Lucene search
K

869 matches found

CNVD
CNVD
added 2020/03/18 12:0 a.m.1 views

Micro Focus Service Manager Information Disclosure Vulnerability (CNVD-2020-18401)

Micro Focus Service Manager is a suite of service desk software from Micro Focus UK. The software supports the deployment of a comprehensive IT service management ITSM system and standardizes management processes. A security vulnerability exists in Micro Focus Service manager. An attacker could...

5.3CVSS6.7AI score0.00862EPSS
Exploits0References1
NVD
NVD
added 2020/03/16 2:15 p.m.18 views

CVE-2020-9518

Login filter can access configuration files vulnerability in Micro Focus Service Manager Web Tier, affecting versions 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow unauthorized access to configuration data...

5.3CVSS5.2AI score0.00862EPSS
Exploits0References1
OSV
OSV
added 2020/03/16 2:15 p.m.2 views

CVE-2020-9518

Login filter can access configuration files vulnerability in Micro Focus Service Manager Web Tier, affecting versions 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow unauthorized access to configuration data...

5.3CVSS6AI score0.00862EPSS
Exploits0References1
Prion
Prion
added 2020/03/16 2:15 p.m.13 views

Design/Logic Flaw

Login filter can access configuration files vulnerability in Micro Focus Service Manager Web Tier, affecting versions 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow unauthorized access to configuration data...

5CVSS5.2AI score0.00862EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/03/16 1:15 p.m.26 views

CVE-2020-9519

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

5.3CVSS5.2AI score0.00862EPSS
Exploits0References1
Prion
Prion
added 2020/03/16 1:15 p.m.22 views

Design/Logic Flaw

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

5CVSS5.2AI score0.00862EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/16 1:0 p.m.41 views

CVE-2020-9519

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

5.3AI score0.00862EPSS
Exploits0References1
ICS
ICS
added 2020/02/25 12:0 a.m.120 views

Moxa MB3xxx Series Protocol Gateways

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Moxa Equipment: MB3170 series, MB3180 series, MB3270 series, MB3280 series, MB3480 series, and MB3660 series Vulnerabilities: Stack-based Buffer Overflow, Integer Overflow to Buffer Overflow,...

9.8CVSS9.4AI score0.03941EPSS
Exploits0References5
CNVD
CNVD
added 2020/02/17 12:0 a.m.1 views

Lenovo XClarity Administrator Access Control Error Vulnerability

Lenovo XClarity Administrator LXCA is a centralized resource management solution from Lenovo, China. The product is capable of providing agentless hardware management for servers, storage, network switches, and more. An access control error vulnerability exists in Lenovo XClarity Administrator LX...

7.5CVSS7AI score0.01033EPSS
Exploits0References1
NVD
NVD
added 2020/02/07 8:15 p.m.19 views

CVE-2020-6769

Missing Authentication for Critical Function in the Bosch Video Streaming Gateway VSG allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streaming Gateway. A successful attack can impact the confidentiality and availability of live and recorded...

10CVSS9.6AI score0.02216EPSS
Exploits0References1
Prion
Prion
added 2020/02/07 8:15 p.m.15 views

Authentication flaw

Missing Authentication for Critical Function in the Bosch Video Streaming Gateway VSG allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streaming Gateway. A successful attack can impact the confidentiality and availability of live and recorded...

6.4CVSS9.2AI score0.02216EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2020/02/07 7:57 p.m.23 views

CVE-2020-6769 Missing Authentication for Critical Function in Bosch Video Streaming Gateway

Missing Authentication for Critical Function in the Bosch Video Streaming Gateway VSG allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streaming Gateway. A successful attack can impact the confidentiality and availability of live and recorded...

10CVSS9.6AI score0.02216EPSS
Exploits0References1
OSV
OSV
added 2020/01/27 6:15 p.m.4 views

CVE-2019-19822

A certain router administration interface that includes Realtek APMIB 0.11f for Boa 0.94.14rc21 allows remote attackers to retrieve the configuration, including sensitive data usernames and passwords. This affects TOTOLINK A3002RU through 2.0.0, A702R through 2.1.3, N301RT through 2.1.6, N302R...

7.5CVSS7.2AI score0.08669EPSS
Exploits3References6
OSV
OSV
added 2020/01/17 7:15 p.m.4 views

CVE-2019-17635

Eclipse Memory Analyzer version 1.9.1 and earlier is subject to a deserialization vulnerability if an index file of a parsed heap dump is replaced by a malicious version and the heap dump is reopened in Memory Analyzer. The user must chose to reopen an already parsed heap dump with an untrusted...

7.8CVSS7.5AI score0.01339EPSS
Exploits1References1
Prion
Prion
added 2020/01/17 7:15 p.m.10 views

Deserialization of untrusted data

Eclipse Memory Analyzer version 1.9.1 and earlier is subject to a deserialization vulnerability if an index file of a parsed heap dump is replaced by a malicious version and the heap dump is reopened in Memory Analyzer. The user must chose to reopen an already parsed heap dump with an untrusted...

6.8CVSS7.8AI score0.01339EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/01/17 6:35 p.m.17 views

CVE-2019-17635

Eclipse Memory Analyzer version 1.9.1 and earlier is subject to a deserialization vulnerability if an index file of a parsed heap dump is replaced by a malicious version and the heap dump is reopened in Memory Analyzer. The user must chose to reopen an already parsed heap dump with an untrusted...

7.8AI score0.01339EPSS
Exploits1References1
OSV
OSV
added 2020/01/09 7:15 p.m.4 views

CVE-2019-6331

An issue was found in Samsung Mobile Print Android versions prior to 4.08.007. A potential security vulnerability caused by incomplete obfuscation of application configuration information...

3.3CVSS5.8AI score0.00386EPSS
Exploits0References1
CNVD
CNVD
added 2019/12/24 12:0 a.m.2 views

Unspecified Vulnerability in Forcepoint NGFW Security Management Center

Forcepoint NGFW Security Management Center SMC is a Forcepoint product that provides unified, centralized management capabilities for Forcepoint's next-generation firewalls. A security vulnerability exists in Forcepoint NGFW SMC versions prior to 6.5.12 and prior to 6.7.1. An attacker could explo...

5.9CVSS6.7AI score0.00703EPSS
Exploits0References1
NVD
NVD
added 2019/12/17 10:15 p.m.16 views

CVE-2019-3992

ELOG 3.1.4-57bea22 and below is affected by an information disclosure vulnerability. A remote unauthenticated attacker can access the server's configuration file by sending an HTTP GET request. Amongst the configuration data, the attacker may gain access to valid admin usernames and, in older...

7.5CVSS7.5AI score0.01301EPSS
Exploits1References3
CVE
CVE
added 2019/12/11 10:38 p.m.83 views

CVE-2019-3989

The Blink XT2 Sync Module firmware (pre-2.13.11) is affected by CVE-2019-3989, a remote OS command injection due to improper sanitization of internal network data. The vulnerability arises when the device constructs and executes OS commands from external input (notably via get_network()/get_netwo...

9.8CVSS9.7AI score0.03731EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder