Lucene search
K

68 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-38270

Malicious code in bioql PyPI...

8.8CVSS7.9AI score0.00447EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-15583

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00283EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-39321

Malicious code in bioql PyPI...

4.9CVSS5.4AI score0.00426EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/16 9:26 a.m.11 views

CVE-2025-48862

Ambiguous wording in the web interface of the ctrlX OS setup mechanism could lead the user to believe that the backup file is encrypted when a password is set. However, only the private key - if available in the backup - is encrypted, while the backup file itself remains unencrypted...

7.1CVSS7.3AI score0.00106EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 9:15 a.m.16 views

CVE-2025-48862

Ambiguous wording in the web interface of the ctrlX OS setup mechanism could lead the user to believe that the backup file is encrypted when a password is set. However, only the private key - if available in the backup - is encrypted, while the backup file itself remains unencrypted...

7.1CVSS0.00106EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/14 9:8 a.m.21 views

CVE-2025-48862

Ambiguous wording in the web interface of the ctrlX OS setup mechanism could lead the user to believe that the backup file is encrypted when a password is set. However, only the private key - if available in the backup - is encrypted, while the backup file itself remains unencrypted...

7.1CVSS0.00106EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 9:8 a.m.4 views

CVE-2025-48862

Ambiguous wording in the web interface of the ctrlX OS setup mechanism could lead the user to believe that the backup file is encrypted when a password is set. However, only the private key - if available in the backup - is encrypted, while the backup file itself remains unencrypted...

7.1CVSS7.2AI score0.00106EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 9:8 a.m.21 views

CVE-2025-48862

The CVE affects ctrlX OS (Bosch) where ambiguous wording in the web interface of the setup/backup mechanism could mislead users into thinking the backup is encrypted when a password is set. In reality, only the private key in the backup (if present) is encrypted; the backup file itself remains un...

7.1CVSS7.2AI score0.00106EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.9 views

PT-2025-33140 · Ctrlx Os · Ctrlx Os

Name of the Vulnerable Software and Affected Versions: ctrlX OS affected versions not specified Description: Ambiguous wording in the web interface of the setup mechanism could lead a user to believe that the backup file is encrypted when a password is set. However, only the private key – if...

7.1CVSS7AI score0.00106EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.6 views

CVE-2022-36617

Arq Backup 7.19.5.0 and below stores backup encryption passwords using reversible encryption. This issue allows attackers with administrative privileges to recover cleartext passwords...

4.9CVSS7AI score0.00426EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/06 12:0 a.m.4 views

PT-2025-5859 · 2N · 2N Access Commander

Name of the Vulnerable Software and Affected Versions: 2N Access Commander versions 1.14 and older Description: The issue allows an attacker with Admin access privileges to read a hardcoded AES passphrase, which can be used to decrypt certain data within backup files. Recommendations: For 2N Acce...

6CVSS7.1AI score0.00153EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/02/04 11:15 p.m.9 views

CVE-2024-39866

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected application allows users to upload encrypted backup files. This could allow an attacker with access to the backup encryption key and with the right to upload backup files to create a user with...

8.8CVSS6.8AI score0.00242EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/12/12 12:0 a.m.6 views

PT-2024-22296 · Image Access Gmbh · Scan2Net

Name of the Vulnerable Software and Affected Versions: Application affected versions not specified Description: The issue concerns the application's use of several hard-coded credentials. These credentials are used for encrypting config files during backup and decrypting new firmware during...

8.4CVSS7AI score0.00267EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/11/07 5:59 p.m.9 views

CVE-2024-51993 Password is stored in clear in the database in Combodo iTop

Combodo iTop is a web based IT Service Management tool. An attacker accessing a backup file or the database can read some passwords for misconfigured Users. This issue has been addressed in version 3.2.0 and all users are advised to upgrade. Users unable to upgrade are advised to encrypt their...

3.4CVSS3.9AI score0.0011EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/16 12:0 a.m.5 views

Cisco UCS Central 安全漏洞

Cisco UCS Central is a server management software from Cisco USA. The software supports the management of multiple Cisco UCS instances or domains in different locations and environments. Up to 10,000 Cisco UCS servers blades, racks, and minis and Cisco HyperFlex systems can be supported using the...

6.3CVSS6.2AI score0.00112EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/16 12:0 a.m.7 views

PT-2024-7336 · Cisco · Cisco Ucs Central

Name of the Vulnerable Software and Affected Versions: Cisco UCS Central Software affected versions not specified Description: A weakness in the encryption method used for the backup function in Cisco UCS Central Software could allow an attacker with access to a backup file to learn sensitive...

6.3CVSS6.8AI score0.00112EPSS
Exploits0References7
NVD
NVD
added 2024/07/09 12:15 p.m.23 views

CVE-2024-39866

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected application allows users to upload encrypted backup files. This could allow an attacker with access to the backup encryption key and with the right to upload backup files to create a user with...

8.8CVSS0.00242EPSS
Exploits0References1
CVE
CVE
added 2024/07/02 12:0 a.m.48 views

CVE-2024-39206

CVE-2024-39206 affects MSP360 Backup Agent versions 7.8.5.15 and 7.9.4.84. The issue arises because enginesettings.list is encrypted with a hard-coded key, enabling an attacker to obtain network share credentials used in backups. Red Hat and CVE listings corroborate the vulnerable versions and im...

7.5CVSS6.9AI score0.00475EPSS
Exploits0References1
OSV
OSV
added 2023/02/23 8:15 p.m.5 views

CVE-2023-20016

A vulnerability in the backup configuration feature of Cisco UCS Manager Software and in the configuration export feature of Cisco FXOS Software could allow an unauthenticated attacker with access to a backup file to decrypt sensitive information stored in the full state and configuration backup...

6.5CVSS6.6AI score0.0011EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/02/23 12:0 a.m.5 views

Cisco FXOS Software和UCS Manager 安全特征问题漏洞

Cisco FXOS Software and Cisco UCS Manager are both products of Cisco, Inc.Cisco FXOS Software is a suite of firewall software that runs in Cisco security appliances.Cisco UCS Manager is an excellent computer plug-in for managing sketchup coordinate systems. . A security vulnerability exists in...

6.5CVSS6.5AI score0.0011EPSS
Exploits0References2
Rows per page
Query Builder