Lucene search
+L

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2024-49451

Malicious code in bioql PyPI...

10CVSS9.2AI score0.01265EPSS
Exploits2References1
OSV
OSV
added 2024/09/25 1:15 a.m.4 views

CVE-2024-8877

Improper neutralization of special elements results in a SQL Injection vulnerability in Riello Netman 204. It is only limited to the SQLite database of measurement data.This issue affects Netman 204: through 4.05...

9.8CVSS5.8AI score
Exploits0References2
OSV
OSV
added 2024/09/25 1:15 a.m.5 views

CVE-2024-8878

The password recovery mechanism for the forgotten password in Riello Netman 204 allows an attacker to reset the admin password and take over control of the device.This issue affects Netman 204: through 4.05...

9.8CVSS5.8AI score0.01265EPSS
Exploits2References2
NVD
NVD
added 2024/09/25 1:15 a.m.45 views

CVE-2024-8878

The password recovery mechanism for the forgotten password in Riello Netman 204 allows an attacker to reset the admin password and take over control of the device.This issue affects Netman 204: through 4.05...

10CVSS0.01265EPSS
Exploits2References2
NVD
NVD
added 2024/09/25 1:15 a.m.31 views

CVE-2024-8877

Improper neutralization of special elements results in a SQL Injection vulnerability in Riello Netman 204. It is only limited to the SQLite database of measurement data.This issue affects Netman 204: through 4.05...

9.8CVSS0.7703EPSS
Exploits2References2
Cvelist
Cvelist
added 2024/09/24 3:19 p.m.53 views

CVE-2024-8877 SQL Injection

Improper neutralization of special elements results in a SQL Injection vulnerability in Riello Netman 204. It is only limited to the SQLite database of measurement data.This issue affects Netman 204: through 4.05...

6.9CVSS0.7703EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/09/24 3:19 p.m.18 views

CVE-2024-8877 SQL Injection

Improper neutralization of special elements results in a SQL Injection vulnerability in Riello Netman 204. It is only limited to the SQLite database of measurement data.This issue affects Netman 204: through 4.05...

6.9CVSS7.6AI score0.7703EPSS
Exploits2References1
CVE
CVE
added 2024/09/24 3:19 p.m.107 views

CVE-2024-8877

Riello Netman 204 contains a SQL injection in three CGI endpoints: /cgi-bin/db_datalog_w.cgi, /cgi-bin/db_eventlog_w.cgi, and /cgi-bin/db_multimetr_w.cgi. The Nuclei template details unauthenticated SQLi that lets an attacker modify collected log data. The CVE description confirms the issue is li...

9.8CVSS9.8AI score0.7703EPSS
In wildExploits2References2Affected Software1
Cvelist
Cvelist
added 2024/09/24 3:14 p.m.60 views

CVE-2024-8878 Unauthenticated Password Reset

The password recovery mechanism for the forgotten password in Riello Netman 204 allows an attacker to reset the admin password and take over control of the device.This issue affects Netman 204: through 4.05...

10CVSS0.01265EPSS
Exploits2References1
CVE
CVE
added 2024/09/24 3:14 p.m.88 views

CVE-2024-8878

CVE-2024-8878 concerns Riello NetMan 204. The vulnerability allows an unauthenticated password reset via the endpoint /recoverpassword.html, enabling an attacker to obtain the device’s netmanid and compute a recovery code to reset the admin password (admin:admin). Affected software is NetMan 204 ...

10CVSS9.7AI score0.01265EPSS
Exploits2References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/19 12:0 a.m.12 views

PT-2024-39296 · Riello · Riello Netman 204

Name of the Vulnerable Software and Affected Versions: Riello Netman 204 versions through 4.05 Description: The password recovery mechanism for the forgotten password in Riello Netman 204 allows an attacker to reset the admin password and take over control of the device. Recommendations: For...

10CVSS7.1AI score0.01265EPSS
Exploits2References8
OpenVAS
OpenVAS
added 2023/03/07 12:0 a.m.49 views

Riello UPS / NetMan Detection Consolidation

Consolidation of Riello NetMan network card and the underlying uninterruptible power supply UPS device detections. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

5.2AI score
Exploits0References1
NVD
NVD
added 2019/07/03 5:15 p.m.19 views

CVE-2017-6900

An issue was discovered in Riello NetMan 204 14-2 and 15-2. The issue is with the login script and wrongpass Python script used for authentication. When calling wrongpass, the variables $VAL0 and $VAL1 should be enclosed in quotes to prevent the potential for Bash command injection. Further to...

10CVSS9AI score0.02625EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/09/28 12:0 a.m.131 views

Riello UPS / NetMan Detection (HTTP)

HTTP based detection of Riello NetMan network cards and the underlying uninterruptible power supply UPS device. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

5.2AI score
Exploits0
OpenVAS
OpenVAS
added 2016/09/28 12:0 a.m.203 views

Riello NetMan 204 Default Credentials (SSH)

The remote Riello NetMan 204 network card is using known default credentials for the SSH login. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.8CVSS5.5AI score0.00432EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/09/28 12:0 a.m.468 views

Riello NetMan Default Credentials (HTTP)

The remote Riello NetMan network card is using known default credentials for the HTTP login. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.8CVSS5.5AI score0.00432EPSS
Exploits0References2
Rows per page
Query Builder