JSON-RPC - API Security Blog

Untangle NGFW 12.1.0 Beta – execEvil() Command Injection

Untangle NGFW 12.1.0 Beta - execEvil() Command InjectionRead More ...

June 30, 2023

[SECURITY] Fedora 24 Update: capnproto-0.5.3.1-1.fc24

Cap=EF=BF=BD=EF=BF=BD=EF=BF=BDn Proto is an insanely fast data interchange format and capability-based RPC system. Think JSON, except binary. Or think Protocol Buffers, except faster. In fact, in ben ...

June 30, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

Eltek SmartPack Backdoor Account

Post ContentRead More ...

June 30, 2023

Palo Alto Networks firewalls remote root code execution(CVE-2017-15944)

This is a public advisory for CVE-2017-15944 which is a remote root code execution bug in Palo Alto Networks firewalls. Three separate bugs can be used together to remotely execute commands as root th ...

June 30, 2023

Palo Alto Networks Firewalls – Root Remote Code Execution

Post ContentRead More ...

June 30, 2023

CVSS3 - CRITICAL

CVSS2 - HIGH

CPP-Ethereum JSON-RPC admin_peers improper authorization Vulnerability

### Summary An exploitable improper authorization vulnerability exists in admin_peers API of cpp-ethereumâs JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can cause an ...

June 30, 2023

CVSS3 - MEDIUM

CVSS2 - MEDIUM

CPP-Ethereum JSON-RPC miner_setEtherbase improper authorization Vulnerability

### Summary An exploitable improper authorization vulnerability exists in miner_setEtherbase API of cpp-ethereumâs JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can c ...

June 30, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

CPP-Ethereum JSON-RPC miner_stop improper authorization Vulnerability(CVE-2017-12118)

### Summary An exploitable improper authorization vulnerability exists in miner_stop API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can cause an acces ...

June 30, 2023