Lucene search
K

21 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:54 a.m.8 views

CVE-2020-10248

BWA DiREX-Pro 1.2181 devices allow remote attackers to discover passwords via a direct request to valusers.php3...

7.5CVSS7.2AI score0.01359EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.7 views

CVE-2020-10250

BWA DiREX-Pro 1.2181 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the PKG parameter to uninstall.php3...

10CVSS8.1AI score0.02629EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-2704

Malware in sbrugna...

5.3CVSS5.6AI score0.00952EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-2703

Malware in sbrugna...

7.5CVSS7.5AI score0.01359EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-2705

Malware in sbrugna...

10CVSS9.2AI score0.02629EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:5 p.m.6 views

CVE-2020-10249

BWA DiREX-Pro 1.2181 devices allow full path disclosure via an invalid name array parameter to valsoft.php3...

5.3CVSS7AI score0.00952EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/10 12:0 a.m.4 views

BWA DiREX-Pro Password Disclosure Vulnerability

The BWA DiREX-Pro is a digital video recorder. A password disclosure vulnerability exists in BWA DiREX-Pro 1.2181. A remote attacker can exploit this vulnerability by directly requesting valusers.php3 to obtain a password...

7.5CVSS6.9AI score0.01359EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/10 12:0 a.m.2 views

BWA DiREX-Pro Remote Code Execution Vulnerability

BWA Technology DiREX-Pro is a network video recorder from BWA Technology, Germany. A security vulnerability exists in BWA Technology DiREX-Pro version 1.2181. The vulnerability can be exploited by a remote attacker to execute arbitrary operating system commands by sending the 'PKG' parameter with...

10CVSS7.6AI score0.02629EPSS
Exploits1References1
OSV
OSV
added 2020/03/09 7:15 p.m.3 views

CVE-2020-10250

BWA DiREX-Pro 1.2181 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the PKG parameter to uninstall.php3...

9.8CVSS7.6AI score0.02629EPSS
Exploits1References1
NVD
NVD
added 2020/03/09 7:15 p.m.16 views

CVE-2020-10250

BWA DiREX-Pro 1.2181 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the PKG parameter to uninstall.php3...

10CVSS9.9AI score0.02629EPSS
Exploits1References1
OSV
OSV
added 2020/03/09 7:15 p.m.4 views

CVE-2020-10248

BWA DiREX-Pro 1.2181 devices allow remote attackers to discover passwords via a direct request to valusers.php3...

7.5CVSS7.2AI score0.01359EPSS
Exploits1References1
NVD
NVD
added 2020/03/09 7:15 p.m.23 views

CVE-2020-10249

BWA DiREX-Pro 1.2181 devices allow full path disclosure via an invalid name array parameter to valsoft.php3...

5.3CVSS5.3AI score0.00952EPSS
Exploits1References1
NVD
NVD
added 2020/03/09 7:15 p.m.20 views

CVE-2020-10248

BWA DiREX-Pro 1.2181 devices allow remote attackers to discover passwords via a direct request to valusers.php3...

7.5CVSS7.6AI score0.01359EPSS
Exploits1References1
Prion
Prion
added 2020/03/09 7:15 p.m.14 views

Design/Logic Flaw

BWA DiREX-Pro 1.2181 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the PKG parameter to uninstall.php3...

10CVSS9.8AI score0.02629EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/03/09 7:15 p.m.14 views

Design/Logic Flaw

BWA DiREX-Pro 1.2181 devices allow remote attackers to discover passwords via a direct request to valusers.php3...

5CVSS7.6AI score0.01359EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2020/03/09 7:15 p.m.13 views

Path traversal

BWA DiREX-Pro 1.2181 devices allow full path disclosure via an invalid name array parameter to valsoft.php3...

5CVSS5.4AI score0.00952EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/03/09 6:56 p.m.69 views

CVE-2020-10248

CVE-2020-10248 affects BWA DiREX-Pro 1.2181 devices. Multiple connected sources (Red Hat, CNVD, CVE lists) describe a vulnerability where a remote attacker can disclose passwords by issuing a direct request to val_users.php3. The fixed/software patch status or remediation steps are not detailed i...

7.5CVSS7.5AI score0.01359EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/03/09 6:56 p.m.63 views

CVE-2020-10249

CVE-2020-10249 affects BWA DiREX-Pro 1.2181 devices. A vulnerability in the val_soft.php3 component allows full path disclosure via an invalid name array parameter, exposing the filesystem path and compromising confidentiality. The issue is described across multiple sources as a path traversal-st...

5.3CVSS5.3AI score0.00952EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/03/09 6:56 p.m.24 views

CVE-2020-10249

BWA DiREX-Pro 1.2181 devices allow full path disclosure via an invalid name array parameter to valsoft.php3...

5.4AI score0.00952EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/03/09 6:55 p.m.23 views

CVE-2020-10250

BWA DiREX-Pro 1.2181 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the PKG parameter to uninstall.php3...

9.9AI score0.02629EPSS
Exploits1References1
Rows per page
Query Builder