Lucene search
K

869 matches found

RedHat Linux
RedHat Linux
added 2023/03/29 11:44 a.m.8 views

dev-java/snakeyaml: DoS via stack overflow

Those using Snakeyaml to parse untrusted YAML files may be vulnerable to Denial of Service attacks DOS. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stack overflow. This effect may support a denial of service attack...

6.5CVSS6.8AI score0.01476EPSS
Exploits1References6
CNNVD
CNNVD
added 2023/02/23 12:0 a.m.5 views

Cisco FXOS Software和UCS Manager 安全特征问题漏洞

Cisco FXOS Software and Cisco UCS Manager are both products of Cisco, Inc.Cisco FXOS Software is a suite of firewall software that runs in Cisco security appliances.Cisco UCS Manager is an excellent computer plug-in for managing sketchup coordinate systems. . A security vulnerability exists in...

6.5CVSS6.5AI score0.0011EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/02/23 12:0 a.m.2 views

CVE-2023-20016

A vulnerability in the backup configuration feature of Cisco UCS Manager Software and in the configuration export feature of Cisco FXOS Software could allow an unauthenticated attacker with access to a backup file to decrypt sensitive information stored in the full state and configuration backup...

6.5CVSS5.9AI score0.0011EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:8 a.m.7 views

SUSE CVE-2008-2402

The Admin Server in Sun Java Active Server Pages ASP Server before 4.0.3 stores sensitive information under the web root with insufficient access control, which allows remote attackers to read password hashes and configuration data via direct requests for unspecified documents...

5CVSS6.9AI score0.11367EPSS
Exploits1References3
CNVD
CNVD
added 2023/02/08 12:0 a.m.3 views

WAVLINK WL-WN533A8 Access Control Issue Vulnerability

WAVLINK WL-WN533A8 is a router from China's RuiYin Technology WAVLINK. The WAVLINK WL-WN533A8 suffers from an Access Control Issue vulnerability that originates from improper access control in the component /cgi-bin/ExportLogs.sh, which can be exploited by an attacker to download configuration da...

7.5CVSS7.3AI score0.03096EPSS
Exploits1References1
NVD
NVD
added 2023/02/06 10:15 p.m.15 views

CVE-2022-48166

An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.5CVSS7.6AI score0.02823EPSS
Exploits1References2
Prion
Prion
added 2023/02/06 10:15 p.m.14 views

Design/Logic Flaw

An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

5CVSS7.6AI score0.02823EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2023/02/06 2:15 p.m.11 views

CVE-2022-48164

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN533A8 M33A8.V5030.190716 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.5CVSS7.6AI score0.03096EPSS
Exploits1References2
OSV
OSV
added 2023/02/06 2:15 p.m.6 views

CVE-2022-48164

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN533A8 M33A8.V5030.190716 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.5CVSS5.8AI score0.03096EPSS
Exploits1References2
Prion
Prion
added 2023/02/06 2:15 p.m.16 views

Design/Logic Flaw

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN533A8 M33A8.V5030.190716 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

5CVSS7.6AI score0.03096EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/02/06 12:0 a.m.20 views

CVE-2022-48166

An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.8AI score0.02823EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/02/06 12:0 a.m.3 views

WAVLINK WL-WN533A8 安全漏洞

WAVLINK WL-WN533A8 is a router from China's RuiYin Technology WAVLINK. The WAVLINK WL-WN533A8 suffers from an Access Control Issue vulnerability that originates from improper access control in the component /cgi-bin/ExportLogs.sh, which can be exploited by an attacker to download configuration da...

7.5CVSS6.8AI score0.03096EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/02/06 12:0 a.m.8 views

CVE-2022-48166

An access control issue in Wavlink WL-WN530HG4 M30HG4.V5030.201217 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.2AI score0.02823EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/02/06 12:0 a.m.15 views

CVE-2022-48164

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN533A8 M33A8.V5030.190716 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.8AI score0.03096EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/02/06 12:0 a.m.7 views

CVE-2022-48164

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN533A8 M33A8.V5030.190716 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.2AI score0.03096EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/02/06 12:0 a.m.5 views

WAVLINK WL-WN530HG4 安全漏洞

WAVLINK WL-WN530HG4 is a wireless network signal extender from China RuiYin Technology WAVLINK. A security vulnerability exists in the WAVLINK WL-WN530HG4 M30HG4.V5030.201217 version, which stems from an access control issue that allows an unauthenticated attacker to download configuration data a...

7.5CVSS7.3AI score0.02823EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2023/02/03 9:15 p.m.3 views

CVE-2022-48165

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN530H4 M30H4.V5030.210121 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.5CVSS7.1AI score0.03284EPSS
Exploits1References4
NVD
NVD
added 2023/02/03 9:15 p.m.13 views

CVE-2022-48165

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN530H4 M30H4.V5030.210121 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.5CVSS7.6AI score0.03284EPSS
Exploits1References2
Prion
Prion
added 2023/02/03 9:15 p.m.16 views

Design/Logic Flaw

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN530H4 M30H4.V5030.210121 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

5CVSS7.5AI score0.03284EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/02/03 12:0 a.m.18 views

CVE-2022-48165

An access control issue in the component /cgi-bin/ExportLogs.sh of Wavlink WL-WN530H4 M30H4.V5030.210121 allows unauthenticated attackers to download configuration data and log files and obtain admin credentials...

7.7AI score0.03284EPSS
Exploits1References2
Rows per page
Query Builder