Medium CVE-2026-11322 Hermes WebUI prior to v0.51.221 contains a path traversal vulnerability that allows attackers to escape the workspace boundary by supplying symlinks that resolve to files or directories outside the designated workspace root. Attackers can exploit the workspace file and listing...

#Sicherheitslücke

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

[Medium] CVE-2026-11322 – Hermes WebUI prior to v0.51.221 contains a path traversal vulnerability that all...

VERWANDTEARTIKEL

CVE-2023-5502 - On affected platforms running Arista EOS with 802.1x authentication configured on the access/trunk ports, a malicious supplicant may bypass authentication.

CVE-2024-27892 - On affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected (SSL Profiles Enabled).

[Medium] CVE-2026-42547 – IRIS is a web collaborative platform that helps incident responders share techni...

[High] CVE-2026-10871 – A vulnerability has been found in Shibby Tomato 1.28.0000. This vulnerability af...

CVE-2026-10871 - Shibby Tomato Web UI rc start_6rd_tunnel os command injection

[Unknown] CVE-2024-6858 – In Arista’s EOS when in 802.1X mode, multi-auth unauthenticated hosts might be a...