Lucene search
K

92 matches found

Packet Storm
Packet Storm
added 2024/01/26 12:0 a.m.370 views

Vinchin Backup And Recovery 7.2 Default Root Credentials

CVE ID: CVE-2024-22902 Title: Default Root Credentials Vulnerability in Vinchin Backup & Recovery v7.2 Suggested Description: Vinchin Backup & Recovery version 7.2 has been identified as being configured with default root credentials, posing a significant security vulnerability. Additional...

7.4AI score0.01147EPSS
Exploits4
OSV
OSV
added 2023/10/04 5:15 p.m.3 views

CVE-2023-20101

A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to log in to an affected device using the root account, which has default, static credentials that cannot be changed or deleted. This vulnerability is due to the presence of static user credentials for th...

9.8CVSS6AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/04 12:0 a.m.3 views

PT-2023-5675 · Cisco · Cisco Emergency Responder

Name of the Vulnerable Software and Affected Versions: Cisco Emergency Responder affected versions not specified Description: The issue is related to the presence of static user credentials for the root account in Cisco Emergency Responder, which are typically reserved for use during development...

9.8CVSS9.6AI score0.02447EPSS
Exploits0References30
CNNVD
CNNVD
added 2023/10/04 12:0 a.m.3 views

Cisco Emergency Responder 信任管理问题漏洞

Cisco Emergency Responder is an emergency response framework from Cisco USA. A trust management issue vulnerability exists in Cisco Emergency Responder version 12.51SU4, which arises from the presence of static user credentials for the root account, which are typically used during development, an...

9.8CVSS7.4AI score0.02447EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/05/11 12:0 a.m.5 views

PT-2023-20642 · Usr · Usr-G806

Name of the Vulnerable Software and Affected Versions: USR USR-G806 version 1.0.41 Description: A critical issue was found in the Web Management Page component, where the manipulation of the username/password argument with the input root leads to the use of a hard-coded password. This can be...

10CVSS9.5AI score0.03152EPSS
Exploits1References6
GithubExploit
GithubExploit
added 2023/04/25 11:39 a.m.295 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Apache Shardingsphere_Elasticjob-Ui

CVE-2022-22733 CVE-2022-22733 is a vulnerabilit that affects...

6.5CVSS6.7AI score0.37594EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2023/04/20 12:0 a.m.5 views

The vulnerability of the MinIO object storage server, related to insecure management of privileges, allows an attacker to disable access to the root account’s credentials.

The vulnerability of the MinIO object storage server relates to a user with administrator privileges in the console. This user can potentially create another user that matches the root access credentials. Once this user is successfully created, the root account’s credentials will no longer functi...

7.7CVSS6.5AI score0.00898EPSS
Exploits1References4Affected Software2
Redos
Redos
added 2023/04/11 12:0 a.m.65 views

ROS-20230411-03

The Minio object store vulnerability is related to a user with console administrator privileges who could potentially create a user that matches the root access key, once this user is successfully created, root credentials will stop working properly. Exploitation of the of the vulnerability could...

6.5CVSS6.5AI score0.00898EPSS
Exploits1
OSV
OSV
added 2022/06/30 1:15 p.m.2 views

CVE-2021-41506

Xiaongmai AHB7008T-MH-V2, AHB7804R-ELS, AHB7804R-MH-V2, AHB7808R-MS-V2, AHB7808R-MS, AHB7808T-MS-V2, AHB7804R-LMS, HI351850H10LS39 V4.02.R11.7601.Nat.Onvif.20170420, V4.02.R11.Nat.Onvif.20160422, V4.02.R11.7601.Nat.Onvif.20170424, V4.02.R11.Nat.Onvif.20170327, V4.02.R11.Nat.Onvif.20161205,...

9.8CVSS5.8AI score0.02106EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/06/30 12:0 a.m.4 views

PT-2022-11421 · Xiongmai · Xiaongmai Ahb7804R-Els +4

Name of the Vulnerable Software and Affected Versions: Xiaongmai AHB7008T-MH-V2 Xiaongmai AHB7804R-ELS Xiaongmai AHB7804R-MH-V2 Xiaongmai AHB7808R-MS-V2 Xiaongmai AHB7808R-MS Xiaongmai AHB7808T-MS-V2 Xiaongmai AHB7804R-LMS HI3518 50H10L S39 version V4.02.R11.7601.Nat.Onvif.20170420 HI3518 50H10L...

