Lucene search
K

18 matches found

Zero Day Initiative
Zero Day Initiative
added 2026/04/15 12:0 a.m.9 views

TrendAI Apex One Console Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex One. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Apex One console, which listens on TCP ports 8080 and 4343 by default. The issu...

9.8CVSS7.7AI score0.20253EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/04/15 12:0 a.m.8 views

TrendAI Apex One Console Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex One. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Apex One console, which listens on TCP ports 8080 and 4343 by default. The issu...

9.8CVSS7.7AI score0.1691EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/03/03 12:0 a.m.5 views

Trend Micro Apex One Console Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex One. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Apex One console, which listens on TCP ports 8080 and 4343 by default. The issu...

9.8CVSS6.3AI score0.03811EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2024/09/27 12:0 a.m.289 views

Backdoor.Win32.Prorat.jz MVID-2024-0699 Buffer Overflow

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2024 Original source: https://malvuln.com/advisory/277f9a4db328476300c4da5f680902ea.txt Contact: [email protected] Media: x.com/malvuln Threat: Backdoor.Win32.Prorat.jz Vulnerability: Remote Stack Buffer Overflow SEH Description: The RAT...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/09/27 12:0 a.m.197 views

Backdoor.Win32.Hupigon.fjcd Unauthenticated Open Proxy

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/284f36e35db6a0aa9a493f39d834367e.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.fjcd Vulnerability: Unauthenticated Open Proxy Description: The malware liste...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2021/07/05 12:0 a.m.263 views

Backdoor.Win32.Hupigon.aiss Unauthenticated Open Proxy

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/79affcb4051d36dde3d1543a4fd88368.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Hupigon.aiss Vulnerability: Unauthenticated Open Proxy Description: The malware liste...

0.1AI score
Exploits0
OSV
OSV
added 2019/12/12 7:15 p.m.2 views

CVE-2019-18332

A vulnerability has been identified in SPPA-T3000 Application Server All versions Service Pack R8.2 SP2. An attacker with network access to the Application Server could gain access to directory listings of the server by sending specifically crafted packets to 80/tcp, 8095/tcp or 8080/tcp. Please...

5.3CVSS6AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/01/23 12:0 a.m.8 views

The vulnerability of the ArubaOS operating systems, related to insufficient access control, allows attackers to gain access to arbitrary files on the device.

The vulnerability of the ArubaOS operating systems is related to insufficient access control. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to arbitrary files using the TCP ports 8080 or 8081...

7CVSS7.9AI score0.05673EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2017/11/06 12:0 a.m.31 views

Hewlett Packard Enterprise Intelligent Management Center TopoDebugServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...

9CVSS9AI score0.02131EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2017/11/06 12:0 a.m.29 views

Hewlett Packard Enterprise Intelligent Management Center TopoBroadcastServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...

9CVSS9AI score0.02131EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/09 12:0 a.m.4 views

HP Intelligent Management Center Arbitrary Code Execution Vulnerability (CNVD-2017-33288)

HP Intelligent Management Center IMC is a comprehensive management platform built from the ground up to support the Fault, Configuration, Accounting, Performance and Security FCAPS model. An arbitrary code execution vulnerability exists in HP Intelligent Management Center, where a remote user can...

10CVSS9.9AI score0.38483EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/09 12:0 a.m.4 views

HP Intelligent Management Center Arbitrary Code Execution Vulnerability (CNVD-2017-33289)

HP Intelligent Management Center IMC is a comprehensive management platform built from the ground up to support the Fault, Configuration, Accounting, Performance and Security FCAPS model. An arbitrary code execution vulnerability exists in HP Intelligent Management Center, which allows a remote...

10CVSS9.7AI score0.80119EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiative
added 2017/10/03 12:0 a.m.34 views

Hewlett Packard Enterprise Intelligent Management Center mibFileServlet Directory Traversal Denial of Service Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...

6.8CVSS2.2AI score0.02594EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2017/10/03 12:0 a.m.30 views

Hewlett Packard Enterprise Intelligent Management Center WebDMServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WebDMServlet, which listens on TCP ports...

10CVSS2.5AI score0.38483EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2017/10/03 12:0 a.m.27 views

Hewlett Packard Enterprise Intelligent Management Center mibFileServlet Directory Traversal Denial of Service Vulnerability

This vulnerability allows remote attackers to delete arbitrary directories on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specifi...

6.8CVSS2.5AI score0.02594EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2017/10/03 12:0 a.m.28 views

Hewlett Packard Enterprise Intelligent Management Center MibBrowserTopoFilterServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MibBrowserTopoFilterServlet, which listen...

10CVSS5.9AI score0.38483EPSS
Exploits0References1
OSV
OSV
added 2017/02/27 11:59 a.m.5 views

CVE-2017-2682

The Siemens web application RUGGEDCOM NMS V1.2 on port 8080/TCP and 8081/TCP could allow a remote attacker to perform a Cross-Site Request Forgery CSRF attack, potentially allowing an attacker to execute administrative operations, provided the targeted user has an active session and is induced to...

8.8CVSS5.9AI score0.01417EPSS
Exploits0References4
OSV
OSV
added 2017/02/27 11:59 a.m.4 views

CVE-2017-2683

A non-privileged user of the Siemens web application RUGGEDCOM NMS V1.2 on port 8080/TCP and 8081/TCP could perform a persistent Cross-Site Scripting XSS attack, potentially resulting in obtaining administrative permissions...

8.2CVSS5.8AI score0.01402EPSS
Exploits0References4
Rows per page
Query Builder