Lucene search
K

82 matches found

Prion
Prion
added 2020/09/25 6:15 a.m.24 views

Default credentials

In cPanel before 88.0.3, insecure RNDC credentials are used for BIND on a templated VM SEC-549...

5CVSS9.4AI score0.01419EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/09/25 5:43 a.m.67 views

CVE-2020-26101

The CVE-2020-26101 affects cPanel prior to 88.0.3, where insecure RNDC credentials are used for BIND on a templated VM (SEC-549). The issue is documented across multiple sources (NVD entry for CVE-2020-26101 and related CNVD/CVE records). Affected software: cPanel

9.8CVSS9.4AI score0.01419EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/09/25 5:42 a.m.74 views

CVE-2020-26105

In cPanel before 88.0.3, insecure chkservd test credentials are used on a templated VM (SEC-554). The vulnerability affects cPanel releases prior to 88.0.3 involving chkservd credential handling on templated VMs. Root cause is insecure test credentials being used in the chkservd process; explicit...

9.8CVSS9.3AI score0.01419EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/06/10 5:15 p.m.13 views

CVE-2020-10755

An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with the Dell EMC ScaleI...

6.5CVSS0.01203EPSS
Exploits0References3
OSV
OSV
added 2020/06/10 5:15 p.m.6 views

CVE-2020-10755

An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with the Dell EMC ScaleI...

6.5CVSS6.6AI score0.01203EPSS
Exploits0References3
Prion
Prion
added 2020/06/10 5:15 p.m.18 views

Default credentials

An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with the Dell EMC ScaleI...

4.3CVSS6.3AI score0.01203EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2020/06/10 5:15 p.m.22 views

PYSEC-2020-228

An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with the Dell EMC ScaleI...

6.5CVSS2.9AI score0.01203EPSS
Exploits0References3
Cvelist
Cvelist
added 2020/06/10 3:55 p.m.36 views

CVE-2020-10755

An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with the Dell EMC ScaleI...

6.5CVSS6.3AI score0.01203EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2020/06/10 12:0 a.m.18 views

py39-cinder -- insecure-credentials flaw

OpenStack project reports: An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cind...

6.5CVSS6.5AI score0.01203EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/06/03 11:22 p.m.23 views

CVE-2020-10755

An insecure-credentials flaw was found in openstack-cinder. When using openstack-cinder with the Dell EMC ScaleIO or VxFlex OS backend storage driver, credentials for the entire backend are exposed in the connectioninfo element in all Block Storage v3 Attachments API calls containing that element...

4.3CVSS0.9AI score0.01203EPSS
Exploits0References4
Hacker One
Hacker One
added 2019/10/11 4:41 p.m.23 views

Top Echelon Software: able to login into login.topechelon.com

The support login for our administrative account was using insecure credentials, allowing access to our administrative account. These credentials are not used, so we chose to deactivate the login to prevent access...

3.2AI score
Exploits0
CNVD
CNVD
added 2019/01/25 12:0 a.m.2 views

Cisco AMP Threat Grid Cloud and AMP Threat Grid Appliance software trust management issue vulnerability

Cisco AMP Threat Grid Cloud and AMP Threat Grid Appliance software are both products of Cisco, Inc. The Cisco AMP Threat Grid Cloud is a cloud-based malware and threat intelligence analysis solution. Grid Appliance software is an on-device malware analysis solution. Cisco AMP Threat Grid Cloud an...

4.3CVSS6.8AI score0.0145EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2019/01/24 4:0 p.m.5 views

CVE-2019-1657 Cisco AMP Threat Grid API Key Information Disclosure Vulnerability

A vulnerability in Cisco AMP Threat Grid could allow an authenticated, remote attacker to access sensitive information. The vulnerability is due to unsafe creation of API keys. An attacker could exploit this vulnerability by using insecure credentials to gain unauthorized access to the affected...

4.3CVSS6.8AI score0.0145EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/01/24 4:0 p.m.17 views

CVE-2019-1657 Cisco AMP Threat Grid API Key Information Disclosure Vulnerability

A vulnerability in Cisco AMP Threat Grid could allow an authenticated, remote attacker to access sensitive information. The vulnerability is due to unsafe creation of API keys. An attacker could exploit this vulnerability by using insecure credentials to gain unauthorized access to the affected...

4.3CVSS4.7AI score0.0145EPSS
Exploits0References2
CNVD
CNVD
added 2017/08/03 12:0 a.m.3 views

Multiple PDQ Products Privilege Acquisition Vulnerabilities (CNVD-2017-23005)

PDQ Manufacturing LaserWash G5 and others are automotive automatic cleaning equipment from PDQ Manufacturing USA. A security vulnerability exists in several PDQ products due to the program failing to pass usernames and passwords in a secure manner. An attacker could exploit the vulnerability to...

9.8CVSS9.6AI score0.00471EPSS
Exploits0References1
OSV
OSV
added 2017/06/13 6:29 a.m.5 views

CVE-2017-6686

A vulnerability in Cisco Ultra Services Framework Element Manager could allow an authenticated, remote attacker with access to the management network to log in as an admin or oper user of the affected device, aka an Insecure Default Credentials Vulnerability. More Information: CSCvc76699. Known...

8.8CVSS5.8AI score0.01499EPSS
Exploits0References2
Cisco
Cisco
added 2017/06/07 4:0 p.m.30 views

Cisco Ultra Services Framework Staging Server Insecure Default Credentials Vulnerability

A vulnerability in Cisco Ultra Services Framework Staging Server could allow an authenticated, remote attacker with access to the management network to log in as an admin user of the affected device. The vulnerability is due to weak, hard-coded credentials of the admin user present on the affecte...

6.3CVSS8.7AI score0.01499EPSS
Exploits0References1
ICS
ICS
added 2016/11/12 7:0 a.m.52 views

Tollgrade SmartGrid Sensor Management System Software Vulnerabilities

OVERVIEW Independent researcher Maxim Rupp has identified vulnerabilities in Tollgrade Communications, Inc.’s SmartGrid LightHouse Sensor Management System SMS Software EMS. Tollgrade Communications, Inc. has produced an update to mitigate these vulnerabilities. Maxim Rupp has tested the update t...

9CVSS8.7AI score0.02055EPSS
Exploits0References10
CERT
CERT
added 2016/10/20 12:0 a.m.40 views

Intellian Satellite TV t-Series and v-Series firmware contains insecure default credentials

Overview Intellian Satellite TV antennas t-Series and v-Series, firmware version 1.07, uses default credentials. Description CWE-255: Credentials Management- CVE-2016-6551Intellian Satellite TV antennas t-Series and v-Series, firmware version 1.07, uses non-random default credentials of: ftp/ftp ...

10CVSS9.8AI score0.02878EPSS
Exploits0References2
CNVD
CNVD
added 2016/08/30 12:0 a.m.1 views

Cisco EPC3925 UPC Insecure Default Password Vulnerability

The Cisco EPC3925 is a home router device. An insecure default password vulnerability exists in the Cisco EPC3925 UPC. A remote attacker with knowledge of the default credentials could exploit this vulnerability to gain unauthorized access and perform unauthorized actions...

7.2AI score
Exploits0References1
Rows per page
Query Builder