CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

exploitpack•added 2018/03/05 12:0 a.m.•34 views

Sophos UTM 9.410 - loginuser confd Service Privilege Escalation

Sophos UTM 9.410 - loginuser confd Service Privilege Escalation KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service Title: Sophos UTM 9 loginuser Privilege Escalation via confd Service Advisory ID: KL-001-2018-007 Publication Date: 2018.03.02 Publication URL:...

0.5AI score

Exploit DB•added 2018/03/05 12:0 a.m.•40 views

Sophos UTM 9.410 - 'loginuser' 'confd' Service Privilege Escalation

KL-001-2018-007 : Sophos UTM 9 loginuser Privilege Escalation via confd Service Title: Sophos UTM 9 loginuser Privilege Escalation via confd Service Advisory ID: KL-001-2018-007 Publication Date: 2018.03.02 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-007.txt 1...

7.4AI score

0day.today•added 2018/03/05 12:0 a.m.•57 views

Sophos UTM 9.410 - (loginuser) (confd) Service Privilege Escalation Vulnerability

Exploit for linux platform in category local exploits Title: Sophos UTM 9 loginuser Privilege Escalation via confd Service Publication Date: 2018.03.02 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-007.txt 1. Vulnerability Details Affected Vendor: Sophos Affected...

6.5AI score

KoreLogic Security•added 2018/03/02 12:0 a.m.•18 views

Sophos UTM 9 loginuser Privilege Escalation via confd Service

Vulnerability Details Affected Vendor: Sophos Affected Product: UTM 9 Affected Version: 9.410 Platform: Embedded Linux CWE Classification: CWE-306: Missing Authentication for Critical Function SID generation Impact: Privilege Escalation Attack vector: SSH 2. Vulnerability Description The...

7.3AI score

0day.today•added 2018/02/10 12:0 a.m.•54 views

NetEx HyperIP 6.1.0 Local File Inclusion Vulnerability

NetEx HyperIP version 6.1.0 suffers from a local file inclusion vulnerability. Title: NetEx HyperIP Local File Inclusion Vulnerability Advisory ID: KL-001-2018-005 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-005.txt 1. Vulnerability...

0.2AI score

0day.today•added 2018/02/10 12:0 a.m.•31 views

NetEx HyperIP 6.1.0 Post-Auth Command Execution Vulnerability

Exploit for multiple platform in category web applications Title: NetEx HyperIP Post-Auth Command Execution Advisory ID: KL-001-2018-003 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-003.txt 1. Vulnerability Details Affected Vendor: NetEx...

0day.today•added 2018/02/10 12:0 a.m.•160 views

Trend Micro IMSVA Management Portal 9.1.0.1600 Authentication Bypass Exploit

Trend Micro IMSVA Management Portal version 9.1.0.1600 suffers from an authentication bypass vulnerability. Title: Trend Micro IMSVA Management Portal Authentication Bypass Advisory ID: KL-001-2018-006 Publication Date: 2018.02.08 Publication URL:...

0.5AI score

0day.today•added 2018/02/10 12:0 a.m.•29 views

NetEx HyperIP 6.1.0 Privilege Escalation Vulnerability

Exploit for multiple platform in category web applications Title: NetEx HyperIP Privilege Escalation Vulnerability Advisory ID: KL-001-2018-004 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-004.txt 1. Vulnerability Details Affected Vendor...

0.4AI score

0day.today•added 2018/02/10 12:0 a.m.•30 views

NetEx HyperIP 6.1.0 Authentication Bypass Vulnerability

Exploit for multiple platform in category web applications Title: NetEx HyperIP Authentication Bypass Advisory ID: KL-001-2018-002 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-002.txt 1. Vulnerability Details Affected Vendor: NetEx...

Packet Storm•added 2018/02/09 12:0 a.m.•41 views

NetEx HyperIP 6.1.0 Privilege Escalation

KL-001-2018-004 : NetEx HyperIP Privilege Escalation Vulnerability Title: NetEx HyperIP Privilege Escalation Vulnerability Advisory ID: KL-001-2018-004 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-004.txt 1. Vulnerability Details Affecte...

