273 matches found
CVE-2025-32730
Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerability allows a local authenticated attacker to use the authentication information from the last connected surveillance...
CVE-2025-32730
Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerability allows a local authenticated attacker to use the authentication information from the last connected surveillance...
CVE-2025-32730
Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerability allows a local authenticated attacker to use the authentication information from the last connected surveillance...
CVE-2025-32730
The CVE-2025-32730 entry affects i-PRO Configuration Tool used with i-PRO Co., Ltd. surveillance cameras/recorders. The root cause is use of a hard-coded cryptographic key (CWE-321) that enables a local authenticated attacker to leverage authentication data from the last connected cameras/recorde...
CVE-2025-32730
Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerability allows a local authenticated attacker to use the authentication information from the last connected surveillance...
i-PRO Configuration Tool vulnerable to use of hard-coded cryptographic key
Overview i-PRO Configuration Tool provided by i-PRO Co., Ltd. contains a vulnerability below. Use of hard-coded cryptographic key CWE-321 Diego Giubertoni of Nozomi Networks Inc. reported this vulnerability to i-PRO Co., Ltd. and coordinated. After the coordination was completed, i-PRO Co., Ltd...
JVN#84627857: i-PRO Configuration Tool vulnerable to use of hard-coded cryptographic key
i-PRO Configuration Tool provided by i-PRO Co., Ltd. contains a vulnerability below. Use of hard-coded cryptographic key CWE-321 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N Base Score: 6.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Base Score: 5.5 CVE-2025-32730 Impact...
PT-2025-17700 · I Pro Co. · I-Pro Configuration Tool
Name of the Vulnerable Software and Affected Versions: i-PRO Configuration Tool affected versions not specified Description: The issue concerns the use of a hard-coded cryptographic key in the i-PRO Configuration Tool, which affects the network system of i-PRO Co., Ltd. surveillance cameras and...
The vulnerability of the Cloud-init configuration tool, related to insufficient protection of registration data, allows a perpetrator to access confidential information.
The vulnerability of the Cloud-init configuration tool is related to insufficient protection for registration data. Exploiting this vulnerability can allow an attacker to access confidential information...
GE Vernova EnerVista UR 授权问题漏洞
GE Vernova EnerVista UR is a device configuration tool from GE Vernova USA that is compatible with all UR relay applications. An authorization issue vulnerability exists in the GE Vernova EnerVista UR that stems from improper authentication and could lead to authentication bypass...
The vulnerability of the Telnet protocol implementation for the MIR KT-51 controller and the MIR controller configuration tool, related to the transmission of data in an open manner, allows a perpetrator to disclose the protected information.
The vulnerability of the Telnet protocol implementation for the MIR KT-51 controller and the MIR controller configuration software is related to the transmission of data in an open manner. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...
Ethernet Port Configuration Tool Software Advisory
Summary: Potential security vulnerability in some Ethernet Port Configuration Tool EPCT software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-39813 Description: Uncontrolled search path for...
The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility lies in its uncontrolled search path, which allows a malicious actor to exploit their privileges.
The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility lies in the improper use of standard permissions, allowing attackers to increase their privileges.
The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility is related to the improper use of standard permissions. Exploiting this vulnerability can allow attackers to increase their privileges...
CVE-2024-25647
Incorrect default permissions for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-23312
The CVE-2024-23312 issue affects Intel® Binary Configuration Tool (BCT) for Windows prior to version 3.4.5. The root cause is an uncontrolled search path element, which could allow an authenticated local attacker to escalate privileges. Publicly documented impact in connected sources confirms loc...
CVE-2024-23312
Uncontrolled search path for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-23312
Uncontrolled search path for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-25647
Incorrect default permissions for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-25647
CVE-2024-25647 affects the Intel® Binary Configuration Tool for Windows, prior to v3.4.5. The root cause is incorrect default permissions that may allow an authenticated user with local access to escalate privileges. The advisory reports a CVSSv3.1 base score of 6.7 (LOCAL, HIGH impact on confide...