Lucene search
+L

273 matches found

redhatcve
redhatcve
added 2025/04/26 6:56 a.m.7 views

CVE-2025-32730

Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerability allows a local authenticated attacker to use the authentication information from the last connected surveillance...

6.8CVSS6.5AI score0.00159EPSS
Exploits0References1
nvd
nvd
added 2025/04/24 7:15 a.m.16 views

CVE-2025-32730

Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerability allows a local authenticated attacker to use the authentication information from the last connected surveillance...

6.8CVSS0.00159EPSS
Exploits0References2
cvelist
cvelist
added 2025/04/24 6:38 a.m.23 views

CVE-2025-32730

Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerability allows a local authenticated attacker to use the authentication information from the last connected surveillance...

6.8CVSS0.00159EPSS
Exploits0References2
cve
cve
added 2025/04/24 6:38 a.m.51 views

CVE-2025-32730

The CVE-2025-32730 entry affects i-PRO Configuration Tool used with i-PRO Co., Ltd. surveillance cameras/recorders. The root cause is use of a hard-coded cryptographic key (CWE-321) that enables a local authenticated attacker to leverage authentication data from the last connected cameras/recorde...

6.8CVSS6.5AI score0.00159EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/04/24 6:38 a.m.5 views

CVE-2025-32730

Use of hard-coded cryptographic key vulnerability in i-PRO Configuration Tool affects the network system for i-PRO Co., Ltd. surveillance cameras and recorders. This vulnerability allows a local authenticated attacker to use the authentication information from the last connected surveillance...

6.8CVSS6.5AI score0.00159EPSS
Exploits0References2
jvn
jvn
added 2025/04/24 4:50 a.m.5 views

i-PRO Configuration Tool vulnerable to use of hard-coded cryptographic key

Overview i-PRO Configuration Tool provided by i-PRO Co., Ltd. contains a vulnerability below. Use of hard-coded cryptographic key CWE-321 Diego Giubertoni of Nozomi Networks Inc. reported this vulnerability to i-PRO Co., Ltd. and coordinated. After the coordination was completed, i-PRO Co., Ltd...

6.8CVSS6.5AI score0.00159EPSS
Exploits0References6
jvn
jvn
added 2025/04/24 12:0 a.m.14 views

JVN#84627857: i-PRO Configuration Tool vulnerable to use of hard-coded cryptographic key

i-PRO Configuration Tool provided by i-PRO Co., Ltd. contains a vulnerability below. Use of hard-coded cryptographic key CWE-321 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N Base Score: 6.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Base Score: 5.5 CVE-2025-32730 Impact...

6.8CVSS6.7AI score0.00159EPSS
Exploits0
ptsecurity
ptsecurity
added 2025/04/24 12:0 a.m.10 views

PT-2025-17700 · I Pro Co. · I-Pro Configuration Tool

Name of the Vulnerable Software and Affected Versions: i-PRO Configuration Tool affected versions not specified Description: The issue concerns the use of a hard-coded cryptographic key in the i-PRO Configuration Tool, which affects the network system of i-PRO Co., Ltd. surveillance cameras and...

6.8CVSS5.2AI score0.00159EPSS
Exploits0References7
bdu_fstec
bdu_fstec
added 2025/04/09 12:0 a.m.6 views

The vulnerability of the Cloud-init configuration tool, related to insufficient protection of registration data, allows a perpetrator to access confidential information.

The vulnerability of the Cloud-init configuration tool is related to insufficient protection for registration data. Exploiting this vulnerability can allow an attacker to access confidential information...

5.5CVSS5.9AI score0.00236EPSS
Exploits0References6Affected Software3
cnnvd
cnnvd
added 2025/03/10 12:0 a.m.4 views

GE Vernova EnerVista UR 授权问题漏洞

GE Vernova EnerVista UR is a device configuration tool from GE Vernova USA that is compatible with all UR relay applications. An authorization issue vulnerability exists in the GE Vernova EnerVista UR that stems from improper authentication and could lead to authentication bypass...

8CVSS6.8AI score0.00177EPSS
Exploits0References4
bdu_fstec
bdu_fstec
added 2025/02/26 12:0 a.m.16 views

The vulnerability of the Telnet protocol implementation for the MIR KT-51 controller and the MIR controller configuration tool, related to the transmission of data in an open manner, allows a perpetrator to disclose the protected information.

The vulnerability of the Telnet protocol implementation for the MIR KT-51 controller and the MIR controller configuration software is related to the transmission of data in an open manner. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

10CVSS5.5AI score
Exploits0Affected Software2
intel
intel
added 2025/02/11 12:0 a.m.8 views

Ethernet Port Configuration Tool Software Advisory

Summary: Potential security vulnerability in some Ethernet Port Configuration Tool EPCT software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-39813 Description: Uncontrolled search path for...

6.7CVSS7.3AI score0.00195EPSS
Exploits0
bdu_fstec
bdu_fstec
added 2024/11/26 12:0 a.m.6 views

The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility lies in its uncontrolled search path, which allows a malicious actor to exploit their privileges.

The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility is related to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.7CVSS5.5AI score0.00175EPSS
Exploits0References5Affected Software1
bdu_fstec
bdu_fstec
added 2024/11/26 12:0 a.m.7 views

The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility lies in the improper use of standard permissions, allowing attackers to increase their privileges.

The vulnerability of the Intel Binary Configuration Tool’s configuration modification utility is related to the improper use of standard permissions. Exploiting this vulnerability can allow attackers to increase their privileges...

6.7CVSS5.5AI score0.00144EPSS
Exploits0References5Affected Software1
nvd
nvd
added 2024/11/13 9:15 p.m.10 views

CVE-2024-25647

Incorrect default permissions for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.7CVSS0.00144EPSS
Exploits0References1
cve
cve
added 2024/11/13 9:8 p.m.40 views

CVE-2024-23312

The CVE-2024-23312 issue affects Intel® Binary Configuration Tool (BCT) for Windows prior to version 3.4.5. The root cause is an uncontrolled search path element, which could allow an authenticated local attacker to escalate privileges. Publicly documented impact in connected sources confirms loc...

6.7CVSS6.8AI score0.00175EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/11/13 9:8 p.m.11 views

CVE-2024-23312

Uncontrolled search path for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.7CVSS6.8AI score0.00175EPSS
Exploits0References1
cvelist
cvelist
added 2024/11/13 9:8 p.m.19 views

CVE-2024-23312

Uncontrolled search path for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.7CVSS0.00175EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/11/13 9:8 p.m.12 views

CVE-2024-25647

Incorrect default permissions for some IntelR Binary Configuration Tool software for Windows before version 3.4.5 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.7CVSS6.9AI score0.00144EPSS
Exploits0References1
cve
cve
added 2024/11/13 9:8 p.m.44 views

CVE-2024-25647

CVE-2024-25647 affects the Intel® Binary Configuration Tool for Windows, prior to v3.4.5. The root cause is incorrect default permissions that may allow an authenticated user with local access to escalate privileges. The advisory reports a CVSSv3.1 base score of 6.7 (LOCAL, HIGH impact on confide...

6.7CVSS6.9AI score0.00144EPSS
Exploits0References1
Rows per page
Query Builder