Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 2:3 a.m.3 views

CVE-2023-33282

Marval MSM through 14.19.0.12476 and 15.0 has a System account with default credentials. A remote attacker is able to login and create a valid session. This makes it possible to make backend calls to endpoints in the application...

9.8CVSS6.9AI score0.0012EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2024/09/30 12:0 a.m.5 views

PT-2024-32381 · Unknown · Computer Vision Annotation Tool

Name of the Vulnerable Software and Affected Versions: Computer Vision Annotation Tool CVAT versions prior to 2.19.0 Description: The Computer Vision Annotation Tool CVAT is an interactive video and image annotation tool for computer vision. A malicious CVAT user with permissions to create or edi...

6.2CVSS7.3AI score0.00737EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2023/06/07 8:15 p.m.0 views

CVE-2023-33282

Marval MSM through 14.19.0.12476 and 15.0 has a System account with default credentials. A remote attacker is able to login and create a valid session. This makes it possible to make backend calls to endpoints in the application...

9.8CVSS5.8AI score0.0012EPSS
Exploits1References3
Prion
Prionadded 2023/06/07 8:15 p.m.14 views

Default credentials

Marval MSM through 14.19.0.12476 and 15.0 has a System account with default credentials. A remote attacker is able to login and create a valid session. This makes it possible to make backend calls to endpoints in the application...

7.5CVSS9.2AI score0.0012EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2023/06/07 12:0 a.m.11 views

CVE-2023-33282

Marval MSM through 14.19.0.12476 and 15.0 has a System account with default credentials. A remote attacker is able to login and create a valid session. This makes it possible to make backend calls to endpoints in the application...

9.5AI score0.0012EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2023/06/07 12:0 a.m.1 views

PT-2023-24267 · Marval · Marval Msm

Name of the Vulnerable Software and Affected Versions: Marval MSM versions 14.19.0.12476 and earlier, version 15.0 Description: The issue concerns a system account with default credentials, allowing a remote attacker to log in and create a valid session. This enables the attacker to make backend...

9.8CVSS7.2AI score0.0012EPSS
Exploits1References5
CVE
CVEadded 2023/06/07 12:0 a.m.35 views

CVE-2023-33282

CVE-2023-33282 affects Marval MSM up to 14.19.0.12476 and version 15.0, where a System account uses default credentials. This enables a remote attacker to log in and create a valid session, allowing backend calls to application endpoints. Remediation guidance from PT-Security recommends changing ...

9.8CVSS9.2AI score0.0012EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2020/02/07 3:42 p.m.18 views

CVE-2020-1768 External Interface does not invalidate session

The external frontend system uses numerous background calls to the backend. Each background request is treated as user activity so the SessionMaxIdleTime will not be reached. This issue affects: OTRS 7.0.x version 7.0.14 and prior versions...

5.4CVSS5.4AI score0.00313EPSS
Exploits0References1
Rows per page
Query Builder