14 matches found
The vulnerability of the Versa Director network infrastructure management software platform arises from the use of pre-installed credentials during configuration with PostgreSQL. This allows attackers to gain access to confidential data, enhance their privileges, and potentially execute arbitrary code.
The vulnerability of the Versa Director network infrastructure management software platform is related to the use of pre-installed credentials during configuration with PostgreSQL. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, enhance their...
PT-2024-3457 · Siemens · Simatic Cn 4100
Name of the Vulnerable Software and Affected Versions: SIMATIC CN 4100 versions prior to V3.0 Description: A vulnerability has been identified in the SIMATIC CN 4100 device, which contains undocumented users and credentials. This issue is related to the use of pre-installed credentials. An attack...
The vulnerability of the D-LINK GO-RT-AC750 router’s microprogramming software allows a hacker to elevate their privileges to the root level.
The vulnerability of the D-LINK GO-RT-AC750 router’s microprogramming software is related to the use of pre-installed login credentials. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the root level...
PT-2023-8310 · Buffalo · Buffalo Vr-S1000
Name of the Vulnerable Software and Affected Versions: BUFFALO VR-S1000 versions 2.37 and earlier Description: The issue is related to the use of a hard-coded cryptographic key in the firmware, which may allow an attacker to analyze the password of a specific product user. This could potentially...
The vulnerability of the /web_cste/cgi-bin/product.ini component of the Telnet service in TOTOLINK T8 microprogramming device allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the /webcste/cgi-bin/product.ini component of the Telnet service in TOTOLINK T8 microprogramming router software is related to the use of pre-installed user credentials. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the FortiSIEM security management system’s database allows a attacker to gain access to the device’s database.
The vulnerability of the FortiSIEM security management system is related to the use of pre-installed credentials. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to the device’s database...
The vulnerability of NETGEAR’s Wi-Fi router software, including models RBK352, RBR350, and RBS350, arises from the use of pre-installed credentials. This allows a hacker to trigger a service failure.
The vulnerability of NETGEAR’s Wi-Fi router software, including models RBK352, RBR350, and RBS350, lies in the use of pre-installed credentials. Exploiting this vulnerability could allow a malicious actor to remotely cause service failures...
The vulnerability of D-Link COVR-2600R and COVR-3902 router microprogramming software, related to the use of pre-installed login credentials, allows attackers to enhance their privileges.
The vulnerability of D-Link COVR-2600R and COVR-3902 router microprogramming software is related to the use of pre-installed login credentials. Exploiting this vulnerability can allow a remote attacker to gain increased privileges...
The vulnerability in the web interface of the Cisco Data Center Network Manager system allows a hacker to escalate their privileges.
The vulnerability of the Web interface of the Cisco Data Center Network Manager DCNM system is related to the use of pre-installed credentials. Exploiting this vulnerability could allow a malicious actor to increase their privileges by using a static encryption key...
The vulnerability of the Cluster Manager component of the Cisco Policy Suite’s software management platform allows a malicious actor to gain access to the system and execute arbitrary commands with root privileges.
The vulnerability of the Cluster Manager component of the Cisco Policy Suite management software is related to the use of pre-installed user credentials. Exploiting this vulnerability could allow an attacker to gain access to the system and execute arbitrary commands with root privileges...
The vulnerability of FTP servers of microprogrammed software-controlled Schneider Electric Modicon Premium, Modicon Quantum, Modicon M340, and Modicon BMXNOR0200 allows a intruder to gain access to the devices.
The vulnerability of FTP servers of microprogrammed logic controllers from Schneider Electric—Modicon Premium, Modicon Quantum, Modicon M340, and Modicon BMXNOR0200—is related to the use of pre-installed credentials. Exploiting this vulnerability can allow a malicious actor to gain access to the...
The vulnerability of the microprogrammed surveillance camera software ACTi models series B, D, E, and I, due to lack of access control mechanisms, allows intruders to gain access to the device or cause malfunctions during maintenance.
The vulnerability of the microprogrammed surveillance camera software ACTi models series B, D, E, and I is related to access control deficiencies. Exploiting this vulnerability allows a malicious actor to alter the device’s settings by directly accessing the...
The vulnerability of ExaGrid backup device’s microprogramming software, related to the use of pre-installed credentials, allows a perpetrator to gain access to devices with root privileges.
The vulnerability of ExaGrid backup device software relates to the use of pre-installed credentials. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to the device with root privileges, using the pre-installed password “inflection” for the “root” account...
PT-2017-3193 · Korenix · Jetnet5628G-R +7
Name of the Vulnerable Software and Affected Versions: Korenix JetNet JetNet5018G version 1.4 Korenix JetNet JetNet5310G version 1.4a Korenix JetNet JetNet5428G-2G-2FX version 1.4 Korenix JetNet JetNet5628G-R version 1.4 Korenix JetNet JetNet5628G version 1.4 Korenix JetNet JetNet5728G-24P versio...