Lucene search
K

136 matches found

NVD
NVD
added 2018/10/18 10:29 p.m.16 views

CVE-2018-15765

Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains an Information Exposure vulnerability. The log file contents store sensitive data including executed commands to generate authentication tokens which may prove useful to an attacker for crafting malicious authentication token...

5.5CVSS5.2AI score0.00442EPSS
Exploits0References3
Prion
Prion
added 2018/10/18 10:29 p.m.16 views

Input validation

Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains Improper File Permission Vulnerabilities. The application contains multiple configuration files with world-readable permissions that could allow an authenticated malicious user to utilize the file contents to potentially...

4.6CVSS7.5AI score0.00368EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/10/18 10:0 p.m.21 views

CVE-2018-11079

Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains a Plaintext Password Storage vulnerability. Database credentials are stored in plaintext in a configuration file. An authenticated malicious user with access to the configuration file may obtain the exposed password to gain...

5.5CVSS7.8AI score0.00372EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/10/18 10:0 p.m.19 views

CVE-2018-11080

Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains Improper File Permission Vulnerabilities. The application contains multiple configuration files with world-readable permissions that could allow an authenticated malicious user to utilize the file contents to potentially...

7.3CVSS7.6AI score0.00368EPSS
Exploits0References3
CVE
CVE
added 2018/10/18 10:0 p.m.44 views

CVE-2018-15765

CVE-2018-15765 affects Dell EMC Secure Remote Services prior to 3.32.00.08. The vulnerability is an Information Exposure in which log files contain sensitive data, including executed commands that generate authentication tokens. This data could help an attacker craft malicious authentication toke...

5.5CVSS5.7AI score0.00442EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2018/10/18 10:0 p.m.49 views

CVE-2018-11080

Affected product: Dell EMC ESRS (Secure Remote Services) / ESRS Virtual Edition. Vulnerability: Improper file permissions in multiple configuration files that are world-readable, enabling an authenticated attacker to access file contents and potentially elevate privileges. Versions impacted: ESRS...

7.8CVSS7.5AI score0.00368EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/10/18 10:0 p.m.19 views

CVE-2018-15765

Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains an Information Exposure vulnerability. The log file contents store sensitive data including executed commands to generate authentication tokens which may prove useful to an attacker for crafting malicious authentication token...

3.4CVSS6.3AI score0.00442EPSS
Exploits0References3
CVE
CVE
added 2018/10/18 10:0 p.m.47 views

CVE-2018-11079

CVE-2018-11079 affects Dell EMC Secure Remote Services (ESRS) prior to 3.32.00.08. The vulnerability is plaintext storage of database credentials in a configuration file, allowing an authenticated user with access to that file to obtain the password and gain access to the application database. Se...

7.8CVSS7.7AI score0.00372EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2018/10/17 12:0 a.m.2 views

Dell EMC ESRS Virtual Edition Information Disclosure Vulnerability

Dell EMC ESRS is a secure storage product from DEll. An information disclosure vulnerability exists in Dell EMC ESRS Virtual Edition, where the contents of log files store sensitive data, including commands executed to generate authentication tokens, which could be useful to an attacker for...

5.5CVSS5.5AI score0.00442EPSS
Exploits0References1
myhack58
myhack58
added 2018/05/23 12:0 a.m.31 views

BMW multi models is the exposure of a common security vulnerability, a hacker remote attack-vulnerability warning-the black bar safety net

5 on 22 May, Tencent Cohen Laboratory released a BMW, many different models of 14 common security vulnerabilities, these vulnerabilities can be through physical contact and remote non-contact and other ways triggered, according to its official blog to reveal that at present all the vulnerability...

1.7AI score
Exploits0
Fedora
Fedora
added 2018/01/10 10:24 p.m.12 views

[SECURITY] Fedora 26 Update: python-jsonrpclib-0.3.1-1.fc26

This project is an implementation of the JSON-RPC v2.0 specification backwards-compatible as a client library, for Python 2.7 and Python 3. This version is a fork of jsonrpclib by Josh Marshall, usable with Pelix remote services...

4AI score
Exploits0
myhack58
myhack58
added 2017/06/19 12:0 a.m.102 views

Subaru car software vulnerability analysis—never a failure of token-vulnerability warning-the black bar safety net

Not long ago, one from California car, information security researcher Aaron Guzman, in Australia, held a computer security conference to introduce a black into the Subaru car of the method. In his own 2017 Subaru WRX STI was found in a surprising number of software vulnerabilities, through these...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2017/01/31 12:0 a.m.7 views

EMC Secure Remote Services Detection

This script performs SSH based detection of EMC Secure Remote Services SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

7.2AI score
Exploits0
OpenVAS
OpenVAS
added 2017/01/31 12:0 a.m.25 views

EMC Secure Remote Services Webinterface Detection

This script performs HTTP based detection of EMC Secure Remote Services Webinterface SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...

7.2AI score
Exploits0
OSV
OSV
added 2016/07/21 10:14 a.m.2 views

CVE-2016-3564

Unspecified vulnerability in the Oracle TopLink component in Oracle Fusion Middleware 12.1.3.0, 12.2.1.0, and 12.2.1.1 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JPA-RS...

8.1CVSS5.8AI score0.04517EPSS
Exploits0References3
Prion
Prion
added 2015/12/28 3:59 p.m.18 views

Directory traversal

Directory traversal vulnerability in the API in EMC Secure Remote Services Virtual Edition 3.x before 3.10 allows remote authenticated users to read log files via a crafted parameter...

4CVSS6.6AI score0.01974EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2015/12/28 3:0 p.m.41 views

CVE-2015-6852

CVE-2015-6852 affects EMC Secure Remote Services Virtual Edition 3.x prior to 3.10. The API is vulnerable to a directory traversal issue that allows remote authenticated users to read log files via a crafted parameter. The vulnerability is described in multiple sources (NVD/CNVD) with a CVSS v3 b...

4.3CVSS4.2AI score0.01974EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2015/12/24 12:0 a.m.2 views

EMC Secure Remote Services Virtual Edition Directory Traversal Vulnerability

EMC Secure Remote Services Virtual Edition ESRS VE is a suite of remote services virtual edition software from EMC Corporation. The software is used to provide a remote connection between EMC customer service and the user's EMC products and solutions. A directory traversal vulnerability exists in...

4.3CVSS7AI score0.01974EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2015/12/24 12:0 a.m.74 views

eWON XSS / CSRF / Session Management / RBAC Issues

eWON sa Industrial router - Multiple Vulnerabilities eWON connects the machine across the Internet Breaking the barrier between industrial applications and IT standards, the mission of eWON is to connect industrial machines securely to the Internet, enabling easy remote access and gathering all...

7.5CVSS0.3AI score0.03397EPSS
Exploits2
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.58 views

Weak authentication in EMC Secure Remote Services Virtual Edition Web Portal

------------------------------------------------------------------------ Weak authentication in EMC Secure Remote Services Virtual Edition Web Portal ------------------------------------------------------------------------ Han Sahin, November 2014...

9.3CVSS1.6AI score0.02518EPSS
Exploits0
Rows per page
Query Builder