Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application.
Description Horner Automation’s RCC 972 with firmware version 15.40 has a static encryption key on the device. This could allow
Description In multiple products by Festo a remote unauthenticated attacker could use functions of an undocumented protocol which could lead
Description Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) vulnerability in Asus NAS-M25 allows an