10CVSS9.2AI score0.02106EPSS
Exploits1References6
OSV
OSV
added 2022/06/24 3:15 p.m.4 views

CVE-2022-1668

Weak default root user credentials allow remote attackers to easily obtain OS superuser privileges over the open TCP port for SSH...

9.8CVSS5.8AI score0.02025EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/10/13 12:0 a.m.9 views

PT-2021-23119 · Minio · Minio

Name of the Vulnerable Software and Affected Versions: Minio versions RELEASE.2021-10-10T16-53-30Z through RELEASE.2021-10-12T23-59-59Z Description: The issue involves bypassing policy restrictions on regular users in Minio, a Kubernetes native application for cloud storage. Normally, the...

8.8CVSS8.6AI score0.01244EPSS
Exploits0References8
Packet Storm
Packet Storm
added 2021/10/11 12:0 a.m.346 views

Cypress Solutions CTM-200/CTM-ONE Hard-Coded Credentials Remote Root

!/usr/bin/env python3 Cypress Solutions CTM-200/CTM-ONE Hard-coded Credentials Remote Root Telnet/SSH Vendor: Cypress Solutions Inc. Product web page: https://www.cypress.bc.ca Affected version: CTM-ONE 1.3.6-latest CTM-ONE 1.3.1 CTM-ONE 1.1.9 CTM200 2.7.1.5659-latest CTM200 2.0.5.3356-184 Summar...

0.3AI score
Exploits0
OSV
OSV
added 2021/04/02 4:15 p.m.4 views

CVE-2020-11925

An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Authentication to the device is based on a username and password. The root credentials are the same across all devices of this model...

8.8CVSS5.8AI score0.01349EPSS
Exploits1References2
Prion
Prion
added 2021/04/02 4:15 p.m.20 views

Design/Logic Flaw

An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Authentication to the device is based on a username and password. The root credentials are the same across all devices of this model...

8.3CVSS8.7AI score0.01349EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/04/02 3:41 p.m.20 views

CVE-2020-11925

An issue was discovered in Luvion Grand Elite 3 Connect through 2020-02-25. Authentication to the device is based on a username and password. The root credentials are the same across all devices of this model...

8.8AI score0.01349EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/04/02 12:0 a.m.4 views

Luvion Grand Elite 3 Connect 安全漏洞

Luvion Grand Elite 3 Connect Plus HD baby monitor is a smart monitor from Luvion, Netherlands. It monitors the baby's activity A security vulnerability exists in the Luvion Grand Elite 3 Connect through 2020-02-25, which stems from the device's authentication method being a username and password,...

8.8CVSS7.9AI score0.01349EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2021/04/02 12:0 a.m.4 views

PT-2021-9431 · Luvion · Luvion Grand Elite 3 Connect

Name of the Vulnerable Software and Affected Versions: Luvion Grand Elite 3 Connect versions through 2020-02-25 Description: An issue was discovered where authentication to the device is based on a username and password, with the root credentials being the same across all devices of this model...

8.8CVSS7.6AI score0.01349EPSS
Exploits1References4
OSV
OSV
added 2021/02/10 7:15 p.m.1 views

CVE-2021-27151

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded rootmet / m3tr0r00t credentials for an ISP...

9.8CVSS7.3AI score0.23633EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/02/10 12:0 a.m.5 views

FiberHome HG6245D devices 信任管理问题漏洞

The HG6245D is an FTTH ONT router from FiberHome. A hard-coded credentials vulnerability exists in the FiberHome HG6245D. The vulnerability stems from the web daemon containing hardcoded rootmet/m3tr0r00t credentials against an ISP. No details of the vulnerability are provided at this time...

9.8CVSS7.3AI score0.23633EPSS
Exploits1References1
Rows per page
Query Builder