Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2025/09/15 12:0 a.m.22 views

CVE-2025-57174

CVE-2025-57174 covers Siklu EtherHaul EH-8010/ EH-1200 devices (firmware 7.4.0–10.7.3) where the rfpiped service on TCP port 555 uses static, hardcoded AES keys. The keys are identical across devices, enabling an unauthenticated attacker to craft encrypted packets and trigger remote command execu...

9.8CVSS9.5AI score0.01691EPSS
Exploits3References3
OSV
OSVadded 2021/01/20 9:15 p.m.2 views

CVE-2021-1138

Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For more information about these vulnerabilities, see the Details section of this advisory...

9.8CVSS6.1AI score0.11689EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEVadded 2019/02/08 12:0 a.m.0 views

VulnCheck KEV: CVE-2017-18362

ConnectWise ManagedITSync integration for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database...

9.8CVSS7.3AI score0.81132EPSS
Exploits1References1
NVD
NVDadded 2019/02/05 6:29 a.m.11 views

CVE-2017-18362

ConnectWise ManagedITSync integration through 2017 for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database. In February 2019, attackers have actively exploited this in the wild to download and execute ransomware payloads on all...

9.8CVSS9.9AI score0.81132EPSS
Exploits1References4
Prion
Prionadded 2019/02/05 6:29 a.m.10 views

Sql injection

ConnectWise ManagedITSync integration through 2017 for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database. In February 2019, attackers have actively exploited this in the wild to download and execute ransomware payloads on all...

7.5CVSS9.8AI score0.81132EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2019/02/05 5:0 a.m.19 views

CVE-2017-18362

ConnectWise ManagedITSync integration through 2017 for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database. In February 2019, attackers have actively exploited this in the wild to download and execute ransomware payloads on all...

9.9AI score0.81132EPSS
Exploits1References3
CVE
CVEadded 2019/02/05 5:0 a.m.973 views

CVE-2017-18362

Summary: CVE-2017-18362 affects Kaseya VSA via ConnectWise ManagedITSync. It allows unauthenticated remote commands to access and modify the Kaseya VSA database when ManagedIT.asmx is reachable through the web interface. The vulnerability has been actively exploited in the wild (February 2019) to...

9.8CVSS9.8AI score0.81132EPSS
In wildExploits1References4Affected Software1
ATTACKERKB
ATTACKERKBadded 2019/02/05 12:0 a.m.22 views

CVE-2017-18362

ConnectWise ManagedITSync integration through 2017 for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database. In February 2019, attackers have actively exploited this in the wild to download and execute ransomware payloads on all...

9.8CVSS4.4AI score0.81132EPSS
In wildExploits1References4
Rows per page
Query Builder