Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-7527

Malware in sbrugna...

7.5CVSS7.6AI score0.01553EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-7530

Malware in sbrugna...

6.5CVSS6.6AI score0.01433EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7529

Malware in sbrugna...

7.5CVSS7.6AI score0.01777EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7526

Malware in sbrugna...

6.5CVSS6.6AI score0.01433EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-7528

Malware in sbrugna...

7.3CVSS7.4AI score0.01562EPSS
Exploits6References4
Prion
Prion
added 2019/02/05 3:29 a.m.16 views

Cross site scripting

An issue was discovered in 42Gears SureMDM before 2018-11-27, related to the access policy for Silverlight applications. Cross-origin access is possible...

4.3CVSS6.5AI score0.01433EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/02/05 3:29 a.m.21 views

Cross site scripting

An issue was discovered in 42Gears SureMDM before 2018-11-27, related to CORS settings. Cross-origin access is possible...

4.3CVSS6.4AI score0.01433EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/02/05 3:29 a.m.21 views

Design/Logic Flaw

An issue was discovered in the registration API endpoint in 42Gears SureMDM before 2018-11-27. An attacker can submit a GET request to /api/register/:email, where :email is a base64 encoded e-mail address, to receive confirmation as to whether a user account exists in the system with the specifie...

5CVSS7.4AI score0.01553EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/02/05 3:29 a.m.23 views

Server side request forgery (ssrf)

An SSRF issue was discovered in 42Gears SureMDM before 2018-11-27 via the /api/DownloadUrlResponse.ashx "url" parameter...

1.9CVSS7AI score0.01562EPSS
Exploits6References2Affected Software1
NVD
NVD
added 2019/02/05 3:29 a.m.20 views

CVE-2018-15658

An issue was discovered in 42Gears SureMDM before 2018-11-27. By visiting the page found at /console/ConsolePage/Master.html, an attacker is able to see the markup that would be presented to an authenticated user. This is caused by the session validation occurring after the initial markup is...

7.5CVSS7.4AI score0.01777EPSS
Exploits1References1
Prion
Prion
added 2019/02/05 3:29 a.m.25 views

Design/Logic Flaw

An issue was discovered in 42Gears SureMDM before 2018-11-27. By visiting the page found at /console/ConsolePage/Master.html, an attacker is able to see the markup that would be presented to an authenticated user. This is caused by the session validation occurring after the initial markup is...

5CVSS7.3AI score0.01777EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/02/05 3:29 a.m.19 views

CVE-2018-15656

An issue was discovered in the registration API endpoint in 42Gears SureMDM before 2018-11-27. An attacker can submit a GET request to /api/register/:email, where :email is a base64 encoded e-mail address, to receive confirmation as to whether a user account exists in the system with the specifie...

7.5CVSS7.4AI score0.01553EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/05 3:0 a.m.28 views

CVE-2018-15655

An issue was discovered in 42Gears SureMDM before 2018-11-27, related to CORS settings. Cross-origin access is possible...

6.5AI score0.01433EPSS
Exploits1References1
CVE
CVE
added 2019/02/05 3:0 a.m.65 views

CVE-2018-15655

CVE-2018-15655 concerns 42Gears SureMDM prior to 2018-11-27 with a CORS configuration issue allowing cross-origin access. The connected documents corroborate the same description; no further technical details, affected versions beyond the date, specific exploit paths, or remediation steps are pro...

6.5CVSS6.4AI score0.01433EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/02/05 3:0 a.m.30 views

CVE-2018-15656

An issue was discovered in the registration API endpoint in 42Gears SureMDM before 2018-11-27. An attacker can submit a GET request to /api/register/:email, where :email is a base64 encoded e-mail address, to receive confirmation as to whether a user account exists in the system with the specifie...

7.4AI score0.01553EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/05 3:0 a.m.35 views

CVE-2018-15658

An issue was discovered in 42Gears SureMDM before 2018-11-27. By visiting the page found at /console/ConsolePage/Master.html, an attacker is able to see the markup that would be presented to an authenticated user. This is caused by the session validation occurring after the initial markup is...

7.4AI score0.01777EPSS
Exploits1References1
CVE
CVE
added 2019/02/05 3:0 a.m.54 views

CVE-2018-15656

CVE-2018-15656 affects 42Gears SureMDM prior to 2018-11-27, where an attacker can issue a GET request to /api/register/:email with a base64-encoded email and an ApiKey header to determine whether a user account exists. The underlying issue is information disclosure through the registration endpoi...

7.5CVSS7.4AI score0.01553EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder