Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-25724

Malware in sbrugna...

9.8CVSS9.2AI score0.01396EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-25725

Malware in sbrugna...

7.5CVSS7.5AI score0.01031EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 8:12 p.m.18 views

CVE-2021-39364

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...

7.5CVSS7.2AI score0.01031EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 6:11 p.m.4 views

CVE-1999-0667

The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service...

10CVSS6.8AI score0.14703EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/06 4:53 p.m.47 views

CVE-2025-30165 Remote Code Execution Vulnerability in vLLM Multi-Node Cluster Configuration

vLLM is an inference and serving engine for large language models. In a multi-node vLLM deployment using the V0 engine, vLLM uses ZeroMQ for some multi-node communication purposes. The secondary vLLM hosts open a SUB ZeroMQ socket and connect to an XPUB socket on the primary vLLM host. When data ...

8CVSS0.00502EPSS
Exploits0References3
NVD
NVD
added 2022/02/24 10:15 p.m.27 views

CVE-2021-39364

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...

7.5CVSS0.01031EPSS
Exploits0References3
NVD
NVD
added 2022/02/24 10:15 p.m.25 views

CVE-2021-39363

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow a video replay attack after ARP cache poisoning has been achieved...

9.8CVSS0.01396EPSS
Exploits0References3
Prion
Prion
added 2022/02/24 10:15 p.m.13 views

Design/Logic Flaw

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow a video replay attack after ARP cache poisoning has been achieved...

7.5CVSS9.4AI score0.01396EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2022/02/24 10:15 p.m.15 views

Command injection

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...

5CVSS7.7AI score0.01031EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2022/02/24 9:13 p.m.95 views

CVE-2021-39363

CVE-2021-39363 affects Honeywell HDZP252DI (1.00.HW02.4) and HBW2PER1 (1.000.HW01.3) devices. Reported impact is a video replay attack that occurs after ARP cache poisoning is achieved. The NVD notes a high-severity, network-based vulnerability with CVSS v3.1 base score 9.8 (C:H, I:H, A:H; no pri...

9.8CVSS9.4AI score0.01396EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/02/24 9:13 p.m.31 views

CVE-2021-39363

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow a video replay attack after ARP cache poisoning has been achieved...

9.7AI score0.01396EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/02/24 9:13 p.m.39 views

CVE-2021-39364

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow command spoofing for camera control after ARP cache poisoning has been achieved...

7.9AI score0.01031EPSS
Exploits0References3
CVE
CVE
added 2022/02/24 9:13 p.m.89 views

CVE-2021-39364

The CVE-2021-39364 issue affects Honeywell HDZP252DI (1.00.HW02.4) and HBW2PER1 (1.000.HW01.3). It enables command spoofing for camera control after ARP cache poisoning, per multiple connected sources. Root cause: ARP spoofing enabling spoofed commands. No exploitation details or specific mitigat...

7.5CVSS7.7AI score0.01031EPSS
Exploits0References3Affected Software1
Hacker One
Hacker One
added 2019/04/08 9:20 a.m.70 views

Slack: Slack DTLS uses a private key that is in the public domain, which may lead to SRTP stream hijack

Affects: Janus DTLS certificate Description The Janus server in use by Slack is configured using a certificate and private key that were previously distributed by default. This certificate is used to authenticate the DTLS connection which is later used to exchange keys for the SRTP stream. As a...

0.1AI score
Exploits0
Kitploit
Kitploit
added 2018/09/03 3:53 p.m.78 views

SMBetray - SMB MiTM Tool With A Focus On Attacking Clients Through File Content Swapping, Lnk Swapping, As Well As Compromising Any Data Passed Over The Wire In Cleartext

Version 1.0.0. This tool is a PoC to demonstrate the ability of an attacker to intercept and modify insecure SMB connections, as well as compromise some secured SMB connections if credentials are known. Background Released at Defcon26 at "SMBetray - Backdooring and Breaking Signatures" In SMB...

7.6AI score
Exploits0References1
Hacker One
Hacker One
added 2017/11/28 3:18 a.m.54 views

Uber: The Microsoft Store Uber App Does Not Implement Certificate Pinning

Summary The Microsoft Store Uber App Windows Phone Architecture does not properly implement certificate pinning. Security Impact Layer-2+ network traffic transmitted from and received by the app can be surreptitiously intercepted and transparently modified by an attacker, with no warnings or erro...

6.5AI score
Exploits0
Kitploit
Kitploit
added 2013/12/31 10:8 p.m.241 views

[Ghost Phisher v1.5] GUI suite for phishing and penetration attacks

Ghost Phisher is an application of security which comes built-in with a fake DNS server ,DHCP server fake, fake HTTP Server and also has a space for the automatic capture and recording credentials HTTP method of the form to a database. The program could be used for on-demand service of DHCP, DNS,...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2013/04/06 1:37 p.m.341 views

[Ghost Phisher] GUI suite for phishing and penetration attacks

Ghost Phisher is a Wireless and Ethernet security auditing and attack software program written using the Python Programming Language and the Python Qt GUI library, the program is able to emulate access points and deploy various internal networking servers for networking, penetration testing and...

7.5AI score
Exploits0
Kitploit
Kitploit
added 2013/02/25 6:36 p.m.232 views

[zANTI] The Power of Backtrack on your Android

Android Network Toolkit also known as zANTI is the most comprehensive and refined pentest tool for android by Zimperium. Zimperium is founded by white hat hacker Itzhack ‘Zuk’ Avraham and also have Kevin Mitnick on there team! They also had recently held the Pentester’s WorldCup. zAnti still come...

9.5AI score
Exploits0
Cvelist
Cvelist
added 2000/02/04 5:0 a.m.13 views

CVE-1999-0667

The ARP protocol allows any host to spoof ARP replies and poison the ARP cache to conduct IP address spoofing or a denial of service...

6.5AI score0.14703EPSS
Exploits1References1
Rows per page
Query Builder