Headline

CVE-2022-40630

This vulnerability exists in Tacitine Firewall, all versions of EN6200-PRIME QUAD-35 and EN6200-PRIME QUAD-100 between 19.1.1 to 22.20.1 (inclusive), due to improper session management in the Tacitine Firewall web-based management interface. An unauthenticated remote attacker could exploit this vulnerability by sending a specially crafted http request on the targeted device. Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to perform session fixation on the targeted device.

2 years ago

CVE

Open in Source

#vulnerability #web #pdf #auth

%PDF-1.7 %�� 1 0 obj <>/Metadata 72 0 R/ViewerPreferences 73 0 R>> endobj 2 0 obj <> endobj 3 0 obj <>/ExtGState<>/XObject<>/ProcSet[/PDF/Text/ImageB/ImageC/ImageI] >>/Annots[ 22 0 R] /MediaBox[ 0 0 612 792] /Contents 4 0 R/Group<>/Tabs/S/StructParents 0>> endobj 4 0 obj <> stream x��Zmo�8� ��ŅI��p��6�އ�Pl�j[>YN6��f��Db��#S�f8�yf�!�_Wu1�F5{��u]g��|̮ϯ��_�W��S6-Y]��M�C��8�^�bo޽e�== x��R!Y�4|ƩdU~z��AȮ&�’��`��YF<��j��|�� ɦ�-i��|zr�1�/v��ӓ��OO~,z�Cv��#!�Cҏ�:@��[vn1��˹��ʲvb�(�`*�i��|�X[��dG�S��4�K�p�F�:�l��]ɜ�)�P��N��%�y�2J��lubWv~��Ƿ�Xp��l1e^�8�r�?sQ�uQu�P�hQ�*$�B['�{�#]ۧ�HG�5��QG=?�� >ܑ��W��Wύ<��T�m�� A��M��?�`�3��?��?� �g7�Y��W��p��@��oz�Hi)�Ȗ�R�$��zR� .ű��<��W�k/�+y1,R�/�^��$P��%�M�� L �K��2ǘY� �a1_{��o��H[��Ȁ�U�X�8A�U�Q緪�|��f�r��ֈU��z�72?m��X�ƍe�~7"/��v��m��F��Nx l�`f}��DO�U,��;��C�}F/��0�=Z��CO��ώj��HY�]{�y��dʂsW��S6�|!>F�EZr݃G%�>A��=W��AE�1p)�P�[�!�w�Q��UHA��W�c��U޵’GR.p�P��’2�T)W�"�e��𕣹Ao��3b�ۤ�s_H�^�Ί��n�!�|aq��:��m��3CG�)��5Q�+�[��=`��ߙ/�I�p��K�-��6M�f7�Ƭh�� ,_b,+X��Q� ��E��U��#��af�@pt51%�"��>��g��r��+{�W+��q�7�s�qM��j쪀66OS(��^t�A|� P�X�Pu�y�c�<�p��[�C�~�ܳ��L��h1�*�F�U C��>��٬��x�L��*�p�� lI�%F9�� ue��Ee��-��`�t�n�o��0�\63�(9� �4��R,�<��wNL�b��G�� g8��ě�F�;��Ha�e3�+��\f�R��.�d��$�S�b��j\e��Y��K-�h��

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

1 year ago

1 year ago

1 year ago

1 year ago

1 year ago