Lucene search
+L

8 matches found

nvd
nvd
added 2025/06/30 8:15 p.m.9 views

CVE-2025-52996

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions 2.32.0 and prior, the implementation of password protected links is error-prone, resulting in potential unprotected sharing of a file...

4.3CVSS0.00312EPSS
Exploits1References3
osv
osv
added 2025/06/30 7:58 p.m.5 views

CVE-2025-52996 File Browser's Password Protection of Links Vulnerable to Bypass

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions 2.32.0 and prior, the implementation of password protected links is error-prone, resulting in potential unprotected sharing of a file...

3.1CVSS6.6AI score0.00312EPSS
Exploits1References5
github
github
added 2025/06/30 5:49 p.m.10 views

File Browser's password protection of links is bypassable

Summary Files managed by the File Browser can be shared with a link to external persons. While the application allows protecting those links with a password, the implementation is error-prone, making an incidental unprotected sharing of a file possible. Impact File owners might rest in the...

4.3CVSS5.9AI score0.00312EPSS
Exploits1References6Affected Software2
osv
osv
added 2022/07/06 9:15 p.m.2 views

CVE-2022-20752

A vulnerability in Cisco Unified Communications Manager Unified CM, Cisco Unified Communications Manager Session Management Edition Unified CM SME, and Cisco Unity Connection could allow an unauthenticated, remote attacker to perform a timing attack. This vulnerability is due to insufficient...

5.3CVSS5.8AI score0.00967EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2020/04/15 12:0 a.m.6 views

The vulnerability of the SCADA system MasterSCADA, related to deficiencies in password protection mechanisms, allows attackers to gain access to the project.

The vulnerability of the SCADA system MasterSCADA is related to deficiencies in the password protection mechanism of the project file. Exploiting this vulnerability can allow an intruder to gain access to the project by resetting the password hash value...

4CVSS5.5AI score
Exploits0Affected Software1
osv
osv
added 2019/06/13 4:29 p.m.8 views

CVE-2019-0179

Insufficient password protection in the attestation database for Open CIT may allow an authenticated user to potentially enable information disclosure via local access...

4.4CVSS5.8AI score0.00252EPSS
Exploits0References1
osv
osv
added 2019/02/15 8:29 p.m.4 views

CVE-2019-4059

IBM Rational ClearCase 1.0.0.0 GIT connector does not sufficiently protect the document database password. An attacker could obtain the password and gain unauthorized access to the document database. IBM X-Force ID: 156583...

9.8CVSS7.1AI score
Exploits0References2
cnvd
cnvd
added 2018/11/16 12:0 a.m.7 views

Siemens SIMATIC STEP 7 Information Disclosure Vulnerability

Siemens SIMATIC STEP 7 TIA Portal is a suite of programming software for SIMATIC controllers from Siemens, Germany. The software provides PLC programming, design option packages and advanced drive technology. A security vulnerability exists in Siemens SIMATIC STEP 7 TIA Portal versions prior to...

5.5CVSS5.4AI score0.0024EPSS
Exploits0References1
Rows per page
Query Builder