CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/06/05 7:24 p.m.•7 views

CVE-2026-8672

Use of default password vulnerability in syslink software AG Avantra on Linux, Windows allows Try Common or Default Usernames and Passwords. This issue affects Avantra: before 25.3.0...

5.1CVSS5.5AI score0.00014EPSS

Exploits0References1

NVD•added 2026/05/22 2:16 p.m.•4 views

CVE-2026-8672

Use of default password vulnerability in syslink software AG Avantra on Linux, Windows allows Try Common or Default Usernames and Passwords. This issue affects Avantra: before 25.3.0...

5.1CVSS0.00014EPSS

Exploits0References1

Cvelist•added 2026/05/22 1:17 p.m.•27 views

CVE-2026-8672 Default credentials for internal DB

Use of default password vulnerability in syslink software AG Avantra on Linux, Windows allows Try Common or Default Usernames and Passwords. This issue affects Avantra: before 25.3.0...

5.1CVSS0.00014EPSS

Exploits0References1

CVE•added 2026/05/22 1:17 p.m.•17 views

CVE-2026-8672

CVE-2026-8672 affects Syslink Software AG Avantra (Linux/Windows). The issue is a default credentials vulnerability enabling local access to an internal DB, with attackers needing high privileges and no user interaction. CVSS v3.1: AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N; impact limited to confidenti...

5.1CVSS5.8AI score0.00014EPSS

Exploits0References1Affected Software1

EUVD•added 2026/05/22 1:17 p.m.•9 views

EUVD-2026-31437

Use of default password vulnerability in syslink software AG Avantra on Linux, Windows allows Try Common or Default Usernames and Passwords. This issue affects Avantra: before 25.3.0...

5.1CVSS5.8AI score0.00014EPSS

Exploits0References1

ATTACKERKB•added 2026/05/22 1:15 p.m.•3 views

CVE-2026-8671

Insertion of sensitive information into log file vulnerability in syslink software AG Avantra on Linux, Windows allows Resource Leak Exposure. This issue affects Avantra: before 25.3.0...

7.5CVSS5.8AI score0.00037EPSS

Exploits0References2

Vulnrichment•added 2026/05/22 1:12 p.m.•5 views

CVE-2026-8670 Insecure session handling on metrics web server

Insufficient session expiration vulnerability in syslink software AG Avantra on Linux, Windows allows Reusing Session IDs aka Session Replay. This issue affects Avantra: before 25.3.1...

9.6CVSS5.8AI score0.00046EPSS

Exploits0References1

Positive Technologies•added 2026/05/22 12:0 a.m.•6 views

PT-2026-42761

Name of the Vulnerable Software and Affected Versions Avantra versions prior to 25.3.1 Description Insufficient session expiration in syslink software AG Avantra on Linux and Windows allows for the reuse of session IDs, a technique known as Session Replay, where an attacker captures and reuse a...

9.6CVSS5.8AI score0.00046EPSS

Exploits0References3

EUVD•added 2026/03/13 9:31 p.m.•2 views

EUVD-2026-11768

Use of Hard-coded Credentials vulnerability in Avnatra Avantra allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Avantra: before 25.3.0...

7.2CVSS5.8AI score0.00013EPSS

Exploits0References2

Vulnrichment•added 2026/03/13 8:14 a.m.•3 views

CVE-2026-3873 Legacy built-in user account

Use of Hard-coded Credentials vulnerability in Avantra allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Avantra: before 25.3.0...

7.2CVSS5.8AI score0.00013EPSS

Exploits0References1

CVE•added 2026/03/13 8:14 a.m.•8 views

CVE-2026-3873

CVE-2026-3873 affects Avantra’s legacy built-in user account. The vulnerability arises from use of hard-coded credentials in Avantra systems and allows accessing functionality not properly constrained by ACLs in versions before 25.3.0. According to the provided metrics, the issue has CVSS 3.1 bas...

7.2CVSS5.8AI score0.00013EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by