CVE-2025-13955

Predictable default Wi-Fi Password in Access Point functionality in EZCast Pro II before version 1.17478.177 allows attackers in Wi-Fi range to gain access to the dongle by calculating the default password from observable device identifiers...

CVE-2025-13955

creationtimestamp| type| source ---|---|--- 2025-12-10 09:00:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7mp3k74cw2x 2025-12-10 09:04:14+00:00| seen| https://infosec.exchange/users/offseq/statuses/115694466008698934 2025-12-10 09:04:15+00:00| seen|...

CVE-2024-13955

2nd Order SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of database repositories if administrator credentials become compromised.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

CVE-2024-13955

2nd Order SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of database repositories if administrator credentials become compromised.This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

CVE-2024-13955

CVE-2024-13955 describes 2nd Order SQL injection across ABB ASPECT-Enterprise (through 3.), NEXUS Series (through 3. ), and MATRIX Series (through 3.*). Root cause involves credential disclosure enabling a second‑order SQL injection that can view, add, modify, or delete information in back‑end da...

CVE-2017-13955

Rejected reason: This candidate is unused by its CNA...

Security Bulletin: There are multiple security vulnerabilities in Apache Storm used by IBM Tivoli Netcool Manager.

Summary Apache-storm, used by IBM Tivoli Network Manager, contains many internal libraries which are vulnerable to various types of CVEs. Revealing sensitive information CVE-2021-28169, bypassing ACL validations CVE-2018-17196, heap based buffer overflow CVE-2015-5237, denial of service...

cn.eppdev.mlib:eppdev-mlib-sdk-hive-udf31 (=1.0.0), com.alibaba.blink:flink-sql-parser (=blink-3.6.8) +310 more potentially affected by CVE-2020-13955 via org.apache.calcite:calcite-core (>=1.0.0-incubating <=1.25.0)

org.apache.calcite:calcite-core MAVEN version =1.0.0-incubating, =1.0.0, =1.1.10, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =1.3.2, =0.8.0, =7.2.1, =7.2.1, =8.1.17 and more Source cves: CVE-2020-13955 Source advisory: OSV:GHSA-HXP5-8PGQ-MGV9...

CVE-2020-13955

creationtimestamp| type| source ---|---|--- 2020-10-09 16:33:21+00:00| seen| https://t.me/cibsecurity/15179...

CVE-2020-13955

HttpUtilsgetURLConnection method disables explicitly hostname verification for HTTPS connections making clients vulnerable to man-in-the-middle attacks. Calcite uses internally this method to connect with Druid and Splunk so information leakage may happen when using the respective Calcite adapter...

CVE-2020-13955

HttpUtilsgetURLConnection method disables explicitly hostname verification for HTTPS connections making clients vulnerable to man-in-the-middle attacks. Calcite uses internally this method to connect with Druid and Splunk so information leakage may happen when using the respective Calcite adapter...

CVE-2020-13955

CVE-2020-13955 affects Apache Calcite: HttpUtils#getURLConnection disables hostname verification for HTTPS, enabling potential MITM attacks and information leakage when Calcite adapters connect to Druid or Splunk. The issue originates from a utility method that can be used to create vulnerable HT...

CVE-2020-13955

HttpUtilsgetURLConnection method disables explicitly hostname verification for HTTPS connections making clients vulnerable to man-in-the-middle attacks. Calcite uses internally this method to connect with Druid and Splunk so information leakage may happen when using the respective Calcite adapter...

CVE-2019-13955

creationtimestamp| type| source ---|---|--- 2020-06-01 02:07:41+00:00| seen| Telegram/RYuO9rnZyZatuBLmi4stN6fr4cvIa3LCbuSc0quitWP1aoWi...

CVE-2019-13955

CVE-2019-13955 affects MikroTik RouterOS prior to 6.44.5. An authenticated remote attacker can trigger a crafted HTTP request that causes recursive JSON parsing, leading to stack exhaustion and denial of service by crashing the HTTP server. Root cause: stack exhaustion due to improper handling of...

TrackerCam PHP Argument Buffer Overflow

No description provided by source. $Id: trackercamphpargoverflow.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

CVE-2017-13955

CVE-2017-13955 is rejected/not used and does not represent an active vulnerability entry.