Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2024/02/13 12:0 a.m.14 views

RICOH Aficio MP 301 Cross-site Scripting (CVE-2018-17312)

On the RICOH Aficio MP 301 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi. This plugin only works with Tenable.ot. Please visit...

6.1CVSS6.2AI score0.00328EPSS
Exploits2References2
OpenVAS
OpenVASadded 2020/05/26 12:0 a.m.28 views

Huawei Data Communication: Multiple Vulnerabilities in IPsec IKE implementations of Huawei Firewall Products (huawei-sa-20180411-01-Bleichenbacher)

There is a Bleichenbacher Oracle vulnerability in the IPSEC IKEv1 implementations of Huawei Firewall products. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier...

7.8CVSS0.3AI score0.00137EPSS
Exploits0References1
CVE
CVEadded 2019/10/07 3:3 p.m.41 views

CVE-2019-17312

SugarCRM before 8.0.4 and 9.x before 9.0.2 expose a directory traversal flaw in the file function that can be triggered by a regular user. The public sources listed (including SugarCRM advisory) confirm the affected versions and the nature of the vulnerability. Remediation per the documents is up...

8.8CVSS8.6AI score0.00629EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2018/09/26 10:29 p.m.9 views

CVE-2018-17312

On the RICOH Aficio MP 301 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...

6.1CVSS6.5AI score0.00328EPSS
Exploits2References1
CVE
CVEadded 2018/09/26 10:0 p.m.43 views

CVE-2018-17312

CVE-2018-17312 affects the Ricoh Aficio MP 301 printer. The vulnerability is HTML Injection and Stored XSS in the address-adding function, triggered via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi. Public references corroborate Cross-Site Scripting in that area, with ...

6.1CVSS6.3AI score0.00328EPSS
Exploits2References1Affected Software1
CVE
CVEadded 2018/08/21 1:0 p.m.46 views

CVE-2017-17312

CVE-2017-17312 affects Huawei Firewall products (USG2205BSR, USG2220BSR, USG5120BSR, USG5150BSR) where the IPsec IKEv1 implementations mishandle malformed messages, allowing a network-attacker to trigger a denial of service. Impact is availability loss on affected devices. Related OpenVAS/CNVD/NV...

7.8CVSS7.5AI score0.0012EPSS
Exploits0References1Affected Software1
Huawei
Huaweiadded 2018/08/13 12:0 a.m.30 views

Security Advisory - Multiple Vulnerabilities in IPsec IKE of Huawei Firewall Products

There is a Bleichenbacher Oracle vulnerability in the IPSEC IKEv1 implementations of Huawei Firewall products. Remote attackers can decrypt IPSEC tunnel ciphertext data by leveraging a Bleichenbacher RSA padding oracle. Cause a Bleichenbacher oracle attack. Successful exploit this vulnerability c...

7.8CVSS6.9AI score0.00137EPSS
Exploits0Affected Software4
Rows per page
Query Builder