Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Vulnrichment
Vulnrichmentadded 2026/01/26 10:6 a.m.1 views

CVE-2025-59109 UART Leaking Sensitive Data in dormakaba registration unit 9002

The dormakaba registration units 9002 PIN Pad Units have an exposed UART header on the backside. The PIN pad is sending every button press to the UART interface. An attacker can use the interface to exfiltrate PINs. As the devices are explicitly built as Plug-and-Play to be easily replaced, an...

5.1CVSS6AI score0.00034EPSS
Exploits0References3
Prion
Prionadded 2022/01/21 7:15 p.m.12 views

Hardcoded credentials

Requests may be used to interrupt the normal operation of the device. When exploited, Fresenius Kabi Agilia Link+ version 3.0 must be rebooted via a hard reset triggered by pressing a button on the rack system...

7.8CVSS7.8AI score0.00205EPSS
Exploits0References1Affected Software6
Prion
Prionadded 2020/10/07 10:15 p.m.13 views

Authentication flaw

Smarter Coffee Maker before 2nd generation allows firmware replacement without authentication or authorization. User interaction is required to press a button. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

4.3CVSS6.6AI score0.00309EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2020/10/07 12:0 a.m.2 views

PT-2020-14463 · Smarter · Smarter Coffee Maker

Name of the Vulnerable Software and Affected Versions: Smarter Coffee Maker versions before 2nd generation Description: The issue allows firmware replacement without authentication or authorization. User interaction is required to press a button. This problem only affects products that are no...

6.5CVSS7.2AI score0.00309EPSS
Exploits1References4
Kitploit
Kitploitadded 2020/03/06 12:0 p.m.431 views

Ghost Framework - An Android Post Exploitation Framework That Uses An Android Debug Bridge To Remotely Access A n Android Device

Ghost Framework is an Android post exploitation framework that uses an Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration. Getting started Ghost installation cd ghost chmod +x install.sh ./install....

7.7AI score
Exploits0References1
Pen Test Partners Blog
Pen Test Partners Blogadded 2019/08/30 8:2 a.m.54 views

A Secure “Smart” Kettle?

We haven’t looked at smart kettles for a long time, mostly as the UK market leader, Smarter, fixed their security with the iKettle 3.0. So I got quite excited when a colleague pointed out the Xiaomi ‘smart’ kettle a few weeks back. It’s the first kettle with a mobile app that we’ve seen for a...

6.7AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2009/04/23 12:0 a.m.11 views

MDVA-2008:165 : gnome-power-manager

Some button press events where handled two times because they were reported both by X and by Hal. This update adds some code to detect them and ignore the duplicate events. This update also adds a gconf key /schemas/apps/gnome-power-manager/general/logoutcommand to allow using gnome-power-manager...

7.2AI score
Exploits0References1
Rows per page
Query Builder