Lucene search
+L

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-22023

Malware in sbrugna...

5.3CVSS5.6AI score0.01439EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-22024

Malware in sbrugna...

10CVSS9.2AI score0.03191EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 3:29 p.m.13 views

CVE-2020-29666

In Lan ATMService M3 ATM Monitoring System 6.1.0, due to a directory-listing vulnerability, a remote attacker can view log files, located in /websocket/logs/, that contain a user's cookie values and the predefined developer's cookie value...

5.3CVSS6.9AI score0.01439EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:28 p.m.12 views

CVE-2020-29667

In Lan ATMService M3 ATM Monitoring System 6.1.0, a remote attacker able to use a default cookie value, such as PHPSESSID=LANIT-IMANAGER, can achieve control over the system because of Insufficient Session Expiration...

10CVSS7AI score0.03191EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/08/24 12:0 a.m.8 views

The vulnerability of ScrutisWeb monitoring software for bank ATMs lies in its ability to download files of a malicious nature without limitation, allowing an attacker to execute arbitrary code.

The vulnerability of ScrutisWeb banknote monitoring software lies in its ability to download unlimited amounts of dangerous files. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by downloading any file...

10CVSS8.5AI score0.00907EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2020/12/31 12:0 a.m.2 views

Lan ATMService M3 ATM Monitoring System Directory Traversal Vulnerability

Lan ATMService M3 ATM Monitoring System is a software for monitoring ATM machines from the Russian company Lan ATMService. A directory traversal vulnerability exists in Lan ATMService M3 ATM Monitoring System 6.1.0. An attacker can use this vulnerability to view log files in /websocket/logs/ that...

5.3CVSS6.8AI score0.01439EPSS
Exploits0References1
NVD
NVD
added 2020/12/10 9:15 a.m.15 views

CVE-2020-29666

In Lan ATMService M3 ATM Monitoring System 6.1.0, due to a directory-listing vulnerability, a remote attacker can view log files, located in /websocket/logs/, that contain a user's cookie values and the predefined developer's cookie value...

5.3CVSS5.2AI score0.01439EPSS
Exploits0References2
OSV
OSV
added 2020/12/10 9:15 a.m.4 views

CVE-2020-29667

In Lan ATMService M3 ATM Monitoring System 6.1.0, a remote attacker able to use a default cookie value, such as PHPSESSID=LANIT-IMANAGER, can achieve control over the system because of Insufficient Session Expiration...

9.8CVSS7.3AI score0.03191EPSS
Exploits0References2
Prion
Prion
added 2020/12/10 9:15 a.m.15 views

Directory traversal

In Lan ATMService M3 ATM Monitoring System 6.1.0, due to a directory-listing vulnerability, a remote attacker can view log files, located in /websocket/logs/, that contain a user's cookie values and the predefined developer's cookie value...

5CVSS5.2AI score0.01439EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/12/10 9:15 a.m.17 views

Session fixation

In Lan ATMService M3 ATM Monitoring System 6.1.0, a remote attacker able to use a default cookie value, such as PHPSESSID=LANIT-IMANAGER, can achieve control over the system because of Insufficient Session Expiration...

10CVSS9.3AI score0.03191EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/12/10 8:7 a.m.29 views

CVE-2020-29667

In Lan ATMService M3 ATM Monitoring System 6.1.0, a remote attacker able to use a default cookie value, such as PHPSESSID=LANIT-IMANAGER, can achieve control over the system because of Insufficient Session Expiration...

9.4AI score0.03191EPSS
Exploits0References2
CVE
CVE
added 2020/12/10 8:7 a.m.48 views

CVE-2020-29667

The CVE-2020-29667 entry affects Lan ATMService M3 ATM Monitoring System 6.1.0. Reported weakness: Insufficient session expiration enabled by using a default cookie value (e.g., PHPSESSID=LANIT-IMANAGER), which an unauthenticated remote attacker can exploit to gain control over the system. Connec...

10CVSS9.3AI score0.03191EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/12/10 8:6 a.m.53 views

CVE-2020-29666

The CVE-2020-29666 issue affects Lan ATMService M3 ATM Monitoring System 6.1.0. A directory-listing vulnerability in the web interface allows a remote attacker to read log files under /websocket/logs/ that contain a user cookie and the predefined developer cookie value. The underlying root cause ...

5.3CVSS5.2AI score0.01439EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder