BACK TO INTEL

Archives

Classification

Clear Filter
Application Security
Cloud Infrastructure
Enterprise Infrastructure
Enterprise IT Infrastructure
Enterprise Networking
Enterprise Security
Enterprise Software
ERP
Information Technology
Infrastructure
Fortinet FortiOS
Ivanti Sentry
Messaging & Integration
Network Security
Operating Systems
Infrastructure Security
Microsoft
Network Appliances
Network Infrastructure
Network Security
Networking
Open Source
Operating Systems
Software
Software Development
Software Security
Technology
Virtualization
Vulnerability
Web Hosting
Web Security
Windows Ecosystem

FeedInfrastructure

Verified advisories, vulnerability disclosures, and architectural research.

CVE-2008-4250

Unpacking CVE-2008-4250: Technical Analysis and Mitigation of the Critical Windows Server Service Buffer Overflow Vulnerability

Microsoft Windows contains a buffer overflow vulnerability in the Windows Server Service that allows remote attackers to execute arbitrary code via a crafted RPC request that triggers an overflow during path canonicalization.

Windows
View Detail
CVE-2020-3433

CVE-2020-3433: Critical DLL Hijacking in Cisco AnyConnect Secure Mobility Client

Cisco AnyConnect Secure Mobility Client for Windows interprocess communication (IPC) channel allows for insufficient validation of resources that are loaded by the application at run time. An attacker with valid credentials on Windows could execute code on the affected machine with SYSTEM privileges.

AnyConnect Secure Mobility Client
View Detail
CVE-2023-27997

CVE-2023-27997: Critical Fortinet SSL-VPN Heap Buffer Overflow Remediation Guide

Fortinet FortiOS and FortiProxy SSL-VPN contain a heap-based buffer overflow vulnerability which can allow an unauthenticated, remote attacker to execute code or commands via specifically crafted requests.

FortiOS and FortiProxy SSL-VPN
View Detail
CVE-2023-38035

CVE-2023-38035: Critical Ivanti Sentry Authentication Bypass Vulnerability Advisory

Ivanti Sentry, formerly known as MobileIron Sentry, contains an authentication bypass vulnerability that may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration.

Ivanti Sentry
View Detail
CVE-2023-46747

CVE-2023-46747: Critical F5 BIG-IP Authentication Bypass and RCE Vulnerability Advisory

F5 BIG-IP Configuration utility contains an authentication bypass using an alternate path or channel vulnerability due to undisclosed requests that may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46748.

BIG-IP Configuration Utility
View Detail
CVE-2023-46604

CVE-2023-46604: Critical RCE in Apache ActiveMQ via OpenWire Deserialization

Apache ActiveMQ contains a deserialization of untrusted data vulnerability that may allow a remote attacker with network access to a broker to run shell commands by manipulating serialized class types in the OpenWire protocol to cause the broker to instantiate any class on the classpath.

ActiveMQ
View Detail
CVE-2024-21762

CVE-2024-21762: Critical Fortinet FortiOS Out-of-Bounds Write Vulnerability Technical Advisory

Fortinet FortiOS contains an out-of-bound write vulnerability that allows a remote unauthenticated attacker to execute code or commands via specially crafted HTTP requests.

FortiOS
View Detail
CVE-2026-34197

CVE-2026-34197: Critical Code Injection in Apache ActiveMQ via Jolokia JMX Bridge

Apache ActiveMQ contains an improper input validation vulnerability that allows for code injection.

ActiveMQ
View Detail