Lucene search
K

191 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/15 12:0 a.m.7 views

The vulnerability of the access controller service allows attackers to exploit the Capability Access Management Service (camsvc) of Windows operating systems, thereby enabling them to increase their privileges.

The vulnerability of the access controller service related to the Capability Access Management Service camsvc on Windows operating systems is associated with competitive access to resources during a “race condition”. Exploiting this vulnerability can allow an attacker to enhance their privileges...

7.4CVSS5.5AI score0.00248EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:57 a.m.3 views

CVE-2023-31445

Cassia Access controller before 2.1.1.2203171453, was discovered to have a unprivileged -information disclosure vulnerability that allows read-only users have the ability to enumerate all other users and discover e-mail addresses, phone numbers, and privileges of all other users...

5.3CVSS7AI score0.01155EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:41 a.m.7 views

CVE-2017-20037

A vulnerability has been found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument c leads to privilege escalation. The attack can be launched remotely...

8.8CVSS7AI score0.00594EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:55 a.m.7 views

CVE-2017-20038

A vulnerability was found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this issue is some unknown functionality of the file cardscandecoder.php. The manipulation of the argument No/door leads to privilege escalation. The attack may be launched remotely...

8.8CVSS7AI score0.00673EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:55 a.m.7 views

CVE-2017-20040

A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been declared as problematic. This vulnerability affects unknown code of the component Password Storage. The manipulation leads to weak encryption. Attacking locally is a requirement...

5.9CVSS7AI score0.00104EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:15 p.m.9 views

CVE-2009-4234

Cross-site scripting XSS vulnerability in loginpages/erroruser.shtml on the Micronet Network Access Controller SP1910 allows remote attackers to inject arbitrary web script or HTML via the msg parameter...

4.3CVSS5.9AI score0.01269EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:16 p.m.11 views

CVE-2017-20039

A vulnerability was found in SICUNET Access Controller 0.32-05z. It has been classified as very critical. This affects an unknown part. The manipulation leads to weak authentication. It is possible to initiate the attack remotely...

9.8CVSS6.8AI score0.01162EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/29 9:55 p.m.5 views

Malicious code in openbet-access-controller (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dd796ac609bd9ccd763f039c5ecfd7fd63b7c76170f3feaba70a4d2148fa881 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2025/01/29 9:55 p.m.11 views

MAL-2025-602 Malicious code in openbet-access-controller (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dd796ac609bd9ccd763f039c5ecfd7fd63b7c76170f3feaba70a4d2148fa881 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7.2AI score
Exploits0References1
The Hacker News
The Hacker News
added 2024/10/10 12:10 p.m.35 views

Experts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 Systems

Cybersecurity researchers are warning about an unpatched vulnerability in Nice Linear eMerge E3 access controller systems that could allow for the execution of arbitrary operating system OS commands. The flaw, assigned the CVE identifier CVE-2024-9441, carries a CVSS score of 9.8 out of a maximum...

10CVSS10AI score0.97136EPSS
Exploits18
BDU FSTEC
BDU FSTEC
added 2024/09/30 12:0 a.m.6 views

The vulnerability of the integrated service module of Dell iDRAC in remote access controllers iDRAC, related to the execution of operations outside the buffer in memory, allows a intruder to execute arbitrary code or cause a service failure.

The vulnerability of the Dell iDRAC Service Module integrated service module controllers in remote access iDRAC devices relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause a service failure...

5.2CVSS6.5AI score0.00158EPSS
Exploits0References6Affected Software1
CNVD
CNVD
added 2024/08/01 12:0 a.m.6 views

Dell iDRAC Service Module Out-of-Bounds Read Vulnerability (CNVD-2024-34489)

The Dell iDRAC Service Module is a lightweight software module from Dell USA designed to run on Dell PowerEdge servers to enhance the functionality of iDRAC Integrated Dell Remote Access Controller. An out-of-bounds read vulnerability exists in Dell iDRAC Service Module 5.3.0.0 and earlier...

4.8CVSS7.6AI score0.00158EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/07/10 12:0 a.m.9 views

Dell DRAC / iDRAC Detection Consolidation

Consolidation of Dell Remote Access Controller DRAC / Integrated Remote Access Controller iDRAC detections. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7.5AI score
Exploits0References1
CNVD
CNVD
added 2024/04/19 12:0 a.m.19 views

Tenda AC500 Command Injection Vulnerability

The Tenda AC500 is a Gigabit port access controller from Tenda, China. A command injection vulnerability exists in Tenda AC500 version 2.0.1.91307, which stems from a command injection issue in the mac parameter of the formWriteFacMac method of the /goform/WriteFacMac file. No details of the...

9.8CVSS7.3AI score0.08718EPSS
Exploits1References1
CNVD
CNVD
added 2024/04/19 12:0 a.m.16 views

Unspecified vulnerability in Tenda AC500 (CNVD-2024-20427)

The Tenda AC500 is a Gigabit port access controller from Tenda, China. A security vulnerability exists in Tenda AC500 version 2.0.1.91307, which stems from a buffer overflow in the page parameter of the fromDhcpListClient method of the /goform/DhcpListClient file. No details of the vulnerability...

9CVSS7.4AI score0.0173EPSS
Exploits1References1
CNVD
CNVD
added 2024/04/19 12:0 a.m.5 views

Unspecified Vulnerability in Tenda AC500 (CNVD-2024-23312)

The Tenda AC500 is a Gigabit port access controller from Tenda, China. A security vulnerability exists in Tenda AC500 version 2.0.1.91307, which originates from a buffer overflow issue in the cmdinput parameter of the formexeCommand method of the /goform/execCommand file. No details of the...

9.8CVSS7.4AI score0.01676EPSS
Exploits0References1
CNVD
CNVD
added 2024/04/19 12:0 a.m.7 views

Unspecified Vulnerability in Tenda AC500 (CNVD-2024-23311)

The Tenda AC500 is a Gigabit port access controller from Tenda, China. A security vulnerability exists in Tenda AC500 version 2.0.1.91307, which originates from a buffer overflow issue in the PPPOEPassword parameter of the formQuickIndex method of the /goform/QuickIndex file. No details of the...

9CVSS7.4AI score0.01658EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.10 views

Integrated Dell Remote Access Controller (iDRAC) Service Module Installed (Windows)

Binary data dellidracservicemodulewininstalled.nbin...

7.3AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/01/06 12:0 a.m.4 views

The vulnerability of the PAN-OS operating system’s web interface allows attackers to obtain credentials in plain text for stored external system integrations such as LDAP, SCP, RADIUS, TACACS+, and SNMP.

The vulnerability of the PAN-OS operating system’s web interface is related to insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor to obtain login credentials in plain text for stored external system integrations such as LDAP, SCP, RADIUS, TACACS+,...

6.1CVSS6.5AI score0.00624EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/12/26 12:0 a.m.2 views

Tenda M3 Security Vulnerability

Tenda M3 is an access controller from Tenda, China. A security vulnerability exists in Tenda M3 version V1.0.0.124856, which is caused by a stack overflow vulnerability in the fromSetLocalVlanInfo method...

9.8CVSS7.3AI score0.00843EPSS
Exploits1References2
Rows per page
Query Builder