Lucene search
K

52 matches found

CNVD
CNVD
added 2021/04/27 12:0 a.m.6 views

Automox Alive Automox Agent Access Control Error Vulnerability

Automox Alive Automox Agent is an application from the Automox Alive community. An agent software. An Access Control Error vulnerability exists in versions prior to Automox Agent 31 that stems from the use of inadequately protected S3 bucket endpoints to store sensitive files, which can be...

5.3CVSS6.7AI score0.00726EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/27 12:0 a.m.9 views

Automox Alive Automox Agent Log Information Disclosure Vulnerability

Automox Alive Automox Agent is an application from the Automox Alive community. An agent software. A log information disclosure vulnerability exists in versions prior to Automox Agent 31, which stems from logging potentially sensitive information in local log files. No details of the vulnerabilit...

3.3CVSS6AI score0.00245EPSS
Exploits0References1
OSV
OSV
added 2021/04/23 4:15 p.m.8 views

CVE-2021-26909

Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing sensitive files, which could be brute-forced by an attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent...

5.3CVSS5.8AI score0.00726EPSS
Exploits0References2
OSV
OSV
added 2021/04/23 4:15 p.m.4 views

CVE-2021-26908

Automox Agent prior to version 31 logs potentially sensitive information in local log files, which could be used by a locally-authenticated attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent...

3.3CVSS5.8AI score0.00726EPSS
Exploits0References2
NVD
NVD
added 2021/04/23 4:15 p.m.15 views

CVE-2021-26909

Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing sensitive files, which could be brute-forced by an attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent...

5.3CVSS0.00726EPSS
Exploits0References2
NVD
NVD
added 2021/04/23 4:15 p.m.13 views

CVE-2021-26908

Automox Agent prior to version 31 logs potentially sensitive information in local log files, which could be used by a locally-authenticated attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent...

3.3CVSS0.00245EPSS
Exploits0References2
Prion
Prion
added 2021/04/23 4:15 p.m.11 views

Information disclosure

Automox Agent prior to version 31 logs potentially sensitive information in local log files, which could be used by a locally-authenticated attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent...

2.1CVSS3.9AI score0.00726EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/04/23 4:15 p.m.12 views

Code injection

Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing sensitive files, which could be brute-forced by an attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent...

5CVSS5.3AI score0.00726EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/04/23 3:35 p.m.48 views

CVE-2021-26908

CVE-2021-26908 and CVE-2021-26909 apply to the Automox Agent prior to version 31. The issues are: (1) information disclosure via logging potentially sensitive data in local log files, and (2) storing sensitive files via an insufficiently protected S3 bucket endpoint that could be brute-forced. Ro...

3.3CVSS3.6AI score0.00245EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/04/23 3:35 p.m.24 views

CVE-2021-26908 Automox Agent Sensitive Log Information Disclosure

Automox Agent prior to version 31 logs potentially sensitive information in local log files, which could be used by a locally-authenticated attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent...

3.3CVSS4AI score0.00245EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/04/23 3:35 p.m.21 views

CVE-2021-26909 Automox Agent Guessable S3 Bucket Endpoint

Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing sensitive files, which could be brute-forced by an attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox Agent...

3.7CVSS5.6AI score0.00726EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/04/23 12:0 a.m.7 views

Automox Alive Automox Agent 安全特征问题漏洞

Automox Alive Automox Agent is an application from the Automox Alive community. An agent software. An Access Control Error vulnerability exists in versions prior to Automox Agent 31 that stems from the use of inadequately protected S3 bucket endpoints to store sensitive files, which can be...

5.3CVSS5.7AI score0.00726EPSS
Exploits0References3
Rows per page
Query Builder