Lucene search
K

52 matches found

Cvelist
Cvelist
added 2021/05/07 4:31 p.m.28 views

CVE-2021-27570

An issue was discovered in Emote Remote Mouse through 3.015. Attackers can close any running process by sending the process name in a specially crafted packet. This information is sent in cleartext and is not protected by any authentication logic...

5.7AI score0.01387EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/05/07 4:31 p.m.20 views

CVE-2021-27569

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can maximize or minimize the window of a running process by sending the process name in a crafted packet. This information is sent in cleartext and is not protected by any authentication logic...

5.7AI score0.00637EPSS
Exploits1References2
CVE
CVE
added 2021/05/07 4:31 p.m.39 views

CVE-2021-27569

CVE-2021-27569 affects Emote Remote Mouse (up to version 4.0.0.0). Red Hat and CNVD entries confirm a vulnerability where an attacker can maximize or minimize a running process window by sending the process name in a crafted packet. The issue is transmitted in cleartext and lacks authentication p...

5.3CVSS6.3AI score0.00637EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2021/01/26 6:15 p.m.23 views

CVE-2020-23448

newbee-mall all versions are affected by incorrect access control to remotely gain privileges through AdminLoginInterceptor.java. The authentication logic of the system's background /admin is in code AdminLoginInterceptor, which can be bypassed...

9.8CVSS9.7AI score0.01577EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/01/26 5:15 p.m.25 views

CVE-2020-23448

newbee-mall all versions are affected by incorrect access control to remotely gain privileges through AdminLoginInterceptor.java. The authentication logic of the system's background /admin is in code AdminLoginInterceptor, which can be bypassed...

9.8AI score0.01577EPSS
Exploits1References1
0day.today
0day.today
added 2020/04/06 12:0 a.m.41 views

Microsoft NET USE win10 - Insufficient Authentication Logic Exploit

Title: Microsoft NET USE win10 - Insufficient Authentication Logic Date: 2020-04-04 Author: hyp3rlinx Vendor: www.microsoft.com CVE: N/A + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source:...

0.2AI score
Exploits0
Vulnrichment
Vulnrichment
added 2020/01/26 4:45 a.m.10 views

CVE-2019-16003 Cisco UCS Director Information Disclosure Vulnerability

A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote attacker to download system log files from an affected device. The vulnerability is due to an issue in the authentication logic of the web-based management interface. An attacker cou...

4.3CVSS7.1AI score0.01221EPSS
Exploits0References1
CVE
CVE
added 2020/01/26 4:45 a.m.134 views

CVE-2019-16003

CVE-2019-16003 affects Cisco UCS Director Web-based management interface. A flaw in the authentication logic could allow an unauthenticated, remote attacker to download system log files generated by an administrator by sending a crafted request to the web interface. The vulnerability stems from h...

5.3CVSS5AI score0.01221EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/26 4:45 a.m.30 views

CVE-2019-16003 Cisco UCS Director Information Disclosure Vulnerability

A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote attacker to download system log files from an affected device. The vulnerability is due to an issue in the authentication logic of the web-based management interface. An attacker cou...

4.3CVSS5.5AI score0.01221EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2019/10/16 6:36 p.m.9 views

CVE-2019-15282 Cisco Identity Services Engine Information Disclosure Vulnerability

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE Software could allow an unauthenticated, remote attacker read tcpdump files generated on an affected device. The vulnerability is due an issue in the authentication logic of the web-based management...

4.3CVSS7AI score0.01221EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/10/16 6:36 p.m.22 views

CVE-2019-15282 Cisco Identity Services Engine Information Disclosure Vulnerability

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE Software could allow an unauthenticated, remote attacker read tcpdump files generated on an affected device. The vulnerability is due an issue in the authentication logic of the web-based management...

4.3CVSS5.4AI score0.01221EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.239 views

Whale Communications e-Gap Security Appliance 2.5 Login Page Source Code Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9431/info The e-GAP appliance has been reported prone to a source code disclosure vulnerability. It has been reported that, when the affected appliance handles unexpected HTTP requests it may divulge the source code of th...

7.1AI score
Exploits0
Rows per page
Query Builder