Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-11565

Malware in sbrugna...

7.5CVSS7.6AI score0.02279EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-22822

Malware in sbrugna...

5.3CVSS5.6AI score0.00503EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:41 a.m.6 views

CVE-2024-48644

Accounts enumeration vulnerability in the Login Component of Reolink Duo 2 WiFi Camera Firmware Version v3.0.0.188923031701 allows remote attackers to determine valid user accounts via login attempts. This can lead to the enumeration of user accounts and potentially facilitate other attacks, such...

5.3CVSS7AI score0.00737EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2025/04/08 12:0 a.m.209 views

📄 GeoVision GV-ASManager 6.1.0.0 Information Disclosure

GeoVision GV-ASManager versions 6.1.0.0 and below suffer from an information disclosure vulnerability. Exploit Title: Information Disclosure in GeoVision GV-ASManager Google Dork: inurl:"ASWeb/Login" Date: 02-FEB-2025 Exploit Author: Giorgi Dograshvili DRAGOWN Vendor Homepage:...

7.5CVSS8.2AI score0.2132EPSS
Exploits4
NVD
NVD
added 2024/10/22 10:15 p.m.18 views

CVE-2024-48644

Accounts enumeration vulnerability in the Login Component of Reolink Duo 2 WiFi Camera Firmware Version v3.0.0.188923031701 allows remote attackers to determine valid user accounts via login attempts. This can lead to the enumeration of user accounts and potentially facilitate other attacks, such...

5.3CVSS0.00737EPSS
Exploits0References1
CVE
CVE
added 2024/10/22 12:0 a.m.54 views

CVE-2024-48644

CVE-2024-48644 affects the Reolink Duo 2 WiFi Camera, firmware v3.0.0.1889_23031701. The issue is in the Login Component where the application responds differently to login attempts with valid vs invalid usernames, enabling remote accounts enumeration. This can facilitate further attacks (e.g., p...

5.3CVSS7AI score0.00737EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/22 12:0 a.m.11 views

CVE-2024-48644

Accounts enumeration vulnerability in the Login Component of Reolink Duo 2 WiFi Camera Firmware Version v3.0.0.188923031701 allows remote attackers to determine valid user accounts via login attempts. This can lead to the enumeration of user accounts and potentially facilitate other attacks, such...

7AI score0.00737EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/22 12:0 a.m.16 views

CVE-2024-48644

Accounts enumeration vulnerability in the Login Component of Reolink Duo 2 WiFi Camera Firmware Version v3.0.0.188923031701 allows remote attackers to determine valid user accounts via login attempts. This can lead to the enumeration of user accounts and potentially facilitate other attacks, such...

0.00737EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/31 12:0 a.m.15 views

CVE-2023-37831

An issue discovered in Elenos ETG150 FM transmitter v3.12 allows attackers to enumerate user accounts based on server responses when credentials are submitted...

6.9AI score0.00462EPSS
Exploits1References1
Prion
Prion
added 2021/10/19 1:15 p.m.13 views

Authentication flaw

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 authentication process response indicates and validates the existence of a username. This may allow an attacker to enumerate different user accounts...

5CVSS6.3AI score0.00736EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2017/09/11 8:29 p.m.14 views

CVE-2015-4688

Ellucian formerly SunGard Banner Student 8.5.1.2 through 8.7 allow remote attackers to enumerate user accounts via a series of requests...

5.3CVSS5.3AI score0.02036EPSS
Exploits0References2
Prion
Prion
added 2017/09/11 8:29 p.m.10 views

Code injection

Ellucian formerly SunGard Banner Student 8.5.1.2 through 8.7 allow remote attackers to enumerate user accounts via a series of requests...

5CVSS7.2AI score0.02036EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/01/10 2:0 a.m.24 views

CVE-2014-8035

The web framework in Cisco WebEx Meetings Server produces different returned messages for URL requests depending on whether a username exists, which allows remote attackers to enumerate user accounts via a series of requests, aka Bug ID CSCuj40247...

6.6AI score0.01354EPSS
Exploits0References3
Cvelist
Cvelist
added 2014/07/28 5:0 p.m.25 views

CVE-2014-3304

The OutlookAction Class in Cisco WebEx Meetings Server allows remote attackers to enumerate user accounts by entering crafted URLs and examining the returned messages, aka Bug ID CSCuj81722...

6.6AI score0.01794EPSS
Exploits0References4
Prion
Prion
added 2013/08/16 1:55 a.m.15 views

Default credentials

IBM InfoSphere Information Server through 8.5 FP3, 8.7 through FP2, and 9.1 produces login-failure messages indicating whether the username or password is incorrect, which allows remote attackers to enumerate user accounts via a brute-force attack...

5CVSS7.2AI score0.01365EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2011/12/06 11:55 a.m.16 views

CVE-2011-4678

The password reset feature in One Click Orgs before 1.2.3 generates different error messages for failed reset attempts depending on whether the e-mail address is registered, which allows remote attackers to enumerate user accounts via a series of requests...

5CVSS6.8AI score0.0116EPSS
Exploits0References2
securityvulns
securityvulns
added 2009/04/07 12:0 a.m.32 views

Sun Java System Identity Manager / Access Manager accounts enumeration

Replies for invalid username and invalid password are different...

3.4AI score
Exploits0References1Affected Software2
securityvulns
securityvulns
added 2007/01/12 12:0 a.m.64 views

Multiple F5 FirePass security vulnerabilities

URL restrictions bypass, crossite scripting. Restrictions bypass with dotless IP address. Acounts enumeration...

7.5CVSS1.3AI score0.03618EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder