CSRF was discovered in the web UI in Deluge before 1.3.14. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
CSRF
Deluge
Debian Linux
NVD
Exploit-DB
CVSS 3.1
8.8
EPSS
1.2%
Suricata before 3.2.1 has an IPv4 defragmentation evasion issue caused by lack of a check for the IP protocol during fragment matching. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Suricata
Information Disclosure
NVD
GitHub
CVSS 3.0
7.5
EPSS
0.2%