Lucene search
K

10 matches found

CNNVD
CNNVD
added 2026/06/05 12:0 a.m.9 views

RIELLO UPS NetMan 信任管理问题漏洞

Riello UPS NetMan is a network adapter developed by the Italian company Riello UPS. The Riello UPS NetMan 204 has a vulnerability related to trust management. This vulnerability stems from a hardcoded backdoor account with a username and password of “eurek”. Unauthenticated remote attackers can...

9.8CVSS5.4AI score0.00432EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/25 8:18 p.m.14 views

CVE-2025-68914

Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/login.cgi username SQL Injection. For example, an attacker can delete the LOGINFAILEDTABLE table...

6.5CVSS7.5AI score0.00188EPSS
Exploits1References1
NVD
NVD
added 2025/12/24 8:16 p.m.7 views

CVE-2025-68916

Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/certsupload.cgi /../ directory traversal for file upload with resultant code execution...

9.1CVSS0.02251EPSS
Exploits1References1
OSV
OSV
added 2025/12/24 8:16 p.m.13 views

CVE-2025-68916

Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/certsupload.cgi /../ directory traversal for file upload with resultant code execution...

7.2CVSS5.9AI score0.02251EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/12/24 7:40 p.m.2 views

CVE-2025-68915

Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/loginbannerw.cgi XSS via a crafted banner...

5.5CVSS5.7AI score0.00167EPSS
Exploits1References1
CVE
CVE
added 2025/12/24 7:37 p.m.15 views

CVE-2025-68914

The CVE-2025-68914 entry describes a SQL injection in Riello UPS NetMan 208 Application before 1.12 via cgi-bin/login.cgi username, enabling manipulation such as deleting LOGINFAILEDTABLE. Affected product: Riello UPS NetMan 208 Application (versions

6.5CVSS7.2AI score0.00188EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.4 views

Riello UPS NetMan 208 安全漏洞

Riello UPS NetMan 208 is a network management card from Riello UPS, Italy. A security vulnerability exists in Riello UPS NetMan 208 versions prior to 1.12, which stems from the presence of directory traversal in cgi-bin/certsupload.cgi, which could lead to file uploads and code execution...

9.1CVSS7.2AI score0.02251EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.5 views

PT-2025-53347

Name of the Vulnerable Software and Affected Versions Riello UPS NetMan 208 Application versions prior to 1.12 Description The software contains a directory traversal flaw in the cgi-bin/certsupload.cgi component. This allows for file upload outside the intended path, potentially leading to code...

9.1CVSS7.4AI score0.02251EPSS
Exploits1References11
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.6 views

Riello UPS NetMan 208 SQL注入漏洞

Riello UPS NetMan 208 is a network management card from Riello UPS, Italy. A SQL injection vulnerability exists in Riello UPS NetMan 208 versions prior to 1.12, which originates from the presence of SQL injection in cgi-bin/login.cgi, which may result in table deletion...

6.5CVSS7.8AI score0.00188EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/06/21 12:0 a.m.8 views

RIELLO UPS NetMan 204 跨站请求伪造漏洞

Riello Ups RIELLO UPS NetMan is a network adapter from the Italian company Riello Ups. A security vulnerability exists in RIELLO UPS NetMan version 204 02.05, which stems from the lack of proper validation of CRSF tokens and a CSRF vulnerability that allows an attacker to try to change the...

8.8CVSS7.7AI score0.0035EPSS
Exploits0References2
Rows per page
Query Builder