CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

49 matches found

CNNVD•added 2024/05/14 12:0 a.m.•4 views

Nuki Bridge 安全漏洞

Nuki Bridge is a smart lock control software from Nuki. A security vulnerability exists in Nuki Bridge v1.x prior to v1.22.0 and v2.x prior to v2.13.2, and Nuki Keypad v1.9.2 prior to v1.9.2, which stems from an attacker being able to use debugging functionality to control the execution of code o...

9.8CVSS7AI score0.0161EPSS

Exploits0References5

Positive Technologies•added 2023/10/12 12:0 a.m.•4 views

PT-2023-27876 · Plixer · Plixer Scrutinizer

Name of the Vulnerable Software and Affected Versions: Plixer Scrutinizer versions prior to 19.3.1 Description: An issue was discovered in Plixer Scrutinizer that exposes debug logs to unauthenticated users at the "/debug/" URL path. With knowledge of valid IP addresses and source types, an...

3.7CVSS4.2AI score0.00413EPSS

Exploits1References5

OSV•added 2023/09/21 3:30 p.m.•2 views

GHSA-6958-8CPR-XGRQ Duplicate Advisory: EVE's Debug Functions Unlockable Without Triggering Measured Boot

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-4c4v-42hc-72p6. This link is maintained to preserve external references. Original Description On boot, the Pillar eve container checks for the existence and content of “/config/GlobalConfig/global.json”. If the...

8.8CVSS5.5AI score0.0016EPSS

Exploits0References3

OSV•added 2023/04/11 9:15 a.m.•4 views

CVE-2023-26588

Use of hard-coded credentials vulnerability in Buffalo network devices allows an attacker to access the debug function of the product. The affected products and versions are as follows: BS-GSL2024 firmware Ver. 1.10-0.03 and earlier, BS-GSL2016P firmware Ver. 1.10-0.03 and earlier, BS-GSL2016...

7.5CVSS6.9AI score0.00575EPSS

Exploits0References2

Japan Vulnerability Notes•added 2023/03/08 6:12 a.m.•4 views

Multiple vulnerabilities in Buffalo network devices

Overview Multiple network devices provided by BUFFALO INC. contain multiple vulnerabilities listed below. Use of hard-coded credentials CWE-798 - CVE-2023-26588 Improper access control CWE-284 - CVE-2023-24544 Stored cross-site scripting CWE-79 - CVE-2023-24464 Impact An attacker may access the...

8.1CVSS6.3AI score0.03228EPSS

Exploits4References11

Positive Technologies•added 2022/09/13 12:0 a.m.•8 views

PT-2022-5069 · Brocade · Brocade Fabric Os

Name of the Vulnerable Software and Affected Versions: Brocade Fabric OS versions prior to 9.1.0 Brocade Fabric OS versions prior to 9.0.1e Brocade Fabric OS versions prior to 8.2.3c Brocade Fabric OS versions prior to 7.4.2j Description: The issue is related to the storage of critical informatio...

6.5CVSS6.3AI score0.00205EPSS

Exploits0References6

OSV•added 2021/02/15 3:15 p.m.•3 views

CVE-2020-4954

IBM Spectrum Protect Operations Center 7.1 and 8.1 could allow a remote attacker to bypass authentication restrictions, caused by improper session validation . By using the configuration panel to obtain a valid session using an attacker controlled IBM Spectrum Protect server, an attacker could...

5.4CVSS6.1AI score0.00533EPSS

Exploits0References2

Fedora•added 2010/05/12 5:55 p.m.•47 views

[SECURITY] Fedora 12 Update: boa-0.94.14-0.15.rc21.fc12

Boa is a single-tasking HTTP server. That means that unlike traditional web servers, it does not fork for each incoming connection, nor does it fork ma ny copies of itself to handle multiple connections. It internally multiplexes all of the ongoing HTTP connections, and forks only for CGI program...

5CVSS9.4AI score0.12078EPSS

Exploits2