Home assistant is an open source home automation. Whilst auditing the frontend code to identify hidden parameters, Cure53 detected `auth_callback=1`, which is leveraged by the WebSocket authentication ...
Continue Reading
December 14, 2023
Home assistant is an open source home automation. Whilst auditing the frontend code to identify hidden parameters, Cure53 detected `auth_callback=1`, which is leveraged by the WebSocket authentication ...
Continue Reading
December 14, 2023
Lightweight stream-based WebSocket implementation.Read More ...
Continue Reading
December 14, 2023
[]() Threat actors are selling a new crypter and loader ca ...
Continue Reading
December 14, 2023
The version of tomcat installed on the remote host is prior to 8.5.72-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2TOMCAT8.5-2023-006 advisory. - The fix for bug 63362 ...
Continue Reading
December 14, 2023
home-assistant/core and home-assistant-js-websocket are vulnerable to XSS attack.The vulnerability occurs due to a loophole in Websocket authentication logic. The logic utilises a `state` parameter wh ...
Continue Reading
December 14, 2023
directus is vulnerable to Denial Of Service (DoS). The vulnerability exists because invalid websocket frames are not properly handled which allows an attacker to crash the application .Read More ...
Continue Reading
December 14, 2023
The version of tomcat installed on the remote host is prior to 9.0.54-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2TOMCAT9-2023-006 advisory. - The fix for bug 63362 pr ...
Continue Reading
December 14, 2023
Back to Main
