Lucene search
K

47 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2002-0827

Malware in sbrugna...

5CVSS6.4AI score0.06937EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-9316

Malware in sbrugna...

5.3CVSS5.5AI score0.00699EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-10582

Malware in sbrugna...

9.8CVSS9.5AI score0.01658EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-3440

Malware in sbrugna...

5CVSS6.3AI score0.05197EPSS
Exploits2References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-3441

Malware in sbrugna...

4.3CVSS6.4AI score0.01854EPSS
Exploits2References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-0312

Malware in sbrugna...

7.5CVSS6.4AI score0.01553EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-27057

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01131EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-27056

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.003EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-27058

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01131EPSS
Exploits2References4
Talos
Talos
added 2024/07/03 12:0 a.m.35 views

Grandstream GXP2135 CWMP SelfDefinedTimeZone OS command injection vulnerability

Talos Vulnerability Report TALOS-2024-1978 Grandstream GXP2135 CWMP SelfDefinedTimeZone OS command injection vulnerability July 3, 2024 CVE Number CVE-2024-32937 SUMMARY An os command injection vulnerability exists in the CWMP SelfDefinedTimeZone functionality of Grandstream GXP2135 1.0.9.129,...

9.8CVSS8.7AI score0.26288EPSS
Exploits1
Packet Storm
Packet Storm
added 2023/08/16 12:0 a.m.393 views

AudioCodes VoIP Phones Hardcoded Key

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2022-052 Product: AudioCodes VoIP Phones Manufacturer: AudioCodes Ltd. Affected Versions: Firmware Versions = 3.4.8.M4 Tested Versions: Firmware Version 3.4.4.1000 Vulnerability Type: Use of Hard-coded Cryptographic Key CWE-321 Ris...

7.1AI score0.01131EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/08/16 12:0 a.m.412 views

AudioCodes VoIP Phones Insufficient Firmware Validation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2022-055 Product: AudioCodes VoIP Phones Manufacturer: AudioCodes Ltd. Affected Versions: Firmware Versions = 3.4.4.1000 Tested Versions: Firmware Version 3.4.4.1000 Vulnerability Type: Missing Immutable Root of Trust in Hardware...

7.1AI score0.003EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/08/16 12:0 a.m.524 views

AudioCodes VoIP Phones Hardcoded Key

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2022-054 Product: AudioCodes VoIP Phones Manufacturer: AudioCodes Ltd. Affected Versions: Firmware Versions = 3.4.8.M4 Tested Versions: Firmware Version 3.4.4.1000 Vulnerability Type: Use of Hard-coded Cryptographic Key CWE-321 Ris...

7.1AI score0.01131EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2023/08/11 8:15 p.m.4 views

CVE-2023-22956

An issue was discovered on AudioCodes VoIP desk phones through 3.4.4.1000. Due to the use of a hard-coded cryptographic key, an attacker is able to decrypt encrypted configuration files and retrieve sensitive information...

7.5CVSS7.1AI score0.01131EPSS
Exploits2References5
Positive Technologies
Positive Technologies
added 2023/08/11 12:0 a.m.8 views

PT-2023-18797 · Audiocodes · Audiocodes Voip Desk Phones

Name of the Vulnerable Software and Affected Versions: AudioCodes VoIP desk phones versions through 3.4.4.1000 Description: An issue was discovered due to the use of a hard-coded cryptographic key, allowing an attacker to decrypt encrypted configuration files and retrieve sensitive information...

7.5CVSS7.4AI score0.01131EPSS
Exploits2References11
ThreatPost
ThreatPost
added 2019/05/02 3:24 p.m.75 views

Cisco Warns of Critical Nexus 9000 Data Center Flaw

A critical vulnerability in Cisco’s software-defined networking SDN software could allow an unauthenticated, remote attacker to connect to a vulnerable data-center switch and take it over, with the privileges of the root user. The bug CVE-2019-1804, which has a CVSS severity rating of 9.8 out of...

10CVSS0.9AI score0.0348EPSS
Exploits0References7
OSV
OSV
added 2019/04/01 9:29 p.m.4 views

CVE-2018-17565

Shell Metacharacter Injection in the SSH configuration interface on Grandstream GXP16xx VoIP 1.0.4.128 phones allows attackers to execute arbitrary system commands and gain a root shell...

9.8CVSS6AI score0.01935EPSS
Exploits0References2
Prion
Prion
added 2018/12/20 9:29 p.m.10 views

Default credentials

Missing password verification in the web interface on Gigaset Maxwell Basic VoIP phones with firmware 2.22.7 would allow a remote attacker in the same network as the device to change the admin password without authentication and without knowing the original password...

5CVSS9.5AI score0.01658EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2017/01/27 12:0 a.m.2 views

Polycom VVX Web Interface Forced Admin Password Change Vulnerability

Polycom is a global leader in standards-based unified communications UC solutions for telepresence, video and voice. The Polycom VVX web interface can be forced to change the admin password vulnerability, which requires a user to access the "user" account in the web interface of a Polycom VoIP...

6.7AI score
Exploits0References1
CVE
CVE
added 2014/09/17 2:0 p.m.67 views

CVE-2012-1417

CVE-2012-1417 maps to multiple cross-site scripting vulnerabilities in Yealink VOIP Phones (Local Phone Book and Blacklist form). Root cause: unsanitized or improperly neutralized user input via the CGI path (ConfigManApp.com) allows injected scripts to be executed in the target user’s browser. I...

3.5CVSS5.3AI score0.01733EPSS
Exploits7References7Affected Software14
Rows per page
Query Builder