Linux Distros Unpatched Vulnerability : CVE-2023-28334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Authenticated users were able to enumerate other users' names via the learning plans page. CVE-2023-28334 Note that Nessus relies on the presence of the package...

CVE-2023-28334

Authenticated users were able to enumerate other users' names via the learning plans page...

CVE-2023-28334

Authenticated users were able to enumerate other users' names via the learning plans page...

CVE-2023-28334 Moodle: users' name enumeration possible via idor on learning plans page

Authenticated users were able to enumerate other users' names via the learning plans page...

CVE-2023-28334

CVE-2023-28334 affects Moodle via an authenticated user IDOR on the learning plans page, enabling enumeration of other users’ names. OpenVAS lists Moodle core version ranges (e.g., 4.0.x before 4.0.7 and 4.1.x before 4.1.2) as vulnerable to an IDOR vulnerability; Veracode notes full information d...

CVE-2023-28334 Moodle: users' name enumeration possible via idor on learning plans page

Authenticated users were able to enumerate other users' names via the learning plans page...

CVE-2021-28334

Remote Procedure Call Runtime Remote Code Execution Vulnerability...

CVE-2021-28334

CVE-2021-28334 is associated with a Remote Procedure Call Runtime remote code execution vulnerability in Microsoft Windows/Windows Server. The CNVD-2021-74287 entry describes a RPC Runtime RCE vulnerability affecting Windows/Windows Server, implying a remote attacker could execute code over the n...

CVE-2021-28334 Remote Procedure Call Runtime Remote Code Execution Vulnerability

...

KB5001389: Windows Server 2008 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - Windows Kernel Information Disclosure Vulnerability CVE-2021-27093, CVE-2021-28309 - Windows Media...

KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Microsoft Internet Messaging API Remote Code...

KB5001342: Windows 10 version 1809 / Windows Server 2019 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072, CVE-2021-28310 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Windows Event Tracing Elevati...

CVE-2020-28334

creationtimestamp| type| source ---|---|--- 2020-11-24 22:47:06+00:00| seen| https://t.me/cibsecurity/16813...

CVE-2020-28334

Barco wePresent WiPG-1600W devices use Hard-coded Credentials issue 2 of 2. Affected Versions: 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19. The Barco wePresent WiPG-1600W device has a hardcoded root password hash included in the firmware image. Exploiting CVE-2020-28329, CVE-2020-28330 and CVE-2020-283...

CVE-2020-28334

Barco wePresent WiPG-1600W devices are affected by CVE-2020-28334 due to a hard-coded root password hash embedded in firmware for affected versions 2.5.1.8, 2.5.0.25, 2.5.0.24 and 2.4.1.19. Related connected CVEs (CVE-2020-28329, CVE-2020-28330, CVE-2020-28331) describe a chain of issues: a hard-...

Barco wePresent WiPG-1600W Global Hardcoded Root SSH Password Vulnerability

Barco wePresent WiPG-1600W versions 2.5.1.8, 2.5.0.25, 2.5.0.24, and 2.4.1.19 have a hardcoded root password hash included in the firmware image. Title: Barco wePresent Global Hardcoded Root SSH Password Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2020-008.txt 1...

Barco wePresent Global Hardcoded Root SSH Password

Vulnerability Details Affected Vendor: Barco Affected Product: wePresent WiPG-1600W Affected Version: 2.5.1.8, 2.5.0.25, 2.5.0.24, 2.4.1.19 Platform: Embedded Linux CWE Classification: CWE-798: Use of Hard-coded Credentials CVE ID: CVE-2020-28334 2. Vulnerability Description The Barco wePresent...

Barco wePresent Global Hardcoded Root SSH Password

KL-001-2020-008 : Barco wePresent Global Hardcoded Root SSH Password Title: Barco wePresent Global Hardcoded Root SSH Password Advisory ID: KL-001-2020-008 Publication Date: 2020.11.20 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2020-008.txt 1. Vulnerability Details Affecte...