Test Blog - Cloud WAF

CVE-2024-48809 : OPEN NETWORKING FOUNDATION SDRAN-IN-A-BOX/ONOS-A1T DELETEWATCHER DENIAL OF SERVICE

Description An issue in Open Networking Foundations sdran-in-a-box v.1.4.3 and onos-a1t v.0.2.3 allows a remote attacker to cause a denial of service via the onos-a1t…

Common Vulnerabilities and Exposures

CVE-2024-45164 : AKAMAI SPS/APPS PORTAL SIA THREATAVERT THREATAVERTPOLICIES IMPROPER AUTHORIZATION

Description Akamai SIA (Secure Internet Access Enterprise) ThreatAvert, in SPS (Security and Personalization Services) before the latest 19.2.0 patch and Apps Portal before 19.2.0.3 or…

Common Vulnerabilities and Exposures

CVE-2024-10035 : BG-TEK INFORMATICS SECURITY TECHNOLOGIES COSLATV3 UP TO 3.1069 CODE INJECTION

Description Improper Control of Generation of Code ('Code Injection') vulnerability in BG-TEK Informatics Security Technologies CoslatV3 allows Command Injection.This issue affects CoslatV3: through 3.1069. NOTE:…

Common Vulnerabilities and Exposures

CVE-2024-51561 : BROKERAGE TECHNOLOGY SOLUTIONS AERO API ENDPOINT RELIANCE ON UNTRUSTED INPUTS IN A SECURITY DECISION

Description This vulnerability exists in Aero due to improper implementation of OTP validation mechanism in certain API endpoints. An authenticated remote attacker could exploit this…

Common Vulnerabilities and Exposures

CVE-2024-10389 : GOOGLE SAFEARCHIVE ARCHIVE EXTRACTION UNCONTROLLED SEARCH PATH

Description There exists a Path Traversal vulnerability in Safearchive on Platforms with Case-Insensitive Filesystems (e.g., NTFS). This allows Attackers to Write Arbitrary Files via Archive…

Common Vulnerabilities and Exposures

CVE-2024-10698 : TENDA AC6 15.03.05.19 /GOFORM/SETONLINEDEVNAME FORMSETDEVICENAME DEVNAME STACK-BASED OVERFLOW

Description A vulnerability was found in Tenda AC6 15.03.05.19 and classified as critical. Affected by this issue is the function formSetDeviceName of the file /goform/SetOnlineDevName.…