Lucene search
+L

123 matches found

BDU FSTEC
BDU FSTEC
added 2024/10/02 12:0 a.m.7 views

The vulnerability of the WatchGuard Authentication Gateway software is related to deficiencies in its authentication mechanism, which allows a hacker to obtain memory dumps.

The vulnerability of the WatchGuard Authentication Gateway authentication software is related to deficiencies in its authentication mechanism. Exploiting this vulnerability could allow a malicious actor, operating remotely, to obtain memory dumps from the software through a specially crafted...

8.6CVSS5.5AI score0.01026EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2024/10/01 3:15 p.m.5 views

CVE-2024-25661

In Infinera TNMS Transcend Network Management System 19.10.3, cleartext storage of sensitive information in memory of the desktop application TNMS Client allows guest OS administrators to obtain various users' passwords by reading memory dumps of the desktop application...

7.7CVSS5.8AI score0.00125EPSS
Exploits0References1
NVD
NVD
added 2024/10/01 3:15 p.m.29 views

CVE-2024-25661

In Infinera TNMS Transcend Network Management System 19.10.3, cleartext storage of sensitive information in memory of the desktop application TNMS Client allows guest OS administrators to obtain various users' passwords by reading memory dumps of the desktop application...

7.7CVSS0.00125EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/01 12:0 a.m.21 views

CVE-2024-25661

In Infinera TNMS Transcend Network Management System 19.10.3, cleartext storage of sensitive information in memory of the desktop application TNMS Client allows guest OS administrators to obtain various users' passwords by reading memory dumps of the desktop application...

0.00125EPSS
Exploits0References1
NVD
NVD
added 2024/09/30 9:15 p.m.14 views

CVE-2024-28807

An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information in the memory of the @CT desktop management application allows guest OS administrators to obtain various users' passwords by accessing memory dumps of the desktop application...

6.5CVSS0.00114EPSS
Exploits0References1
CVE
CVE
added 2024/09/30 12:0 a.m.49 views

CVE-2024-28807

The CVE-2024-28807 affects Infinera hiT 7300, version 5.60.50, specifically the @CT desktop management application. The root cause is cleartext storage of sensitive information in memory, enabling guest OS administrators to recover passwords by accessing memory dumps of the desktop app. Public de...

6.5CVSS6.4AI score0.00114EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/09/30 12:0 a.m.17 views

CVE-2024-28807

An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information in the memory of the @CT desktop management application allows guest OS administrators to obtain various users' passwords by accessing memory dumps of the desktop application...

0.00114EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/30 12:0 a.m.4 views

PT-2024-22579 · Infinera · Infinera Hit 7300

Name of the Vulnerable Software and Affected Versions: Infinera hiT 7300 version 5.60.50 Description: An issue was discovered in the @CT desktop management application, where sensitive information is stored in cleartext in the application's memory. This allows guest OS administrators to obtain...

6.5CVSS5.9AI score0.00114EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/09/30 12:0 a.m.15 views

CVE-2024-28807

An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information in the memory of the @CT desktop management application allows guest OS administrators to obtain various users' passwords by accessing memory dumps of the desktop application...

6.6AI score0.00114EPSS
Exploits0References1
Citrix
Citrix
added 2024/07/14 12:0 a.m.7 views

Ctrix Virtual Apps and Desktop - Troubleshooting; Tools and Data collection

Introduction This article is a summary of the top support articles related to the data collection process. There are two main areas covered in this summary including data collection guidance and tools. Top Knowledge Content Citrix Tools: CTX203082 - Citrix Supportability Pack CTX677255 - Citrix...

7.2AI score
Exploits0
SUSE CVE
SUSE CVE
added 2024/05/21 11:13 p.m.4 views

SUSE CVE-2024-33900

KeePassXC 2.7.7 allows an attacker who has the privileges of the victim to recover cleartext credentials via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs...

6.5CVSS7AI score0.00344EPSS
Exploits1References3
OSV
OSV
added 2024/05/20 9:15 p.m.5 views

UBUNTU-CVE-2024-33900

DISPUTED KeePassXC 2.7.7 allows an attacker who has the privileges of the victim to recover cleartext credentials via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs...

6.5CVSS5.8AI score0.00344EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/03/25 12:0 a.m.8 views

The vulnerability of Kaspersky Password Manager’s password manager feature, related to the automatic restoration of automatically filled-in user credentials, allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of Kaspersky Password Manager is related to the recovery of automatically filled account information from the memory dump due to the use of the autofill function of the Google Chrome browser. Exploiting this vulnerability can allow an attacker to gain unauthorized access to...

2.2CVSS5.5AI score0.00093EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2024/03/22 12:0 a.m.5 views

Kaspersky Password Manager 安全漏洞

Kaspersky Password Manager is an application from the Russian laboratory Kaspersky Kaspersky. It provides a function to manage passwords. A security vulnerability exists in versions prior to Kaspersky Password Manager 24.0.0.427, which stems from a vulnerability that allows for the auto-populatio...

2.2CVSS6.8AI score0.00093EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/14 12:0 a.m.7 views

Delinea PAM Secret Server 安全漏洞

Delinea PAM Secret Server is a key service manager from Delinea. An information disclosure vulnerability exists in Delinea PAM Secret Server version 11.4, which can be exploited by an attacker to read data from a memory dump...

6.7CVSS6.1AI score0.00076EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/12 12:0 a.m.5 views

Siemens QMS Automotive 安全漏洞

Siemens QMS Automotive is a quality management system for the automotive industry from Siemens, Germany. Siemens QMS Automotive has an information disclosure hole that can be exploited by an attacker to perform a memory dump, gain access to credentials, and use them in a simulation...

7.3CVSS6.4AI score0.0012EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/06/29 9:14 a.m.9 views

golang: runtime: unexpected behavior of setuid/setgid binaries

On Unix platforms, the Go runtime does not behave differently when a binary is run with the setuid/setgid bits. This can be dangerous in certain cases, such as when dumping memory state or assuming the status of standard I/O file descriptors. If a setuid/setgid binary is executed with standard I/...

7.8CVSS6.8AI score0.00432EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/05/16 1:52 a.m.4 views

SUSE CVE-2023-32784

In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file pagefile.sys, hibernation file hiberfil.sys, or RAM dump of the entire system. The...

7.5CVSS7AI score0.04397EPSS
Exploits5References5
OSV
OSV
added 2023/05/15 6:15 a.m.2 views

DEBIAN-CVE-2023-32784

In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file pagefile.sys, hibernation file hiberfil.sys, or RAM dump of the entire system. The...

7.5CVSS8AI score0.04397EPSS
Exploits5References1
CNNVD
CNNVD
added 2023/05/15 12:0 a.m.7 views

KeePass 安全漏洞

KeePass is an open source password manager. A security vulnerability exists in version 2.x prior to KeePass 2.54 that stems from the ability to recover plaintext master passwords from a memory dump even if the workspace is locked or no longer running...

7.5CVSS7.7AI score0.04397EPSS
Exploits5References4
Rows per page
Query Builder