Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.15 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-10.3.1.9)

The version of AHV installed on the remote host is prior to AHV-10.3.1.9. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-10.3.1.9 advisory. - The webbrowser.open API would accept leading dashes in the URL which could be handled as command line options for...

9.8CVSS7.4AI score0.0218EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.7 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-11.0.0.2)

The version of AHV installed on the remote host is prior to AHV-11.0.0.2. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-11.0.0.2 advisory. - A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust...

8.1CVSS6.1AI score0.0144EPSS
Exploits10References9
Tenable Nessus
Tenable Nessus
added 2026/02/13 12:0 a.m.17 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-7.5.0.5)

The version of AOS installed on the remote host is prior to 7.5.0.5. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-7.5.0.5 advisory. - Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged...

8.6CVSS7.1AI score0.02234EPSS
Exploits4References12
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-30815

Malicious code in bioql PyPI...

7.7CVSS6.6AI score0.00303EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/24 4:34 p.m.8 views

CVE-2025-35042

Airship AI Acropolis includes a default administrative account that uses the same credentials on every installation. Instances of Airship AI that do not change this account password are vulnerable to a remote attacker logging in and gaining the privileges of this account. Fixed in 10.2.35, 11.0.2...

9.8CVSS7.1AI score0.00403EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/24 4:34 p.m.5 views

CVE-2025-35041

Airship AI Acropolis allows unlimited MFA attempts for 15 minutes after a user has logged in with valid credentials. A remote attacker with valid credentials could brute-force the 6-digit MFA code. Fixed in 10.2.35, 11.0.21, and 11.1.9...

7.7CVSS6.9AI score0.00303EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/22 3:57 p.m.4 views

CVE-2025-35042 Airship AI Acropolis default credentials

Airship AI Acropolis includes a default administrative account that uses the same credentials on every installation. Instances of Airship AI that do not change this account password are vulnerable to a remote attacker logging in and gaining the privileges of this account. Fixed in 10.2.35, 11.0.2...

9.8CVSS6.8AI score0.00403EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/22 3:57 p.m.11 views

CVE-2025-35042 Airship AI Acropolis default credentials

Airship AI Acropolis includes a default administrative account that uses the same credentials on every installation. Instances of Airship AI that do not change this account password are vulnerable to a remote attacker logging in and gaining the privileges of this account. Fixed in 10.2.35, 11.0.2...

9.8CVSS0.00403EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/22 3:56 p.m.7 views

CVE-2025-35041 Airship AI Acropolis MFA insufficient rate limiting

Airship AI Acropolis allows unlimited MFA attempts for 15 minutes after a user has logged in with valid credentials. A remote attacker with valid credentials could brute-force the 6-digit MFA code. Fixed in 10.2.35, 11.0.21, and 11.1.9...

7.7CVSS0.00303EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/22 3:56 p.m.5 views

CVE-2025-35041 Airship AI Acropolis MFA insufficient rate limiting

Airship AI Acropolis allows unlimited MFA attempts for 15 minutes after a user has logged in with valid credentials. A remote attacker with valid credentials could brute-force the 6-digit MFA code. Fixed in 10.2.35, 11.0.21, and 11.1.9...

7.7CVSS6.6AI score0.00303EPSS
Exploits0References2
CVE
CVE
added 2025/09/22 3:56 p.m.28 views

CVE-2025-35041

Airship AI Acropolis MFA vulnerability: after a valid login, there is no rate limiting for MFA attempts, allowing unlimited tries within a 15-minute window to brute-force the 6-digit code. Affected versions include those prior to 10.2.35, 11.0.21, and 11.1.9. Remediation is to upgrade to 10.2.35,...

7.7CVSS6.6AI score0.00303EPSS
Exploits0References2Affected Software1
ICS
ICS
added 2025/09/22 2:6 p.m.5 views

Airship AI MFA bypass and default credentials vulnerabilities

RISK EVALUATION Airship AI Acropolis is used for video and data management. In versions before 11.1.9, 11.0.21, and 10.2.35, a remote unauthenticated attacker with valid credentials can brute force the MFA code and authenticate without an additional authentication method. Improperly configured...

7.7CVSS7.3AI score0.00303EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.13 views

Airship AI Acropolis 安全漏洞

Airship AI Acropolis is a video and wear Blue Flag data management platform from Airship AI in the United States. A security vulnerability exists in Airship AI Acropolis versions prior to 10.2.35, prior to 11.0.21, and prior to 11.1.9, which stems from allowing unlimited attempts at MFA...

7.7CVSS6.8AI score0.00303EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.6 views

Airship AI Acropolis 安全漏洞

Airship AI Acropolis is a video and wear Blue Flag data management platform from Airship AI in the United States. Airship AI Acropolis has a security vulnerability that stems from the use of default administrator account credentials, which could allow a remote attacker to log in and gain account...

9.8CVSS6.8AI score0.00403EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.2 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-10.0.1.2)

The version of AHV installed on the remote host is prior to AHV-10.0.1.2. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-10.0.1.2 advisory. - inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper...

8.8CVSS7.4AI score0.26049EPSS
Exploits6References12
Packet Storm
Packet Storm
added 2021/11/22 12:0 a.m.374 views

Backdoor.Win32.Acropolis.10 Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/e865fc7225c84165d7aa0c7d8a1bcb77.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Acropolis.10 Vulnerability: Insecure Permissions Description: The malware writes an...

7.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/11/13 5:29 p.m.9 views

acropolis-shop.ru XSS vulnerability

Open Bug Bounty ID: OBB-698065 Description| Value ---|--- Affected Website:| acropolis-shop.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidde...

Exploits0
Exploit DB
Exploit DB
added 2018/10/30 12:0 a.m.43 views

Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) - SFTP Authentication Bypass

Exploit Title: Nutanix AOS & Prism - SFTP Authentication Bypass Date: 2018-10-27 Exploit Author: Adam Brown Vendor Homepage: https://www.nutanix.org Software Link: https://www.nutanix.com/products/software-options/ Version: 5.5.5 LTS, 5.8.1 STS Tested on: Acropolis Operating System CVE : Related ...

9.8CVSS9.8AI score0.27065EPSS
Exploits10
0day.today
0day.today
added 2018/10/30 12:0 a.m.265 views

Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) SFTP Authentication Bypass Vulnerability

Exploit Title: Nutanix AOS & Prism - SFTP Authentication Bypass Exploit Author: Adam Brown Vendor Homepage: https://www.nutanix.org Software Link: https://www.nutanix.com/products/software-options/ Version: 5.5.5 LTS, 5.8.1 STS Tested on: Acropolis Operating System CVE : Related to CVE-2018-7750...

9.8CVSS0.5AI score0.27065EPSS
Exploits10
Citrix
Citrix
added 2015/10/01 12:0 a.m.7 views

Nutanix Acropolis Hypervisor Support in XenApp/XenDesktop

The Nutanix Acropolis hypervisor running on Nutanix Acropolis Operating System AOS 4.6.1.x or later has been designated as Citrix Ready and is supported in XenApp and XenDesktop 7.9 or later as mentioned on theCitrix Ready Marketplaceand theNutanix Solutions for Citrix desktop and application...

6.9AI score
Exploits0
Rows per page
Query Builder