19 matches found
CVE-2025-56352
In tinyMQTT commit 6226ade15bd4f97be2d196352e64dd10937c1962 2024-02-18, the broker mishandles protocol violations during CONNECT packet parsing. When receiving a CONNECT packet with a zero-length Client ID while CleanSession is set to 0, the broker correctly replies with a CONNACK return code 0x0...
EUVD-2022-25084
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-5535
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: Calling the OpenSSL API function SSLselectnextproto with an empty supported client protocols buffer may cause a crash or memory contents to be se...
CVE-2022-1805
When connecting to Amazon Workspaces, the SHA256 presented by AWS connection provisioner is not fully verified by Zero Clients. The issue could be exploited by an adversary that places a MITM Man in the Middle between a zero client and AWS session provisioner in the network. This issue is only...
openssl: SSL_select_next_proto buffer overread
A flaw was found in OpenSSL. Affected versions of this package are vulnerable to Information Exposure through the SSLselectnextproto function. This flaw allows an attacker to cause unexpected application behavior or a crash by exploiting the buffer overread condition when the function is called...
Tera2 Zero Client and Remote Workstation Card Firmware – Service Location Protocol
A potential denial of service vulnerability has been identified in Tera2 Zero Client and Remote Workstation Card RWC Firmware when using Service Location Protocol SLP. HP is providing recommended guidance to mitigate this potential vulnerability. The Service Location Protocol SLP, RFC 2608 is...
CVE-2022-1805
When connecting to Amazon Workspaces, the SHA256 presented by AWS connection provisioner is not fully verified by Zero Clients. The issue could be exploited by an adversary that places a MITM Man in the Middle between a zero client and AWS session provisioner in the network. This issue is only...
CVE-2022-1805
When connecting to Amazon Workspaces, the SHA256 presented by AWS connection provisioner is not fully verified by Zero Clients. The issue could be exploited by an adversary that places a MITM Man in the Middle between a zero client and AWS session provisioner in the network. This issue is only...
CVE-2022-1805
CVE-2022-1805 describes a MITM risk in Teradici PCoIP Zero Clients when connecting to Amazon Workspaces: the SHA256 presented by the AWS Connection Configurator is not fully verified by the Zero Client, allowing potential interception between the Zero Client and the AWS session provisioner. The i...
PT-2022-14126 · Teradici · Pcoip Zero Client
Name of the Vulnerable Software and Affected Versions: PCoIP Zero Client affected versions not specified Description: The issue arises when connecting to Amazon Workspaces, as the SHA256 presented by the AWS connection provisioner is not fully verified by Zero Clients. This could be exploited by ...
AWS Connection Session Provisioner’s SHA256 hash is not fully verified by PCoIP Zero Clients
HP has provided updated versions of Tera2 Zero Client firmware that remediate vulnerabilities found in firmware version 22.04 and earlier. Products can be updated or replaced with the latest release by downloading from the Teradici website and following standard installation or update instruction...
Teradici Management Console 安全漏洞
Teradici Management Console is a management console from Teradici Canada Inc. It enables IT administrators to easily manage, monitor and scale PCoIP Zero Clients and Remote Workstation Cards in their deployments. A security vulnerability exists in Teradici Management Console version 2.2.0 that...
Wyse Zero Client Unable to Log On to StoreFront
Wyse Zero Clients are unable to log on to StoreFront. The following error is received: Start roaming account , Citrix Sign-On failed This issue occurs after rebooting one of the devices. The devices that are not yet rebooted are working without any issues...
[security bulletin] HPSBHF02878 rev.1 - HP Smart Zero Client, Unauthorized Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03757330 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03757330 Version: 1 HPSBHF02878 rev....
HP Smart Zero Client unauthorized access
No description provided...
CVE-2013-2339
HP Smart Zero Core 4.3 and 4.3.1 on the t410 All-in-One Smart Zero Client, t410 Smart Zero Client, t510 Flexible Thin Client, t5565z Smart Client, t610 Flexible Thin Client, and t610 PLUS Flexible Thin Client allows local users to obtain sensitive information, modify data, or cause a denial of...
Code injection
HP Smart Zero Core 4.3 and 4.3.1 on the t410 All-in-One Smart Zero Client, t410 Smart Zero Client, t510 Flexible Thin Client, t5565z Smart Client, t610 Flexible Thin Client, and t610 PLUS Flexible Thin Client allows local users to obtain sensitive information, modify data, or cause a denial of...
HPSBHF02878 rev.1 - HP Smart Zero Client, Unauthorized Access
Potential Security Impact Unauthorized access VULNERABILITY SUMMARY A potential security vulnerability has been identified with the HP Smart Zero Client. This vulnerability could be exploited by a local user on the device to gain unauthorized access. RESOLUTION HP has provided updated operating...
phpcms injection March New Year 0day-vulnerability warning-the black bar safety net
Affected versions: 2007SP5 SP6 Vulnerability file:/formguide/include/tag.func.php Author: backerhack small cockroaches Sources of information: the zero Client Network Security www.0kee.com I wish the National female compatriots happy holidays, concerned about the health of women... “she is good, ...