Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-25473

Malicious code in bioql PyPI...

8.3CVSS6.6AI score0.00255EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/23 6:36 p.m.8 views

CVE-2025-7051

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...

8.3CVSS6.2AI score0.00255EPSS
Exploits0References1
OSV
OSV
added 2025/08/21 6:15 p.m.6 views

CVE-2025-7051

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...

8.3CVSS5.8AI score0.00255EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/21 5:34 p.m.4 views

CVE-2025-7051 N-central Syslog Configuration Insecure Direct Object Reference

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...

8.3CVSS7AI score0.00255EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/21 5:34 p.m.11 views

CVE-2025-7051 N-central Syslog Configuration Insecure Direct Object Reference

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...

8.3CVSS0.00255EPSS
Exploits0References1
CVE
CVE
added 2025/08/21 5:34 p.m.31 views

CVE-2025-7051

CVE-2025-7051 concerns N-able N-Central. Affected: N-Central deployments prior to 2025.2. Describe vulnerability: an authenticated user can read, write, and modify syslog configurations across customers on an N-Central server. This is an insecure direct object access-like issue enabling cross-ten...

8.3CVSS6.5AI score0.00255EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/12/25 6:15 a.m.3 views

CVE-2023-40236

In Pexip VMR self-service portal before 3, the same SSH host key is used across different customers' installations, which allows authentication bypass...

5.3CVSS5.8AI score0.00387EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:20 a.m.6 views

SUSE CVE-2015-2906

Mobile Devices aka MDI C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, store SSH private keys that are the same across different customers' installations, which makes it easier for remote attackers to obtain access by leveraging knowledge of a private...

9CVSS5.9AI score0.02563EPSS
Exploits0References2
OSV
OSV
added 2020/09/11 3:15 a.m.4 views

CVE-2020-25256

An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. PKI certificates have a private key that is the same across different customers' installations...

9.1CVSS7.3AI score0.00633EPSS
Exploits0References1
OSV
OSV
added 2016/09/21 2:59 a.m.5 views

CVE-2016-0904

Avamar Data Store ADS and Avamar Virtual Edition AVE in EMC Avamar Server before 7.3.0-233 use the same encryption key across different customers' installations, which allows remote attackers to defeat cryptographic protection mechanisms and obtain sensitive client-server traffic information by...

8.6CVSS5.8AI score0.01431EPSS
Exploits0References3
Rows per page
Query Builder