Lucene search
+L

5 matches found

OSV
OSV
added 2024/01/30 1:15 p.m.3 views

CVE-2024-0676

Weak password requirement vulnerability in Lamassu Bitcoin ATM Douro machines, in its 7.1 version , which allows a local user to interact with the machine where the application is installed, retrieve stored hashes from the machine and crack long 4-character passwords using a dictionary attack...

7.1CVSS7.1AI score0.00125EPSS
Exploits0References1
OSV
OSV
added 2024/01/30 1:15 p.m.4 views

CVE-2024-0674

Privilege escalation vulnerability in Lamassu Bitcoin ATM Douro machines, in its 7.1 version, which could allow a local user to acquire root permissions by modifying the updatescript.js, inserting special code inside the script and creating the done.txt file. This would cause the watchdog process...

7.8CVSS5.9AI score0.00126EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/30 12:0 a.m.5 views

Lamassu Bitcoin ATM Douro Security Breach

Lamassu Bitcoin ATM Douro is a Bitcoin ATM from Lamassu. A security vulnerability exists in the Lamassu Bitcoin ATM Douro version 7.1 that stems from allowing the use of weak passwords. An attacker could exploit the vulnerability to retrieve stored hashes from the machine and crack passwords up t...

7.1CVSS6.6AI score0.00125EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.6 views

PT-2024-15739 · Lamassu · Lamassu Bitcoin Atm Douro

Name of the Vulnerable Software and Affected Versions: Lamassu Bitcoin ATM Douro version 7.1 Description: The issue is related to improper checking for unusual or exceptional conditions in the Lamassu Bitcoin ATM Douro machines. This could allow an attacker with physical access to the ATM to esca...

6.8CVSS6.7AI score0.00247EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/30 12:0 a.m.7 views

Lamassu Bitcoin ATM Douro Code Issue Vulnerability

Lamassu Bitcoin ATM Douro is a Bitcoin ATM from Lamassu. A code issue vulnerability exists in Lamassu Bitcoin ATM Douro version 7.1, which stems from improper checking of exceptions or special cases. An attacker could use this vulnerability to escape kiosk mode, access the underlying Xwindow...

6.8CVSS7.6AI score0.00247EPSS
Exploits0References2
Rows per page
Query Builder