8 matches found
Authentication flaw
Improper authentication vulnerability in SCT-40CM01SR and AT-40CM01SR allows an attacker to bypass access restriction and execute an arbitrary command via telnet...
CVE-2021-3512
Improper access control vulnerability in Buffalo broadband routers BHR-4GRV firmware Ver.1.99 and prior, DWR-HP-G300NH firmware Ver.1.83 and prior, HW-450HP-ZWE firmware Ver.1.99 and prior, WHR-300HP firmware Ver.1.99 and prior, WHR-300 firmware Ver.1.99 and prior, WHR-G301N firmware Ver.1.86 and...
CVE-2021-20633
Improper access control vulnerability in Cabinet of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attackers to bypass access restriction and obtain the date of Cabinet via unspecified vectors...
Improper access control
Improper access control vulnerability in Custom App of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attackers to bypass access restriction and obtain the date of Custom App via unspecified vectors...
CVE-2019-5955
The CVE-2019-5955 issue concerns the CREATE SD official App for Android (version 1.0.2 and earlier). The root cause is an improper access control vulnerability (CWE-284) in how the app handles Intents, enabling a remote attacker to craft an interaction that directs a user to an arbitrary URL. Thi...
CVE-2019-5955
CREATE SD official App for Android version 1.0.2 and earlier allows remote attackers to bypass access restriction to lead a user to access an arbitrary website via vulnerable application and conduct phishing attacks...
Security Bulletin: Vulnerability in Enterprise Networking Operating System (ENOS) affects IBM Flex System Networking Switch Products (CVE-2017-3765)
Summary IBM Flex System Networking Switch Products have addressed the following vulnerability in Enterprise Networking Operating System ENOS. Vulnerability Details Summary IBM Flex System Networking Switch Products have addressed the following vulnerability in Enterprise Networking Operating Syst...
CVE-2017-10833
"Dokodemo eye Smart HD" SCR02HD Firmware 1.0.3.1000 and earlier allows remote attackers to bypass access restriction to view information or modify configurations via unspecified vectors...