RSS   Vulnerabilities for 'Connection broker'   RSS

2021-08-06
 
CVE-2021-38157

CWE-79
 

 
** UNSUPPORTED WHEN ASSIGNED ** LeoStream Connection Broker 9.x before 9.0.34.3 allows Unauthenticated Reflected XSS via the /index.pl user parameter. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

 
2018-10-29
 
CVE-2018-18817

CWE-668
 

 
The Leostream Agent before Build 7.0.1.0 when used with Leostream Connection Broker 8.2.72 or earlier allows remote attackers to modify registry keys via the Leostream Agent API.

 


Copyright 2024, cxsecurity.com

 

Back to Top