Lucene search
K

29 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-3518

Malware in sbrugna...

5CVSS6.4AI score0.01566EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-12400

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00973EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-1495

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configure...

5.8CVSS5.8AI score0.01714EPSS
Exploits0References2
NVD
NVD
added 2025/08/14 5:15 p.m.4 views

CVE-2025-20268

A vulnerability in the Geolocation-Based Remote Access RA VPN feature of Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass configured policies to allow or deny HTTP connections based on a country or region. This vulnerability exists becaus...

5.8CVSS0.00449EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/14 4:0 p.m.6 views

Cisco Secure Firewall Threat Defense Software Geolocation Remote Access VPN Bypass Vulnerability

A vulnerability in the Geolocation-Based Remote Access RA VPN feature of Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass configured policies to allow or deny HTTP connections based on a country or region. This vulnerability exists becaus...

5.8CVSS7.6AI score0.00449EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:46 a.m.5 views

CVE-2023-29476

In Menlo On-Premise Appliance before 2.88, web policy may not be consistently applied properly to intentionally malformed client requests. This is fixed in 2.88.2+, 2.89.1+, and 2.90.1+...

9.1CVSS6.8AI score0.00417EPSS
Exploits0References1
NVD
NVD
added 2024/12/14 2:15 a.m.11 views

CVE-2023-29476

In Menlo On-Premise Appliance before 2.88, web policy may not be consistently applied properly to intentionally malformed client requests. This is fixed in 2.88.2+, 2.89.1+, and 2.90.1+...

9.1CVSS0.00417EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/14 12:0 a.m.13 views

CVE-2023-29476

In Menlo On-Premise Appliance before 2.88, web policy may not be consistently applied properly to intentionally malformed client requests. This is fixed in 2.88.2+, 2.89.1+, and 2.90.1+...

6.8AI score0.00417EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/14 12:0 a.m.21 views

CVE-2023-29476

In Menlo On-Premise Appliance before 2.88, web policy may not be consistently applied properly to intentionally malformed client requests. This is fixed in 2.88.2+, 2.89.1+, and 2.90.1+...

0.00417EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/14 12:0 a.m.4 views

PT-2024-12217 · Menlosecurity · Menlo On-Premise Appliance

Name of the Vulnerable Software and Affected Versions: Menlo On-Premise Appliance versions prior to 2.88 Menlo On-Premise Appliance versions 2.88 through 2.88.1 Menlo On-Premise Appliance versions 2.89 through 2.89.0 Menlo On-Premise Appliance versions 2.90 through 2.90.0 Description: The web...

9.1CVSS7AI score0.00417EPSS
Exploits0References14
CNNVD
CNNVD
added 2024/12/14 12:0 a.m.5 views

Menlo Security On-Premise 安全漏洞

Menlo Security On-Premise is a secure enterprise browser-native program from Menlo Security. A security vulnerability exists in Menlo Security On-Premise versions prior to 2.88 that stems from the possibility that Web policies may not always be applied correctly to intentionally misformatted clie...

9.1CVSS6.6AI score0.00417EPSS
Exploits0References1
CVE
CVE
added 2024/12/14 12:0 a.m.44 views

CVE-2023-29476

The CVE-2023-29476 issue affects Menlo On-Premise Appliance. The policy engine may not consistently enforce web policies when handling intentionally malformed client requests. Affected versions are prior to 2.88, with fixes in 2.88.2+, 2.89.1+, and 2.90.1+. Organizations using affected releases s...

9.1CVSS6.8AI score0.00417EPSS
Exploits0References1
NVD
NVD
added 2023/02/28 5:15 p.m.20 views

CVE-2023-0339

Relative Path Traversal vulnerability in ForgeRock Access Management Web Policy Agent allows Authentication Bypass. This issue affects Access Management Web Policy Agent: all versions up to 5.10.1...

9.8CVSS9.3AI score0.00973EPSS
Exploits0References2
OSV
OSV
added 2023/02/28 5:15 p.m.9 views

CVE-2023-0339

Relative Path Traversal vulnerability in ForgeRock Access Management Web Policy Agent allows Authentication Bypass. This issue affects Access Management Web Policy Agent: all versions up to 5.10.1...

9.8CVSS5.7AI score0.00973EPSS
Exploits0References2
Prion
Prion
added 2023/02/28 5:15 p.m.15 views

Path traversal

Relative Path Traversal vulnerability in ForgeRock Access Management Web Policy Agent allows Authentication Bypass. This issue affects Access Management Web Policy Agent: all versions up to 5.10.1...

7.5CVSS9.3AI score0.00973EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/28 4:21 p.m.11 views

CVE-2023-0339 AM Web Policy Agent path traversal

Relative Path Traversal vulnerability in ForgeRock Access Management Web Policy Agent allows Authentication Bypass. This issue affects Access Management Web Policy Agent: all versions up to 5.10.1...

9.1CVSS9.5AI score0.00973EPSS
Exploits0References2
CVE
CVE
added 2023/02/28 4:21 p.m.77 views

CVE-2023-0339

CVE-2023-0339 is a Relative Path Traversal vulnerability in ForgeRock Access Management Web Policy Agent that allows authentication bypass. Affected: ForgeRock Access Management Web Policy Agent versions up to 5.10.1. Impact described as potential authentication bypass with high confidentiality/i...

9.8CVSS9.3AI score0.00973EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/02/28 4:21 p.m.26 views

CVE-2023-0339 AM Web Policy Agent path traversal

Relative Path Traversal vulnerability in ForgeRock Access Management Web Policy Agent allows Authentication Bypass. This issue affects Access Management Web Policy Agent: all versions up to 5.10.1...

9.1CVSS9.6AI score0.00973EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/02/28 12:0 a.m.3 views

ForgeRock Access Management 路径遍历漏洞

ForgeRock Access Management is a comprehensive, unified solution from ForgeRock USA designed to quickly enable a superior experience tailored to the unique needs of users and employees. A security vulnerability exists in ForgeRock Access Management Web Policy Agent version 5.10.1 and prior...

9.8CVSS8.5AI score0.00973EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2023/02/01 2:27 a.m.25 views

K000132352: OpenAM Vulnerability CVE-2023-22320

Security Advisory Description OpenAM Web Policy Agent OpenAM Consortium Edition provided by OpenAM Consortium parses URLs improperly, leading to a path traversal vulnerabilityCWE-22. Furthermore, a crafted URL may be evaluated incorrectly. CVE-2023-22320 Impact There is no impact; F5 products are...

7.5CVSS7.3AI score0.00722EPSS
Exploits0
Rows per page
Query Builder