Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1662 matches found

Prion
Prionadded 2021/09/01 12:15 p.m.33 views

Design/Logic Flaw

Wireless devices running certain Arcadyan-derived firmware such as KPN Experia WiFi 1.00.15 do not properly sanitise user input to the syslog configuration form. An authenticated remote attacker could leverage this to alter the device configuration and achieve remote code execution. This can be...

9CVSS8.3AI score0.99983EPSS
Exploits6References2Affected Software1
CVE
CVEadded 2021/09/01 11:15 a.m.203 views

CVE-2021-38703

CVE-2021-38703 concerns Arcadyan-derived firmware used by devices such as KPN Experia WiFi (1.00.15). The issue arises from improper sanitisation of user input to the syslog configuration form, enabling an authenticated remote attacker to alter device configuration and achieve remote code executi...

9CVSS8.3AI score0.0432EPSS
In wildExploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2021/09/01 12:0 a.m.3 views

PT-2021-22264 · Arcadyan · Arcadyan-Derived Firmware

Name of the Vulnerable Software and Affected Versions: Arcadyan-derived firmware versions affected versions not specified Description: The issue concerns improper sanitization of user input to the syslog configuration form in certain wireless devices running Arcadyan-derived firmware. This can be...

9CVSS8.6AI score0.0432EPSS
Exploits1References3
OSV
OSVadded 2021/08/18 7:46 a.m.4 views

SUSE-SU-2021:2771-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-36386: DoS or information disclosure in some configurations bsc1188875 - Change PASSWORDLEN from 64 to 256 bsc1188034 - Set the hostname for SNI when using TLS bsc1182807 - Allow --syslog option in daemon mode. bsc1033081 - Set the...

7.5CVSS7.2AI score0.0256EPSS
Exploits0References6
OSV
OSVadded 2021/07/25 10:15 p.m.2 views

CVE-2021-37439

NCH FlexiServer v6.00 suffers from a syslog?file=/.. path traversal vulnerability...

6.5CVSS5.8AI score0.01214EPSS
Exploits1References2
Prion
Prionadded 2021/07/25 10:15 p.m.20 views

Path traversal

NCH FlexiServer v6.00 suffers from a syslog?file=/.. path traversal vulnerability...

4CVSS6.5AI score0.01214EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2021/07/25 8:14 p.m.11 views

CVE-2021-37439

NCH FlexiServer v6.00 suffers from a syslog?file=/.. path traversal vulnerability...

6.7AI score0.01214EPSS
Exploits1References2
CNNVD
CNNVDadded 2021/07/25 12:0 a.m.3 views

NCH FlexiServer 路径遍历漏洞

NCH FlexiServer is a functional time and attendance software.NCH FlexiServer has a directory traversal vulnerability, which originates from the product's syslog?file=/... Failure to filter special characters, an attacker can use this vulnerability to obtain sensitive information...

6.5CVSS5.6AI score0.01214EPSS
Exploits1References3
NVD
NVDadded 2021/07/21 3:15 p.m.11 views

CVE-2020-21934

An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where authentication to download the Syslog could be bypassed...

7.5CVSS0.01562EPSS
Exploits1References2
OSV
OSVadded 2021/07/21 3:15 p.m.4 views

CVE-2020-21934

An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where authentication to download the Syslog could be bypassed...

7.5CVSS5.8AI score0.01562EPSS
Exploits1References2
Prion
Prionadded 2021/07/21 3:15 p.m.17 views

Authentication flaw

An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where authentication to download the Syslog could be bypassed...

5CVSS7.5AI score0.01562EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2021/07/21 1:24 p.m.21 views

CVE-2020-21934

An issue was discovered in Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n where authentication to download the Syslog could be bypassed...

7.6AI score0.01562EPSS
Exploits1References2
CNNVD
CNNVDadded 2021/07/21 12:0 a.m.3 views

Motorola CX2 授权问题漏洞

The Motorola CX2 is a wireless router from Motorola USA. An authorization issue vulnerability exists in the Motorola CX2 router CX, which stems from a lack of valid privilege validation for the Syslog download feature in the product. The following products and versions are affected: Motorola CX2...

7.5CVSS7.3AI score0.01562EPSS
Exploits1References3
NVD
NVDadded 2021/07/16 11:15 a.m.19 views

CVE-2021-21816

An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability...

6.5CVSS0.36486EPSS
Exploits1References1
OSV
OSVadded 2021/07/16 11:15 a.m.3 views

CVE-2021-21816

An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability...

4.3CVSS7.3AI score0.36486EPSS
Exploits1References1
Prion
Prionadded 2021/07/16 11:15 a.m.20 views

Information disclosure

An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability...

4.3CVSS4.3AI score0.36486EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2021/07/16 10:28 a.m.21 views

CVE-2021-21816

An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability...

6.5CVSS4.9AI score0.36486EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2021/07/16 12:0 a.m.7 views

PT-2021-14792 · D Link · D-Link Dir-3040

Name of the Vulnerable Software and Affected Versions: D-LINK DIR-3040 version 1.13B03 Description: An information disclosure issue exists in the Syslog functionality. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send an HTTP request to...

6.5CVSS5.1AI score0.36486EPSS
Exploits1References3
Talos
Talosadded 2021/07/15 12:0 a.m.84 views

D-LINK DIR-3040 Syslog information disclosure vulnerability

Summary An information disclosure vulnerability exists in the Syslog functionality of D-LINK DIR-3040 1.13B03. A specially crafted network request can lead to the disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability. Tested Versions D-LINK DIR-30...

6.5CVSS4.8AI score0.36486EPSS
Exploits1
Talos
Talosadded 2021/07/15 12:0 a.m.102 views

D-LINK DIR-3040 Syslog information disclosure vulnerability

Talos Vulnerability Report TALOS-2021-1283 D-LINK DIR-3040 Syslog information disclosure vulnerability July 15, 2021 CVE Number CVE-2021-21818 Summary A hard-coded password vulnerability exists in the Zebra IP Routing Manager functionality of D-LINK DIR-3040 1.13B03. A specially crafted network...

7.5CVSS7.5AI score0.01948EPSS
Exploits2
Rows per page
Query Builder