Lucene search
K

55 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-7966

Malware in sbrugna...

9CVSS7AI score0.03995EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-7964

Malware in sbrugna...

6.8CVSS6.6AI score0.02012EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-7965

Malware in sbrugna...

6.5CVSS6.4AI score0.06617EPSS
Exploits7References4
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.19 views

Meinberg LANTIME Remote Code Execution (CVE-2020-7240)

Meinberg Lantime devices allow attackers with privileges to configure a device to execute arbitrary OS commands by editing the /config/netconf.cmd script aka Extended Network Configuration. Note: According to the description, the vulnerability requires a fully authenticated super-user account usi...

9CVSS7.6AI score0.02437EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.12 views

Meinberg Multiple Vulnerabilities in LANTIME Products (CVE-2017-16786)

The Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote authenticated users with certain privileges to read arbitrary files via 1 the ntpclientcounterlogfile parameter to cgi-bin/mainv2 or 2 vectors involving curl support of the file schema in the...

6.8CVSS6.7AI score0.02012EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.12 views

Meinberg Multiple Vulnerabilities in LANTIME Products (CVE-2017-16787)

The Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote attackers to read arbitrary files by leveraging failure to restrict URL access. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

6.5CVSS6.5AI score0.06617EPSS
Exploits7References4
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.20 views

Meinberg LANTIME Arbitrary File Read (CVE-2018-10835)

Admin users were able to exchange web interface data through the data upload mechanism to which only root users have access. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.15 views

Meinberg LANTIME Arbitrary File Read (CVE-2018-10834)

Admin and info users were able to read data through the data upload mechanism to which only root users have access. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.11 views

Meinberg Multiple Vulnerabilities in LANTIME Products (CVE-2017-16788)

Directory traversal vulnerability in the Upload Groupkey functionality in the Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote authenticated users with Admin-User access to write to arbitrary files and consequently gain root privileges by uploading...

9CVSS7.3AI score0.03995EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.9 views

Meinberg LANTIME Information Disclosure (CVE-2018-10836)

Other logged-in users were visible to info users and admin users through the function 'logged in users'. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

7AI score
Exploits0References2
OSV
OSV
added 2024/02/04 9:15 p.m.3 views

CVE-2021-46903

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. An admin can delete required user accounts in violation of expected access control...

6.5CVSS5.8AI score0.00496EPSS
Exploits0References1
NVD
NVD
added 2024/02/04 9:15 p.m.22 views

CVE-2021-46903

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. An admin can delete required user accounts in violation of expected access control...

6.5CVSS6.5AI score0.00496EPSS
Exploits0References1
NVD
NVD
added 2024/02/04 9:15 p.m.19 views

CVE-2021-46902

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. Path validation is mishandled, and thus an admin can read or delete files in violation of expected access controls...

7.2CVSS7AI score0.00664EPSS
Exploits0References1
Prion
Prion
added 2024/02/04 9:15 p.m.18 views

Input validation

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. Path validation is mishandled, and thus an admin can read or delete files in violation of expected access controls...

5.8CVSS7.1AI score0.00664EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2024/02/04 9:15 p.m.22 views

Improper access control

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. An admin can delete required user accounts in violation of expected access control...

4.7CVSS7.2AI score0.00496EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/02/04 12:0 a.m.4 views

PT-2024-11055 · Meinberg · Meinberg Lantime-Firmware +1

Name of the Vulnerable Software and Affected Versions: Meinberg LANTIME-Firmware versions 6.24.029 and earlier Meinberg LANTIME-Firmware versions 7.04.008 and earlier Description: An issue was discovered in the LTOS-Web-Interface where path validation is mishandled. This allows an admin to read o...

7.2CVSS6.9AI score0.00664EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/02/04 12:0 a.m.8 views

CVE-2021-46902

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. Path validation is mishandled, and thus an admin can read or delete files in violation of expected access controls...

6.9AI score0.00664EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/04 12:0 a.m.7 views

CVE-2021-46903

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. An admin can delete required user accounts in violation of expected access control...

6.9AI score0.00496EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/02/04 12:0 a.m.6 views

Meinberg LANTIME-Firmware Security Vulnerability

Meinberg Funkuhren Meinberg LANTIME-Firmware is a ready-to-use network time protocol server from Meinberg Funkuhren, Germany. A security vulnerability exists in Meinberg LANTIME-Firmware that stems from improper handling of path validation in LTOS-Web-Interface, which allows administrators to rea...

7.2CVSS6.7AI score0.00664EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/02/04 12:0 a.m.24 views

CVE-2021-46902

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. Path validation is mishandled, and thus an admin can read or delete files in violation of expected access controls...

7.2AI score0.00664EPSS
Exploits0References1
Rows per page
Query Builder