Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:22 p.m.10 views

CVE-2026-7415

The MQTT broker embedded in Yarbo firmware v2.3.9 is configured to allow anonymous connections with no topic-level read or write ACLs. Any host on the same network can subscribe to sensitive telemetry topics or publish control messages directly to the robot without authentication or authorization...

9.8CVSS5.5AI score0.00544EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.13 views

PT-2026-38460

Name of the Vulnerable Software and Affected Versions Yarbo firmware version 2.3.9 Description The embedded MQTT broker is configured to permit anonymous connections and lacks topic-level read or write Access Control Lists ACLs. This allows any host on the same network to subscribe to sensitive...

9.8CVSS5.8AI score0.00544EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.10 views

Yarbo 访问控制错误漏洞

Yarbo is a modular intelligent courtyard maintenance robot developed by the American company Yarbo. Version 2.3.9 of Yarbo contains an access control vulnerability. This vulnerability stems from the MQTT proxy configuration, which allows anonymous connections without topic-level read/write ACLs. ...

9.8CVSS5.8AI score0.00544EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:19 a.m.2 views

SUSE CVE-2019-0223

While investigating bug PROTON-2014, we discovered that under some circumstances Apache Qpid Proton versions 0.9 to 0.27.0 C library and its language bindings can connect to a peer anonymously using TLS even when configured to verify the peer certificate while used with OpenSSL versions before...

7.4CVSS6.3AI score0.0615EPSS
Exploits0References4
Kitploit
Kitploit
added 2016/12/13 2:23 p.m.24 views

FTP Password Recovery - Command-line Lost or Forgotten FTP Password Finder Tool for Windows

FTP Password Recovery is a free command-line tool to find your lost or forgotten FTP password for any FTP server. It automatically detects if the target FTP server allows any Anonymous without password connections. In case your FTP server is running on different port other than port 21 then you c...

7.4AI score
Exploits0
OSV
OSV
added 2016/06/02 12:55 p.m.4 views

SUSE-RU-2016:1478-1 Recommended update for samba

This update for Samba provides the following fixes: - Fix libads' record session expiry for spnego sasl binds. bsc979268 - Fix NTSTATUSACCESSDENIED when accessing windows public share. - Only validate MIC if 'map to guest' is not being used. - NetAPP SMB servers don't negotiate NTLMSSPSIGN...

5.9CVSS6.6AI score0.08305EPSS
Exploits0References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Chilkat Software FTP2 ActiveX Component Remote Code Execution

No description provided by source. !-- Chilkat Software FTP2 ActiveX Component ChilkatFtp2.DLL 2.6.1.1 Remote Code Execution poc by rgod tested against Internet Explorer 7 on Vista should also work with 8/9 ActiveX Settings: CLSID: 302124C4-30A0-484A-9C7A-B51D5BA5306B Progid:...

7.1AI score
Exploits0
CISA
CISA
added 2012/04/11 12:0 a.m.263 views

Samba Releases Updates for 3.0.x - 3.6.3

Samba has released an update to address a vulnerability in Samba versions 3.6.3 and all previous versions. Exploitation of this vulnerability may allow a remote attacker to use anonymous connections to execute arbitrary code with root privileges. US-CERT encourages users and administrators to...

10CVSS3.4AI score0.74034EPSS
In wildExploits9References1
Tenable Nessus
Tenable Nessus
added 2011/12/01 12:0 a.m.1318 views

OpenSSH >= 2.3.0 AllowTcpForwarding Port Bouncing

According to its banner, the remote host is running OpenSSH, version 2.3.0 or later. Such versions of OpenSSH allow forwarding TCP connections. If the OpenSSH server is configured to allow anonymous connections e.g. AnonCVS, remote, unauthenticated users could use the host as a proxy. C Tenable,...

6.4CVSS8AI score0.11574EPSS
Exploits0References3
0day.today
0day.today
added 2010/12/31 12:0 a.m.20 views

Chilkat Software FTP2 ActiveX Component Remote Code Execution

Exploit for windows platform in category remote exploits ============================================================= Chilkat Software FTP2 ActiveX Component Remote Code Execution ============================================================= obj.UnlockComponent"suntzu"; //needed for file transfe...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/12/30 12:0 a.m.14 views

Chilkat Software FTP2 - ActiveX Component Remote Code Execution

Chilkat Software FTP2 - ActiveX Component Remote Code Execution obj.UnlockComponent"suntzu"; //needed for file transfer operations, type whatever here obj.Port=21; //configure ftp connection obj.Hostname="192.168.0.1"; //change here obj.ConnectTimeout=5; obj.Passive=1; var x; x=obj.Connect; if x=...

0.6AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.27 views

Microsoft Exchange Public Folders Information Leak

Microsoft Exchange Public Folders can be set to allow anonymous connections set by default. If this is not changed it is possible for an attacker to gain critical information about the users such as full email address, phone number, etc that are present in the Exchange Server. Additional...

5CVSS6.3AI score0.2199EPSS
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.26 views

Microsoft Exchange Public Folders Information Leak

Microsoft Exchange Public Folders can be set to allow anonymous connections set by default. If this is not changed it is possible for an attacker to gain critical information about the users such as full email address, phone number, etc that are present in the Exchange Server...

5CVSS6.3AI score0.2199EPSS
Exploits0References2
CERT
CERT
added 2005/08/09 12:0 a.m.35 views

Microsoft Plug and Play contains a buffer overflow vulnerability

Overview Microsoft Plug and Play contains a flaw in the handling of message buffers that may result in local or remote arbitrary code execution or denial-of-service conditions. Description The following is from the Microsoft Plug and Play description: Plug and Play PnP allows the operating system...

10CVSS7.6AI score0.93405EPSS
Exploits9References14
Rows per page
Query Builder