Lucene search
K

22 matches found

CVE
CVE
added 2026/05/07 8:37 a.m.17 views

CVE-2024-43384

The CVE-2024-43384 entry concerns Phoenix Contact MGUARD products. Affected component: the devices’ handling/storage/transfer of sensitive data. Root cause: improper removal of sensitive information before storage or transfer, enabling exposure of the root password. Impact: a low-privileged remot...

8CVSS5.8AI score0.0034EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.14 views

PHOENIX CONTACT多款产品 安全漏洞

PHOENIX CONTACT FL MGUARD 2102, among others, are products of the German company PHOENIX CONTACT. PHOENIX CONTACT FL MGUARD 2102 is a router. PHOENIX CONTACT FL MGUARD 2105 is also a router. PHOENIX CONTACT FL MGUARD represents a series of routers. Several products from PHOENIX CONTACT have...

8CVSS5.9AI score0.0034EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/09 12:0 a.m.1 views

Barco ClickShare Devices Exposure of Sensitive Information to an Unauthorized Actor (CVE-2016-3152)

Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow remote attackers to obtain the root password by downloading and extracting the firmware image. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

9.8CVSS8.5AI score0.02774EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-4238

Malware in sbrugna...

6.7CVSS6.6AI score0.00376EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-4819

Malware in sbrugna...

7.8CVSS7.5AI score0.00568EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-6356

Malware in sbrugna...

10CVSS9.5AI score0.02276EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-5961

Malware in sbrugna...

7CVSS7.1AI score0.00309EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-16527

Malware in sbrugna...

8.8CVSS7AI score0.01036EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-3305

Malware in sbrugna...

4.9CVSS5.2AI score0.02454EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-0842

Malware in sbrugna...

7.2CVSS6.5AI score0.00401EPSS
Exploits0References2
CVE
CVE
added 2025/09/02 11:26 a.m.19 views

CVE-2025-52549

CVE-2025-52549 affects Copeland/E3 Site Supervisor Control. Vulnerable firmware versions prior to 2.31F01 generate a root Linux password on each boot, enabling an attacker to derive the root password from known or easily obtainable parameters. Impacts include full device compromise with root acce...

9.8CVSS6.5AI score0.00451EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 5:51 a.m.5 views

CVE-2023-22957

An issue was discovered in libacdes3.so on AudioCodes VoIP desk phones through 3.4.4.1000. Due to the use of hard-coded cryptographic key, an attacker with access to backup or configuration files is able to decrypt encrypted values and retrieve sensitive information, e.g., the device root passwor...

7.5CVSS6.9AI score0.01131EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:3 p.m.8 views

CVE-2021-37157

An issue was discovered in OpenGamePanel OGP-Agent-Linux through 2021-08-14. $HOME/OGP/Cfg/Config.pm has the root password in cleartext...

9CVSS7.1AI score0.01311EPSS
Exploits4References1
BDU FSTEC
BDU FSTEC
added 2024/07/29 12:0 a.m.4 views

The vulnerability of the GLPI system’s handling of requests and incidents, related to insufficient protection of user credentials, allows a malicious individual to obtain unauthorized access to the root account’s password.

The vulnerability in the GLPI system’s request and incident handling process is related to an error in passing configuration data via JavaScript. In this error, some records are filtered out, but the ldappass variable is not filtered. Exploiting this vulnerability could allow a remote attacker to...

7.8CVSS7.2AI score0.01221EPSS
Exploits0References4Affected Software2
Positive Technologies
Positive Technologies
added 2024/06/07 12:0 a.m.3 views

PT-2024-13698 · Precor · Precor Touchscreen Console

Name of the Vulnerable Software and Affected Versions: Precor touchscreen console versions P62, P80, and P82 Description: The issue allows a remote attacker to obtain sensitive information because the root password is stored in /etc/passwd. An attacker could exploit this to extract files and obta...

8.8CVSS6.8AI score0.00322EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:10 a.m.3 views

SUSE CVE-2019-13314

virt-bootstrap 1.1.0 allows local users to discover a root password by listing a process, because this password may be present in the --root-password option to virtbootstrap.py...

2.8CVSS6.8AI score0.00568EPSS
Exploits1References6
CNNVD
CNNVD
added 2023/02/03 12:0 a.m.6 views

TOTOLINK CA300-PoE 信任管理问题漏洞

The TOTOLINK CA300-PoE is a wireless access point from China Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK CA300-PoE version V6.2c.884, which originates from /etc/shadow storing the password of the root account...

9.8CVSS8.4AI score0.00819EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/01/27 12:0 a.m.7 views

PHICOMM K2G A1 安全漏洞

The PHICOMM K2G A1 is a dual-band Gigabit wireless WiFi router from PHICOMM China. A security vulnerability exists in the PHICOMM K2G A1 version v22.6.534.263, which originates from an attacker being able to discover the passwords of the root and admin users stored in the plaintext...

7.5CVSS7.4AI score0.00441EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/08/04 12:0 a.m.6 views

TOTOLINK A3600R 信任管理问题漏洞

TOTOLINK A3600R is a 6 antenna 1200M wireless router from TOTOLINK China.A security vulnerability exists in TOTOLINK A3600R Firmware V4.1.2cu.5182B20201102 version, which originates from the inclusion of the root password in /etc/shadow.sample. contains the root password. An attacker could exploi...

9.8CVSS5.6AI score0.00876EPSS
Exploits1References3
OSV
OSV
added 2017/01/12 11:59 p.m.3 views

CVE-2016-3152

Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow remote attackers to obtain the root password by downloading and extracting the firmware image...

9.8CVSS5.8AI score
Exploits0References3
Rows per page
Query Builder