Lucene search
K

7 matches found

cvelist
cvelist
added 2026/04/30 1:18 p.m.41 views

CVE-2026-7163 Assisted-service: assisted-service: authenticated users can gain administrative access to openshift clusters via credential disclosure

A vulnerability in the assisted-service REST API, an optional Assisted Installer assisted-service component in the Multicluster Engine MCE, allows an authenticated user with minimal namespace-scoped privileges to obtain administrative credentials for arbitrary clusters provisioned through the hub...

6.1CVSS0.00165EPSS
Exploits0References8
vulnrichment
vulnrichment
added 2026/02/25 3:21 p.m.4 views

CVE-2025-1242 Administrative Credentials Can Be Extracted Through Gardyn API Responses

The administrative credentials can be extracted through application API responses, mobile application reverse engineering, and device firmware reverse engineering. The exposure may result in an attacker gaining full administrative access to the Gardyn IoT Hub exposing connected devices to malicio...

9.3CVSS5.4AI score0.00438EPSS
Exploits2References3
cve
cve
added 2025/11/26 10:15 p.m.16 views

CVE-2020-36871

Summary: CVE-2020-36871 affects ESCAM QD-900 WIFI HD cameras. An unauthenticated GET/download on /web/cgi-bin/hi3510/backup.cgi allows remote retrieval of a compressed configuration backup, which can contain administrative credentials and other sensitive device settings. This information disclosu...

8.7CVSS6.4AI score0.00587EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/02/05 5:17 p.m.13 views

CVE-2019-20638

NETGEAR MR1100 devices before 12.06.08.00 are affected by disclosure of administrative credentials...

7CVSS6.8AI score0.0088EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 1:37 p.m.17 views

CVE-2020-26900

Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects CBR40 before 2.5.0.10, RBK752 before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK852 before 3.2.15.25, RBR850 before 3.2.15.25, and RBS850 before 3.2.15.25...

9.6CVSS6.8AI score0.0052EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/02/05 1:33 p.m.12 views

CVE-2020-26897

Certain NETGEAR devices are affected by disclosure of administrative credentials. This affects CBR40 before 2.5.0.10, RBK752 before 3.2.15.25, RBR750 before 3.2.15.25, RBS750 before 3.2.15.25, RBK852 before 3.2.10.11, RBR850 before 3.2.10.11, and RBS850 before 3.2.10.11...

9.6CVSS6.8AI score0.00613EPSS
Exploits0References3
exploitpack
exploitpack
added 2003/04/21 12:0 a.m.13 views

MPCSoftWeb 1.0 - Database Disclosure

MPCSoftWeb 1.0 - Database Disclosure source: https://www.securityfocus.com/bid/7390/info MPCSoftWeb does not sufficiently secure the database file. It is possible for remote attackers to request the database file and gain access to sensitive information such as administrative credentials for the...

7.4AI score
Exploits0
Rows per page
Query Builder