Lucene search
K

92 matches found

CNNVD
CNNVD
added 2025/11/18 12:0 a.m.3 views

METZ CONNECT多款产品 安全漏洞

METZ CONNECT Energy-Controlling EWIO2-M and others are products of METZ CONNECT, Germany.METZ CONNECT Energy-Controlling EWIO2-M is a high performance data logger.METZ CONNECT Energy- Controlling EWIO2-M-BM is a high performance data logger.METZ CONNECT Ethernet-IO EWIO2-BM is a sensor and actuat...

9.8CVSS6.7AI score0.00576EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-16344

Malware in sbrugna...

10CVSS9.5AI score0.02241EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-4262

Malware in sbrugna...

8.8CVSS8.6AI score0.01349EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-30192

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00406EPSS
Exploits0References3
NVD
NVD
added 2025/09/18 9:15 p.m.5 views

CVE-2025-30519

Dover Fueling Solutions ProGauge MagLink LX4 Devices have default root credentials that cannot be changed through standard administrative means. An attacker with network access to the device can gain administrative access to the system...

9.8CVSS0.00406EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/09/18 12:0 a.m.5 views

Dover Fueling Solutions ProGauge MagLink LX4 安全漏洞

The Dover Fueling Solutions ProGauge MagLink LX4 is an automated tank gauging system console from Dover Fueling Solutions, USA. A security vulnerability exists in several Dover products that stems from the use of default root credentials that cannot be changed through standard administrative...

9.8CVSS6.8AI score0.00406EPSS
Exploits0References3
Veracode
Veracode
added 2025/09/05 10:20 a.m.6 views

Privilege Escalation

github.com/kubernetes-sigs/image-builder is vulnerable to privilege escalation. The vulnerability is due to default root credentials being enabled during the Windows image build process with Nutanix or VMware OVA providers, which allows an attacker with access to the build VM to modify the image...

7.5CVSS7AI score0.00336EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/08/19 11:19 p.m.18 views

CVE-2025-7342

A security issue was discovered in the Kubernetes Image Builder where default credentials are enabled during the Windows image build process when using the Nutanix or VMware OVA providers. These credentials, which allow root access, are disabled at the conclusion of the build. Kubernetes clusters...

7.5CVSS6.5AI score0.00336EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/18 12:0 a.m.4 views

CVE-2025-55584

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain insecure credentials for the telnet service and root account...

7.7AI score0.00268EPSS
Exploits1References1
NCSC
NCSC
added 2025/07/03 7:43 a.m.5 views

Vulnerability fixed in Cisco Unified Communications Manager

Cisco has fixed a vulnerability in Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition. The vulnerability is in the hard-coded root SSH credentials that cannot be changed or deleted. This allows unauthenticated remote attackers to log in and...

10CVSS7.8AI score0.01061EPSS
Exploits0References1
OSV
OSV
added 2025/07/02 5:15 p.m.4 views

CVE-2025-20309

A vulnerability in Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an unauthenticated, remote attacker to log in to an affected device using the root account, which has default, static credentials that...

10CVSS6AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/05/30 8:1 p.m.14 views

Para Server Logs Sensitive Information

CWE ID: CWE-532 Insertion of Sensitive Information into Log File CVSS: 7.5 High Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Component: Para Server Initialization Logging Version: Para v1.50.6 File Path:...

6.2CVSS7.1AI score0.00145EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/02/14 12:0 a.m.11 views

CVE-2024-57790

IXON B.V. IXrouter IX2400 Industrial Edge Gateway v3.0 was discovered to contain hardcoded root credentials stored in the non-volatile flash memory. This vulnerability allows physically proximate attackers to gain root access via UART or SSH...

0.0017EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/30 12:0 a.m.4 views

PT-2024-31945 · Pix Link · Pix-Link Lv-Wr22

Name of the Vulnerable Software and Affected Versions: PIX-LINK LV-WR22 version RE3002-P1-01 V117.0 Description: The issue concerns Improper Access Control, where the TELNET service is enabled with weak credentials for a root-level account, and these credentials cannot be changed. Recommendations...

8.8CVSS7AI score0.003EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2024/07/04 12:0 a.m.7 views

The vulnerability of the image.bin file in the microprogramming software of the Ethernet serial interface converter Industrial Transformer Westermo EDW-100 allows a hacker to disclose user name and password information for the root account.

The vulnerability of the image.bin file in the microprogramming software of the Ethernet serial interface converter Westermo EDW-100 is related to the use of rigidly encrypted login credentials. Exploiting this vulnerability can allow a malicious actor to obtain information such as the username a...

10CVSS5.5AI score0.00551EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.4 views

PT-2024-2712 · Adtran · Adtran Netvanta 3120

Name of the Vulnerable Software and Affected Versions: AdTran NetVanta 3120 version 18.01.01.00.E Description: The issue is related to the TELNET service of AdTran NetVanta 3120 devices, which is enabled by default and has default credentials for a root-level account. This is associated with...

9CVSS7.3AI score0.00475EPSS
Exploits0References13
OSV
OSV
added 2024/02/02 2:15 a.m.5 views

CVE-2024-22902

Vinchin Backup & Recovery v7.2 was discovered to be configured with default root credentials...

9.8CVSS5.7AI score0.01147EPSS
Exploits4References6
CNNVD
CNNVD
added 2024/02/02 12:0 a.m.7 views

Vinchin Backup and Recovery Security Vulnerabilities

Vinchin Backup and Recovery is an easy-to-use, safe and reliable virtual machine data protection software from China Yunqi Technology Vinchin. It is used for backup and recovery. A security vulnerability exists in Vinchin Backup and Recovery version v7.2, which originates from configuring the...

9.8CVSS6.9AI score0.01147EPSS
Exploits4References5
Vulnrichment
Vulnrichment
added 2024/02/02 12:0 a.m.8 views

CVE-2024-22902

Vinchin Backup & Recovery v7.2 was discovered to be configured with default root credentials...

9.6AI score0.01147EPSS
Exploits4References2
Positive Technologies
Positive Technologies
added 2024/02/01 12:0 a.m.8 views

PT-2024-1516 · Vinchin · Vinchin Backup & Recovery

Name of the Vulnerable Software and Affected Versions: Vinchin Backup & Recovery version 7.2 Description: The issue is related to the use of default root credentials in Vinchin Backup & Recovery. This could allow a remote attacker to gain elevated privileges to the level of a root user by...

10CVSS9.4AI score0.01147EPSS
Exploits4References12
Rows per page
Query Builder