Lucene search
K

24 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:20 p.m.10 views

CVE-2026-32650

Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable encryption, causing database credentials to be sent in plaintext and enabling unauthorized database access...

7.5CVSS5.4AI score0.0021EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/17 7:52 p.m.19 views

CVE-2026-32650 Anviz CrossChex Standard Algorithm Downgrade

Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable encryption, causing database credentials to be sent in plaintext and enabling unauthorized database access...

7.5CVSS0.0021EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/17 7:52 p.m.2 views

CVE-2026-32650

Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable encryption, causing database credentials to be sent in plaintext and enabling unauthorized database access...

7.5CVSS5.7AI score0.0021EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/17 7:52 p.m.8 views

CVE-2026-32650 Anviz CrossChex Standard Algorithm Downgrade

Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable encryption, causing database credentials to be sent in plaintext and enabling unauthorized database access...

7.5CVSS5.7AI score0.0021EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/17 7:49 p.m.22 views

CVE-2026-40434 Anviz CrossChex Standard Improper Verification of Source of a Communication Channel

Anviz CrossChex Standard lacks source verification in the client/server channel, enabling TCP packet injection by an attacker on the same network to alter or disrupt application traffic...

8.1CVSS0.00231EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/17 7:49 p.m.4 views

CVE-2026-40434

Anviz CrossChex Standard lacks source verification in the client/server channel, enabling TCP packet injection by an attacker on the same network to alter or disrupt application traffic...

8.1CVSS5.8AI score0.00231EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/17 7:49 p.m.8 views

CVE-2026-40434 Anviz CrossChex Standard Improper Verification of Source of a Communication Channel

Anviz CrossChex Standard lacks source verification in the client/server channel, enabling TCP packet injection by an attacker on the same network to alter or disrupt application traffic...

8.1CVSS5.8AI score0.00231EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.10 views

Anviz CrossChex Standard 安全漏洞

Anviz CrossChex Standard is a centralized control software developed by Anviz Corporation in the United States, used for access control and attendance data management. Anviz CrossChex Standard has a security vulnerability. This vulnerability arises from the ability of attackers to manipulate the...

7.5CVSS5.8AI score0.0021EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.11 views

Anviz CrossChex Standard 安全漏洞

Anviz CrossChex Standard is a centralized control software developed by Anviz Corporation in the United States, used for access control and attendance data management. Anviz CrossChex Standard has a security vulnerability. This vulnerability stems from the lack of source verification in the...

8.1CVSS5.8AI score0.00231EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:29 a.m.6 views

CVE-2019-12518

Anviz CrossChex access control management software 4.3.8.0 and 4.3.12 is vulnerable to a buffer overflow vulnerability...

10CVSS7.3AI score0.50738EPSS
Exploits5References1
Cvelist
Cvelist
added 2025/12/24 7:27 p.m.28 views

CVE-2018-25135 Anviz AIM CrossChex Standard 4.3.6.0 CSV Injection via User Import

Anviz AIM CrossChex Standard 4.3.6.0 contains a CSV injection vulnerability that allows attackers to execute commands by inserting malicious formulas in user import fields. Attackers can craft payloads in fields like 'Name', 'Gender', or 'Position' to trigger Excel macro execution when importing...

9.8CVSS0.00591EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/24 7:27 p.m.3 views

CVE-2018-25135 Anviz AIM CrossChex Standard 4.3.6.0 CSV Injection via User Import

Anviz AIM CrossChex Standard 4.3.6.0 contains a CSV injection vulnerability that allows attackers to execute commands by inserting malicious formulas in user import fields. Attackers can craft payloads in fields like 'Name', 'Gender', or 'Position' to trigger Excel macro execution when importing...

9.8CVSS7.3AI score0.00591EPSS
Exploits1References3
0day.today
0day.today
added 2020/02/17 12:0 a.m.127 views

Anviz CrossChex - Buffer Overflow Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Anviz CrossChex Buffer Overflow', 'Description' = %q Waits for broadcasts from Ainz CrossChex looking for new devices, and returns a custom...

10CVSS0.4AI score0.50738EPSS
Exploits5
Exploit DB
Exploit DB
added 2020/02/17 12:0 a.m.137 views

Anviz CrossChex - Buffer Overflow (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Anviz CrossChex Buffer Overflow', 'Description' = %q Waits for broadcasts from Ainz CrossChex looking for new devices, and returns a custom...

10CVSS7.4AI score0.50738EPSS
Exploits5
Packet Storm
Packet Storm
added 2020/02/13 12:0 a.m.196 views

Anviz CrossChex Buffer Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Anviz CrossChex Buffer Overflow', 'Description' = %q Waits for broadcasts from Ainz CrossChex looking for new devices, and returns a custom...

10CVSS1AI score0.50738EPSS
Exploits5
CNVD
CNVD
added 2019/12/04 12:0 a.m.3 views

Anviz CrossChex access control management software buffer overflow vulnerability

Anviz CrossChex access control management software is an intelligent management system for Anviz access control and time & attendance devices from Anviz China. A buffer overflow vulnerability exists in the Anviz CrossChex access control management software. The vulnerability arises when a network...

10CVSS7.3AI score0.50738EPSS
Exploits5References1
OSV
OSV
added 2019/12/02 5:15 p.m.5 views

CVE-2019-12518

Anviz CrossChex access control management software 4.3.8.0 and 4.3.12 is vulnerable to a buffer overflow vulnerability...

9.8CVSS7.6AI score0.50738EPSS
Exploits5References2
NVD
NVD
added 2019/12/02 5:15 p.m.27 views

CVE-2019-12518

Anviz CrossChex access control management software 4.3.8.0 and 4.3.12 is vulnerable to a buffer overflow vulnerability...

10CVSS9.7AI score0.50738EPSS
Exploits5References2
Prion
Prion
added 2019/12/02 5:15 p.m.16 views

Buffer overflow

Anviz CrossChex access control management software 4.3.8.0 and 4.3.12 is vulnerable to a buffer overflow vulnerability...

10CVSS9.6AI score0.50738EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2019/12/02 4:49 p.m.37 views

CVE-2019-12518

Anviz CrossChex access control management software 4.3.8.0 and 4.3.12 is vulnerable to a buffer overflow vulnerability...

9.7AI score0.50738EPSS
Exploits5References2
Rows per page
Query Builder