Nnposter

Name of the Vulnerable Software and Affected Versions: F5 FirePass 1200 version 6.0.2 hotfix 3 Description: The issue allows remote attackers to cause a denial of service by walking the hrSWInstalled OID branch in HOST-RESOURCES-MIB, resulting in the SNMP daemon crash. Recommendations: For F5 FirePass 1200 version 6.0.2 hotfix 3, consider restricting access to the SNMP daemon to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** F5 FirePass SSL VPN versions prior to 6.0.2 hotfix 3 **Description** The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via quotes in the `css exceptions` parameter in "vdesk/admincon/webyfiers.php" and the `sql matchscope` parameter in "vdesk/admincon/index.php". **Recommendations** For F5 FirePass SSL VPN versions prior to 6.0.2 hotfix 3, consider disabling access to the vulnerable API endpoints "vdesk/admincon/webyfiers.php" and "vdesk/admincon/index.php" until a patch is available. Restrict the use of the `css exceptions` and `sql matchscope` parameters to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Alkacon OpenCMS version 7.0.3 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the `searchfilter` parameter in the /system/workplace/admin/workplace/sessions.jsp file. **Recommendations** For Alkacon OpenCMS version 7.0.3, avoid using the `searchfilter` parameter in the /system/workplace/admin/workplace/sessions.jsp file until a fix is available. As a temporary workaround, consider restricting access to the sessions.jsp file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** F5 BIG-IP version 9.4.3 **Description** A cross-site scripting (XSS) issue exists in the web management interface, allowing remote attackers to inject arbitrary web script or HTML via the name of a node object, or the sysContact or sysLocation SNMP configuration fields. This issue might be related to cross-site request forgery (CSRF) vulnerabilities. **Recommendations** For F5 BIG-IP version 9.4.3, consider disabling access to the web management interface until a fix is available, and restrict modifications to the node object, sysContact, and sysLocation SNMP configuration fields to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Alkacon OpenCMS version 7.0.3 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the `searchfilter` or `listSearchFilter` parameters in the system/workplace/admin/accounts/users list.jsp file. **Recommendations** For Alkacon OpenCMS version 7.0.3, consider restricting access to the users list.jsp file until a patch is available. As a temporary workaround, avoid using the `searchfilter` and `listSearchFilter` parameters in the affected API endpoint.

**Name of the Vulnerable Software and Affected Versions** Alkacon OpenCms versions 7.0.3 through 7.0.4 **Description** A cross-site scripting (XSS) issue exists in the Logfile Viewer Settings function, allowing remote attackers to inject arbitrary web script or HTML via the `filePath.0` parameter in a save action. **Recommendations** For versions 7.0.3 and 7.0.4, avoid using the `filePath.0` parameter in the save action of the Logfile Viewer Settings function until a fix is available. As a temporary workaround, consider restricting access to the Logfile Viewer Settings function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Alkacon OpenCms versions 7.0.3 through 7.0.4 **Description** The issue allows remote authenticated administrators to read arbitrary files via a full pathname in the `filePath.0` parameter in the `/system/workplace/admin/workplace/logfileview/logfileViewSettings.jsp` API endpoint. **Recommendations** For versions 7.0.3 and 7.0.4, restrict access to the `logfileViewSettings.jsp` page to minimize the risk of exploitation. Avoid using the `filePath.0` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** F5 BIG-IP Application Security Manager (ASM) version 9.4.3 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the `report type` parameter in the dms/policy/rep request.php file. **Recommendations** For version 9.4.3, avoid using the `report type` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** 8e6 R3000 Internet Filter versions 2.0.05.33 through 2.0.10 **Description** The issue allows remote attackers to bypass intended restrictions via a fragmented HTTP request. **Recommendations** For versions 2.0.05.33 through 2.0.10, update to version 2.0.11 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** F5 BIG-IP version 9.4.3 **Description** The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the Search function of the web management interface. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the `SearchString` parameter to various API endpoints, including "/tmui/Control/jspmap/tmui/system/log/" with files such as "list system.jsp", "list pktfilter.jsp", "list ltm.jsp", "resources audit.jsp", and "list asm.jsp", as well as "list.jsp" in certain directories. **Recommendations** For F5 BIG-IP version 9.4.3, as a temporary workaround, consider restricting access to the Search function in the web management interface until a patch is available. Avoid using the `SearchString` parameter in the affected API endpoints until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Citrix NetScaler version 8.0 build 47.8 **Description** The web management interface uses weak encryption to store credentials within a cookie, making it easier for remote attackers to obtain cleartext credentials when a cookie is captured via a known-plaintext attack. **Recommendations** For Citrix NetScaler version 8.0 build 47.8, consider disabling the use of cookies for credential storage until a patch is available. Restrict access to the web management interface to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Citrix NetScaler version 8.0 build 47.8 **Description** The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the `standalone` parameter and other unspecified parameters. **Recommendations** For Citrix NetScaler version 8.0 build 47.8, consider restricting access to the `ws/generic api call.pl` script until a patch is available. As a temporary workaround, avoid using the `standalone` parameter in the affected script to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Axalto Protiva version 1.1 Description: The issue allows local users to gain privileges by reading passwords stored in plaintext in files with insecure permissions. The passwords can be found in files such as `KeyToolkeytool.config` or `webappsprotivaWEB-INFclassesauthserver.config`. Recommendations: For Axalto Protiva version 1.1, consider restricting access to the `KeyToolkeytool.config` and `webappsprotivaWEB-INFclassesauthserver.config` files to minimize the risk of exploitation. Additionally, modify the permissions of these files to secure them and prevent unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.