Lucene search
K

89 matches found

OSV
OSV
added 2022/08/03 4:15 p.m.2 views

CVE-2022-35866

This vulnerability allows remote attackers to bypass authentication on affected installations of Vinchin Backup and Recovery 6.5.0.17561. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the MySQL server. The server uses a hard-cod...

9.8CVSS5.8AI score0.03177EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/10/05 12:0 a.m.4 views

Emerson WirelessHART Gateway 访问控制错误漏洞

The Emerson WirelessHART Gateway is a wireless gateway from Emerson USA. An access control error vulnerability exists in Emerson WirelessHART Gateway that stems from a lack of privilege validation on system backup recovery. An attacker could use this vulnerability to take over an account and chan...

5.5AI score
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.6 views

The vulnerability of the implementation of backup and recovery operations for software that manages virtual infrastructure like VMware vCenter Server allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the implementation of backup and recovery operations for software that manages virtual infrastructure like VMware vCenter Server Appliance is related to deficiencies in verifying the authenticity of certificates. Exploiting this vulnerability can allow an attacker, operating...

5.9CVSS6.2AI score0.00654EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/12/13 12:0 a.m.6 views

The vulnerability of the implementation of backup and recovery operations for software that manages virtual infrastructure like VMware vCenter Server allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the implementation of backup and data restoration operations for software that manages virtual infrastructure like VMware vCenter Server Appliance is related to deficiencies in verifying the authenticity of certificates. Exploiting this vulnerability can allow an attacker,...

5.9CVSS6.2AI score0.00654EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2019/04/08 12:0 a.m.3 views

IBM Spectrum Protect Clickjacking Vulnerability

IBM Spectrum Protect formerly known as Tivoli Storage Manager is a suite of data protection platforms from IBM in the United States. The platform provides organizations with a single point of control and management, and supports backup and recovery for virtual, physical and cloud environments of...

6.1CVSS6.5AI score0.01183EPSS
Exploits0References1
Drupal
Drupal
added 2018/02/14 12:0 a.m.7 views

Entity Backup - Critical - Module Unsupported - SA-CONTRIB-2018-012

The main purpose of the Entity Backup module is to keep a backup of deleted Drupal core entities and perform recovery of them. The security team is marking this module unsupported. There is a known security issue with the module that has not been fixed by the maintainer. If you would like to...

7.2AI score
Exploits0References2
CNVD
CNVD
added 2017/04/21 12:0 a.m.3 views

Oracle SuperCluster Specific Software Local Vulnerability

Supercluster is a hardware and software integrated product that incorporates networking and relies on virtualization technology to provide different application platforms. A local vulnerability exists in Oracle SuperCluster Specific Software. An attacker could exploit the vulnerability to...

8.4CVSS6.5AI score0.00454EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/11/02 12:0 a.m.1651 views

SSH Brute Force Logins With Default Credentials Reporting

It was possible to login into the remote SSH server using default credentials. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.6AI score0.90049EPSS
Exploits68References2
CNVD
CNVD
added 2015/01/30 12:0 a.m.3 views

Symantec Encryption Management Server Local Command Injection Vulnerability

Symantec Encryption Management Server is a single console for managing multiple encryption applications in the PGP platform. A command injection vulnerability exists in Symantec Encryption Management Server's handling of database backup recovery, which could be exploited by a remote attacker to...

9CVSS7.8AI score0.08116EPSS
Exploits1References1
Rows per page
Query Builder