6.6AI score

Packet Storm•added 2018/02/09 12:0 a.m.•39 views

NetEx HyperIP 6.1.0 Local File Inclusion

KL-001-2018-005 : NetEx HyperIP Local File Inclusion Vulnerability Title: NetEx HyperIP Local File Inclusion Vulnerability Advisory ID: KL-001-2018-005 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-005.txt 1. Vulnerability Details Affecte...

6.6AI score

Packet Storm•added 2018/02/09 12:0 a.m.•35 views

NetEx HyperIP 6.1.0 Authentication Bypass

KL-001-2018-002 : NetEx HyperIP Authentication Bypass Title: NetEx HyperIP Authentication Bypass Advisory ID: KL-001-2018-002 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-002.txt 1. Vulnerability Details Affected Vendor: NetEx Affected...

Packet Storm•added 2018/02/09 12:0 a.m.•33 views

NetEx HyperIP 6.1.0 Post-Auth Command Execution

KL-001-2018-003 : NetEx HyperIP Post-Auth Command Execution Title: NetEx HyperIP Post-Auth Command Execution Advisory ID: KL-001-2018-003 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-003.txt 1. Vulnerability Details Affected Vendor: NetE...

Packet Storm•added 2018/02/09 12:0 a.m.•49 views

Trend Micro IMSVA Management Portal 9.1.0.1600 Authentication Bypass

KL-001-2018-006 : Trend Micro IMSVA Management Portal Authentication Bypass Title: Trend Micro IMSVA Management Portal Authentication Bypass Advisory ID: KL-001-2018-006 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-006.txt 1. Vulnerabili...

7.1AI score

KoreLogic Security•added 2018/02/08 12:0 a.m.•15 views

NetEx HyperIP Privilege Escalation Vulnerability

Vulnerability Details Affected Vendor: NetEx Affected Product: HyperIP Affected Version: 6.1.0 Platform: Embedded Linux CWE Classification: CWE-592: Authentication Bypass Issues Impact: Privilege Escalation Attack vector: HTTPS 2. Vulnerability Description Privileges can be escalated by abusing...

0.2AI score

KoreLogic Security•added 2018/02/08 12:0 a.m.•8 views

NetEx HyperIP Post-Auth Command Execution

Vulnerability Details Affected Vendor: NetEx Affected Product: HyperIP Affected Version: 6.1.0 Platform: Embedded Linux CWE Classification: CWE-78: Improper Neutralization of Special Elements used in an OS Command, CWE-250: Execution with Unnecessary Privileges Impact: Arbitrary Command...

0.6AI score

KoreLogic Security•added 2018/02/08 12:0 a.m.•18 views

NetEx HyperIP Authentication Bypass

Vulnerability Details Affected Vendor: NetEx Affected Product: HyperIP Affected Version: 6.1.0 Platform: Embedded Linux CWE Classification: CWE-592: Authentication Bypass Issues Impact: Authentication Bypass Attack vector: HTTPS 2. Vulnerability Description Authentication for the management...

0.3AI score

KoreLogic Security•added 2018/02/08 12:0 a.m.•18 views

NetEx HyperIP Local File Inclusion Vulnerability

Vulnerability Details Affected Vendor: NetEx Affected Product: HyperIP Affected Version: 6.1.0 Platform: Embedded Linux CWE Classification: CWE-73: External Control of File Name or Path, CWE-592: Authentication Bypass Issues Impact: Arbitrary Filesystem Reads Attack vector: HTTPS 2...

Packet Storm•added 2018/01/26 12:0 a.m.•51 views

Sophos Web Gateway 4.4.1 Cross Site Scripting

KL-001-2018-001 : Sophos Web Gateway Persistent Cross Site Scripting Vulnerability Title: Sophos Web Gateway Persistent Cross Site Scripting Vulnerability Advisory ID: KL-001-2018-001 Publication Date: 2018.01.26 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-001.txt ...