Lucene search
K

142 matches found

Cvelist
Cvelist
added 2021/06/11 2:45 p.m.24 views

CVE-2021-25399

Improper configuration in Smart Manager prior to version 11.0.05.0 allows attacker to access the file with system privilege...

7.1AI score0.00216EPSS
Exploits0References1
Prion
Prion
added 2021/05/26 7:15 p.m.18 views

Information disclosure

It was discovered that redhat-certification 7 is not properly configured and it lists all files and directories in the /var/www/rhcert/store/transfer directory, through the /rhcert-transfer URL. An unauthorized attacker may use this flaw to gather sensible information...

5CVSS7.5AI score0.01063EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/05/26 6:3 p.m.27 views

CVE-2018-10863

It was discovered that redhat-certification 7 is not properly configured and it lists all files and directories in the /var/www/rhcert/store/transfer directory, through the /rhcert-transfer URL. An unauthorized attacker may use this flaw to gather sensible information...

7.5AI score0.01063EPSS
Exploits0References2
CVE
CVE
added 2021/05/26 6:3 p.m.63 views

CVE-2018-10863

CVE-2018-10863 affects redhat-certification 7, where improper configuration allows listing all files/directories under /var/www/rhcert/store/transfer via the /rhcert-transfer URL, enabling information disclosure. The impact is exposure of sensitive information, per multiple connected records. Exp...

7.5CVSS7.4AI score0.01063EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2020/07/23 12:0 a.m.3 views

IBM Verify Gateway (IVG) Account Lockout Improperly Set Vulnerability

IBM Verify Gateway IVG is a cloud-based authentication solution from IBM in the United States. An improperly set account lockout vulnerability exists in IBM Verify Gateway IVG. A remote attacker could exploit the vulnerability to brute-force break account credentials...

7.5CVSS7AI score0.01631EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/17 8:10 p.m.18 views

CVE-2020-0228

There is an improper configuration of recorder related service. Product: AndroidVersions: Android SoCAndroid ID: A-156333723...

7.7AI score0.00413EPSS
Exploits0References1
CVE
CVE
added 2020/07/17 8:10 p.m.96 views

CVE-2020-0228

CVE-2020-0228 affects Android’s Recorder related service, with the root cause described as an improper configuration of that recorder component. Public summaries in the connected documents indicate an information-disclosure risk (evidence includes CNVD/Red Hat listings and NVD metrics) and classi...

7.5CVSS7.5AI score0.00413EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/07/01 12:0 a.m.9 views

ASB-A-156333723

There is an improper configuration of recorder related service...

7.5CVSS7.2AI score0.00413EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/05/15 12:0 a.m.24 views

Cisco Firepower Threat Defense Software Shell Access (cisco-sa-ftd-shell-9rhJF68K)

According to its self-reported version, Cisco Firepower Threat Defense Software is affected by a shell access vulnerability in the support tunnel feature due to improper configuration of that feature. An authenticated, local attacker can exploit this, by enabling the support tunnel, setting a key...

7.2CVSS6.6AI score0.00305EPSS
Exploits0References3
NVD
NVD
added 2020/04/29 8:15 p.m.11 views

CVE-2020-12473

MonoX through 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program...

9CVSS7.3AI score0.01439EPSS
Exploits1References1
OSV
OSV
added 2020/04/22 2:15 p.m.3 views

CVE-2020-11795

In JetBrains Space through 2020-04-22, the session timeout period was configured improperly...

7.5CVSS7.1AI score0.00826EPSS
Exploits0References1
Prion
Prion
added 2020/04/22 2:15 p.m.17 views

Code injection

In JetBrains Space through 2020-04-22, the session timeout period was configured improperly...

5CVSS7.5AI score0.00826EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/03/12 9:15 p.m.14 views

Design/Logic Flaw

Improper configuration in block design for IntelR MAXR 10 FPGA all versions may allow an authenticated user to potentially enable escalation of privilege and information disclosure via physical access...

3.6CVSS5.8AI score0.00364EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/03/12 8:52 p.m.22 views

CVE-2020-0574

Improper configuration in block design for IntelR MAXR 10 FPGA all versions may allow an authenticated user to potentially enable escalation of privilege and information disclosure via physical access...

6.1AI score0.00364EPSS
Exploits0References1
CVE
CVE
added 2020/03/12 8:52 p.m.69 views

CVE-2020-0574

CVE-2020-0574 : A misconfiguration in the block design of Intel® MAX® 10 FPGA (all versions) may allow an authenticated user to escalate privileges and disclose information via physical access. The issue is documented by Intel (Intel® MAX® 10 FPGA Advisory) with a CVSS v3.1 base score of 5.9 (MED...

5.9CVSS6AI score0.00364EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2020/01/30 7:42 a.m.16 views

Path Traversal

md-fileserver is vulnerable to path traversal. The attack exists through improper configuration of permissions to the files under the user's home directory of server, allowing anyone having remote access to access the other users files...

5.2AI score
Exploits0
NVD
NVD
added 2019/12/13 11:15 p.m.19 views

CVE-2019-5277

Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation...

7.5CVSS7.4AI score0.00764EPSS
Exploits0References1
OSV
OSV
added 2019/12/13 11:15 p.m.4 views

CVE-2019-5277

Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation...

7.5CVSS7.1AI score0.00764EPSS
Exploits0References1
Prion
Prion
added 2019/12/13 11:15 p.m.14 views

Information disclosure

Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation...

5CVSS7.3AI score0.00764EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/12/13 10:55 p.m.23 views

CVE-2019-5277

Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation...

7.4AI score0.00764EPSS
Exploits0References1
Rows per page
Query Builder