Lucene search
K

24 matches found

Vulnrichment
Vulnrichment
added 2025/12/15 2:41 p.m.2 views

CVE-2025-34180 NetSupport Manager < 14.12.0001 Gateway Key Reversible Encoding Credential Recovery

NetSupport Manager 14.12.0001 relies on a shared Gateway Key for authentication between Manager/Control, Client, and Connectivity Server components. The key is stored using a reversible encoding scheme. An attacker who obtains access to a deployed client configuration file can decode the stored...

8.4CVSS6.6AI score0.00143EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/15 12:0 a.m.5 views

PT-2025-51232

NetSupport Manager 14.12.0001 relies on a shared Gateway Key for authentication between Manager/Control, Client, and Connectivity Server components. The key is stored using a reversible encoding scheme. An attacker who obtains access to a deployed client configuration file can decode the stored...

8.4CVSS7AI score0.00143EPSS
Exploits0References3
NVD
NVD
added 2019/12/27 7:15 p.m.21 views

CVE-2019-20047

An issue was discovered on Alcatel-Lucent OmniVista 4760 devices, and 8770 devices before 4.1.2. An incorrect web server configuration allows a remote unauthenticated attacker to retrieve the content of its own session files. Every session file contains the administrative LDAP credentials encoded...

7.5CVSS7.6AI score0.02706EPSS
Exploits1References4
Prion
Prion
added 2017/07/27 6:29 a.m.15 views

Cross site scripting

Zoho ManageEngine Event Log Analyzer 11.4 and 11.5 allows remote attackers to obtain an authenticated user's password via XSS vulnerabilities or sniffing non-SSL traffic on the network, because the password is represented in a cookie with a reversible encoding method...

4.3CVSS6.2AI score0.02293EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder