Multiple vulnerabilities in EasyBlocks IPv6

Overview :
Cross-site request forgery (CSRF) vulnerability in EasyBlocks IPv6 Ver. 2.0.1 and earlier and Enterprise Ver. 2.0.1 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVE-2020-5549

 

EasyBlocks IPv6 Enterprise Software Release Information | Version 2.0.2

  • Supported
  • Fixed update stop when changing Config file.

Known issues

  • Operation becomes unstable with redundancy in Act-Act configuration. Since we plan to integrate this into an Act-Stb configuration, we recommend using an Act-Stb configuration for redundancy.

Notes

  • This update is based on ver.2.0.1. Therefore, please update to Ver.2.0.1 in advance.

References

Common Vulnerabilityies and Exposures

Contact us to get started

CVE-2022-AVAST2 : Self-Defense Bypass via Repairing Function

Description It was noted that there is security checking to prevent some of the Avast processes from loading of undesired/unsigned

CVE-2022-21500 : Oracle Security Alert Advisory

Description This Security Alert addresses vulnerability CVE-2022-21500, which affects some deployments of Oracle E-Business Suite. This vulnerability is remotely exploitable

CVE-2022-1183 : Destroying a TLS session early causes assertion failure

Description On vulnerable configurations, the named daemon may, in some circumstances, terminate with an assertion failure. Vulnerable configurations are those