Lucene search
K

114 matches found

Positive Technologies
Positive Technologies
added 2025/11/27 12:0 a.m.9 views

PT-2025-48272

Name of the Vulnerable Software and Affected Versions Devolutions Server versions prior to 2025.2.21 Devolutions Server versions prior to 2025.3.9 Description The email service credentials were exposed to users lacking administrative privileges in Devolutions Server. Recommendations Update...

4.3CVSS6.7AI score0.00326EPSS
Exploits0References8
The Hacker News
The Hacker News
added 2025/11/25 4:49 p.m.17 views

Years of JSONFormatter and CodeBeautify Leaks Expose Thousands of Passwords and API Keys

New research has found that organizations in various sensitive sectors, including governments, telecoms, and critical infrastructure, are pasting passwords and credentials into online tools like JSONformatter and CodeBeautify that are used to format and validate code. Cybersecurity company...

6.7AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-18283

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00437EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-31636

Malicious code in bioql PyPI...

8.5CVSS6.6AI score0.00554EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-48656

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00189EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-31301

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.0064EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-23188

Malicious code in bioql PyPI...

7.8CVSS6.6AI score0.00149EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-32743

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. In...

8.8CVSS7.1AI score0.01803EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/01 12:6 a.m.6 views

CVE-2025-50777

The firmware of the AZIOT 2MP Full HD Smart Wi-Fi CCTV Home Security Camera version V1.00.02 contains an Incorrect Access Control vulnerability that allows local attackers to gain root shell access. Once accessed, the device exposes critical data including Wi-Fi credentials and ONVIF service...

7.8CVSS7.2AI score0.00149EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/30 12:0 a.m.13 views

PT-2025-31430 · Aziot · Aziot 2Mp Full Hd Smart Wi-Fi Cctv Home Security Camera

Name of the Vulnerable Software and Affected Versions: AZIOT 2MP Full HD Smart Wi-Fi CCTV Home Security Camera version V1.00.02 Description: The firmware contains an Incorrect Access Control vulnerability that allows local attackers to gain root shell access. Successful exploitation exposes...

7.8CVSS6.3AI score0.00149EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/06/15 12:21 a.m.4 views

CVE-2025-28381

A credential leak in OpenC3 COSMOS before v6.0.2 allows attackers to access service credentials as environment variables stored in all containers...

7.5CVSS6.6AI score0.00437EPSS
Exploits1References1
NVD
NVD
added 2025/06/13 2:15 p.m.10 views

CVE-2025-28381

A credential leak in OpenC3 COSMOS before v6.0.2 allows attackers to access service credentials as environment variables stored in all containers...

7.5CVSS0.00437EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/06/13 12:0 a.m.7 views

CVE-2025-28381

A credential leak in OpenC3 COSMOS before v6.0.2 allows attackers to access service credentials as environment variables stored in all containers...

0.00437EPSS
Exploits1References5
CVE
CVE
added 2025/06/13 12:0 a.m.43 views

CVE-2025-28381

CVE-2025-28381 affects OpenC3 COSMOS prior to v6.0.2, where service credentials are exposed as environment variables stored in all containers. The vulnerability is due to credential leakage in containerized environment variables, enabling attackers to access credentials if they can reach the runt...

7.5CVSS6.2AI score0.00437EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/13 12:0 a.m.4 views

CVE-2025-28381

A credential leak in OpenC3 COSMOS before v6.0.2 allows attackers to access service credentials as environment variables stored in all containers...

6.2AI score0.00437EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 6:2 a.m.4 views

CVE-2023-28857

Apereo CAS is an open source multilingual single sign-on solution for the web. Apereo CAS can be configured to use authentication based on client X509 certificates. These certificates can be provided via TLS handshake or a special HTTP header, such as “sslclientcert”. When checking the validity o...

7.5CVSS7AI score0.00503EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:52 p.m.9 views

CVE-2021-44464

Vigilant Software Suite Mastermed Dashboard version 2.0.1.3 contains service credentials likely to be common across all instances. An attacker in possession of the password may gain privileges on all installations of this software...

8.8CVSS7.1AI score0.0064EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/14 12:0 a.m.19 views

FreeBSD : Gitlab -- Vulnerabilities (a435609c-ffd5-11ef-b4e4-2cf05da270f3)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the a435609c-ffd5-11ef-b4e4-2cf05da270f3 advisory. Gitlab reports: CVE-2025-25291 and CVE-2025-25292 third party gem ruby-saml CVE-2025-27407 thi...

9.8CVSS8.8AI score0.63792EPSS
Exploits6References11
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.5 views

Percona PMM Server 安全漏洞

Percona PMM Server is an open source database observability, monitoring and management tool for MySQL, PostgreSQL, MongoDB and ProxySQL from Percona. A security vulnerability exists in Percona PMM Server versions prior to 3.0.0-1.ova, which stems from default service account credentials that coul...

10CVSS6.5AI score0.00441EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/03/08 2:34 p.m.13 views

CVE-2024-13893

Smartwares cameras CIP-37210AT and C724IP, as well as others which share the same firmware in versions up to 3.3.0, might share same credentials for telnet service. Hash of the password can be retrieved through physical access to SPI connected memory. For the telnet service to be enabled, the...

7.7CVSS6.6AI score0.00694EPSS
Exploits0References4
Rows per page
Query Builder