 July 11 14:25 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33169 may contain the following files: Name | Siz...

0.6AI score
Exploits0
Cisco Threats
Cisco Threats
added 2018/07/10 2:50 p.m.19 views

Threat Outbreak Alert RuleID33055: Email Messages Distributing Malicious Software on July 10, 2018

Medium Alert ID: 58407 First Published: 2018 July 10 14:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33055 may contain the following files: Name | Siz...

0.6AI score
Exploits0
Cisco Threats
Cisco Threats
added 2018/07/05 3:43 p.m.15 views

Threat Outbreak Alert RuleID33095: Email Messages Distributing Malicious Software on July 5, 2018

Medium Alert ID: 58367 First Published: 2018 July 5 15:43 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33095 may contain the following files: Name | Size...

Exploits0
Cisco Threats
Cisco Threats
added 2018/07/03 6:36 p.m.11 views

Threat Outbreak Alert RuleID33100: Email Messages Distributing Malicious Software on July 3, 2018

Medium Alert ID: 58341 First Published: 2018 July 3 18:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33100 may contain the following files: Name | Size...

0.3AI score
Exploits0
Rows per page
Query Builder