FreeBSD : transmission-daemon — vulnerable to dns rebinding attacks (3e5b8bd3-0c32-452f-a60e-beab7b762351)

Google Project Zero reports : The transmission bittorrent client uses a client/server architecture, the user interface is the client which communicates to the worker daemon using JSON RPC requests. As ...

Continue Reading

June 30, 2023

CVE-2017-12117

An exploitable improper authorization vulnerability exists in miner_start API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can cause an access to the re ...

Continue Reading

June 30, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

CVE-2017-12115

An exploitable improper authorization vulnerability exists in miner_setEtherbase API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). A JSON request can cause an access to ...

Continue Reading

June 30, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

Blizzard Update Agent – JSON RPC DNS Rebinding

Blizzard Update Agent - JSON RPC DNS RebindingRead More ...

Continue Reading

June 30, 2023

Blizzard Update Agent – JSON RPC DNS Rebinding

Post ContentRead More ...

Continue Reading

June 30, 2023

Dell EMC Avamar and Integrated Data Protection Appliance Installation Manager – Invalid Access Control

Dell EMC Avamar and Integrated Data Protection Appliance Installation Manager - Invalid Access ControlRead More ...

Continue Reading

June 30, 2023

CVSS3 - CRITICAL

CVSS2 - MEDIUM

Dell EMC Avamar And Integrated Data Protection Appliance Invalid Access Control

Post ContentRead More ...

Continue Reading

June 30, 2023

Palo Alto Networks readSessionVarsFromFile() Session Corruption

This module exploits a chain of vulnerabilities in Palo Alto Networks products running PAN-OS versions prior to 6.1.19, 7.0.19, 7.1.14, and 8.0.6. This chain starts by using an authentication bypass f ...

Continue Reading

June 30, 2023

1 23 24 25 26 27 37

Back to Main
Subscribe for the latest news: