Lucene search
K

32 matches found

CVE
CVE
added 2024/03/13 9:17 p.m.62 views

CVE-2023-38535

CVE-2023-38535 affects OpenText Exceed Turbo X versions 12.5.1 and 12.5.2. Root cause is hard-coded cryptographic keys, potentially allowing compromise of keys and impacting confidentiality, integrity, and availability. Publicly documented CVSSv3.1 metrics indicate a 9.8 (CRITICAL) score via netw...

9.8CVSS4.9AI score0.00273EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/03/13 9:17 p.m.13 views

CVE-2023-38534

Improper authentication vulnerability in OpenText™ Exceed Turbo X affecting versions 12.5.0 and 12.5.1. The vulnerability could allow disclosure of restricted information in unauthenticated RPC...

8.6CVSS6.9AI score0.00498EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.3 views

OpenText Exceed Turbo X Security Vulnerability

OpenText Exceed Turbo X is a virtual desktop software from OpenText Canada. A security vulnerability exists in OpenText Exceed Turbo X versions 12.5.1 and 12.5.2 that stems from the use of hard-coded encryption keys in the application...

9.8CVSS6.8AI score0.00273EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/13 12:0 a.m.4 views

OpenText Exceed Turbo X Security Vulnerability

OpenText Exceed Turbo X is a virtual desktop software from OpenText Canada. A security vulnerability exists in OpenText Exceed Turbo X version 12.5.1, which originates from the application disclosing restricted information in an unauthenticated RPC...

8.6CVSS6.7AI score0.00498EPSS
Exploits0References3
NVD
NVD
added 2014/05/19 2:55 p.m.17 views

CVE-2013-6805

OpenText Exceed OnDemand EoD 8 uses weak encryption for passwords, which makes it easier for 1 remote attackers to discover credentials by sniffing the network or 2 local users to discover credentials by reading a .eod8 file...

5CVSS6.5AI score0.00711EPSS
Exploits0References1
NVD
NVD
added 2014/05/19 2:55 p.m.16 views

CVE-2013-6994

OpenText Exceed OnDemand EoD 8 transmits the session ID in cleartext, which allows remote attackers to perform session fixation attacks by sniffing the network...

6.4CVSS6.7AI score0.01184EPSS
Exploits0References1
NVD
NVD
added 2014/05/19 2:55 p.m.17 views

CVE-2013-6807

The client in OpenText Exceed OnDemand EoD 8 supports anonymous ciphers by default, which allows man-in-the-middle attackers to bypass server certificate validation, redirect a connection, and obtain sensitive information via crafted responses...

6.8CVSS6.1AI score0.00633EPSS
Exploits0References1
Prion
Prion
added 2014/05/19 2:55 p.m.16 views

Design/Logic Flaw

The client in OpenText Exceed OnDemand EoD 8 supports anonymous ciphers by default, which allows man-in-the-middle attackers to bypass server certificate validation, redirect a connection, and obtain sensitive information via crafted responses...

6.8CVSS6.6AI score0.00633EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2014/05/19 2:55 p.m.14 views

Design/Logic Flaw

OpenText Exceed OnDemand EoD 8 uses weak encryption for passwords, which makes it easier for 1 remote attackers to discover credentials by sniffing the network or 2 local users to discover credentials by reading a .eod8 file...

5CVSS7AI score0.00711EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2014/05/19 2:0 p.m.21 views

CVE-2013-6805

OpenText Exceed OnDemand EoD 8 uses weak encryption for passwords, which makes it easier for 1 remote attackers to discover credentials by sniffing the network or 2 local users to discover credentials by reading a .eod8 file...

6.5AI score0.00711EPSS
Exploits0References1
Cvelist
Cvelist
added 2014/05/19 2:0 p.m.23 views

CVE-2013-6806

OpenText Exceed OnDemand EoD 8 allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via a crafted string in a response, which triggers a downgrade to simple authentication that sends credentials in plaintext...

6.2AI score0.01031EPSS
Exploits0References1
Cvelist
Cvelist
added 2014/05/19 2:0 p.m.24 views

CVE-2013-6807

The client in OpenText Exceed OnDemand EoD 8 supports anonymous ciphers by default, which allows man-in-the-middle attackers to bypass server certificate validation, redirect a connection, and obtain sensitive information via crafted responses...

6.1AI score0.00633EPSS
Exploits0References1
Rows per page
Query Builder