Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.10 views

PT-2026-48456

Name of the Vulnerable Software and Affected Versions Apache Answer versions prior to 2.0.1 Description Improper Restriction of Security Token Assignment occurs when administrative tokens are not invalidated after an administrator account is suspended, deleted, or deactivated. This allows continu...

7.2CVSS5.9AI score0.00448EPSS
Exploits0References5
Snyk
Snyk
added 2026/02/05 12:27 a.m.4 views

Improper Authentication

Overview fuxa-server is a Web-based Process Visualization SCADA/HMI/Dashboard software Affected versions of this package are vulnerable to Improper Authentication via the authentication process. An attacker can gain administrative access and execute arbitrary code by bypassing authentication...

10CVSS6.2AI score0.00677EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/07/02 1:44 p.m.4 views

CVE-2025-34070 GFI Kerio Control GFIAgent Missing Authentication on Administrative Interfaces

A missing authentication vulnerability in the GFIAgent component of GFI Kerio Control 9.4.5 allows unauthenticated remote attackers to perform privileged operations. The GFIAgent service, responsible for integration with GFI AppManager, exposes HTTP services on ports 7995 and 7996 without proper...

10CVSS7.6AI score0.00691EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/02/24 12:0 a.m.4 views

PT-2025-27628 · Gfi · Gfi Kerio Control

Name of the Vulnerable Software and Affected Versions: GFI Kerio Control version 9.4.5 Description: A missing authentication vulnerability in the GFIAgent component allows unauthenticated remote attackers to perform privileged operations. The GFIAgent service exposes HTTP services on ports 7995 a...

10CVSS6.8AI score0.00691EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.3 views

Dell Secure Connect Gateway Access Control Error Vulnerability

Dell Secure Connect Gateway is a secure connectivity gateway from Dell USA. An access control error vulnerability exists in Dell Secure Connect Gateway versions prior to 5.24.00.00, which stems from an improperly access controlled internal update to the REST API, which could be exploited by a...

4.3CVSS6.9AI score0.00424EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/02/22 1:30 a.m.19 views

CVE-2020-9039

Couchbase Server 4.0.0, 4.1.0, 4.1.1, 4.5.0, 4.5.1, 4.6.0 through 4.6.5, 5.0.0, 5.1.1, 5.5.0 and 5.5.1 have Insecure Permissions for the projector and indexer REST endpoints they allow unauthenticated access.The /settings REST endpoint exposed by the projector process is an endpoint that...

9.5AI score0.03842EPSS
Exploits0References1
Rows per page
Query Builder