Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-22822

Malware in sbrugna...

5.3CVSS5.6AI score0.00503EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/07/16 12:0 a.m.8 views

PT-2024-24920 · Software House · Software House Ccure 9000

Name of the Vulnerable Software and Affected Versions: Software House C•CURE 9000 affected versions not specified Description: The issue arises when the Software House C•CURE 9000 installer utilizes unnecessarily wide permissions under certain circumstances. Recommendations: At the moment, there ...

7.8CVSS7AI score0.00148EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/06/05 11:23 p.m.29 views

CVE-2024-0912 CCURE passwords exposed to administrators

Under certain circumstances the Microsoft® Internet Information Server IIS used to host the C•CURE 9000 Web Server will log Microsoft Windows credential details within logs. There is no impact to non-web service interfaces C•CURE 9000 or prior versions...

8.5CVSS6.5AI score0.00164EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/05 11:23 p.m.20 views

CVE-2024-0912 CCURE passwords exposed to administrators

Under certain circumstances the Microsoft® Internet Information Server IIS used to host the C•CURE 9000 Web Server will log Microsoft Windows credential details within logs. There is no impact to non-web service interfaces C•CURE 9000 or prior versions...

8.5CVSS6.8AI score0.00164EPSS
Exploits0References2
OSV
OSV
added 2022/10/11 9:15 p.m.5 views

CVE-2021-36201

Under certain circumstances a CCURE Portal user could enumerate user accounts in CCURE 9000 version 2.90 and prior versions...

5.3CVSS5.8AI score0.00503EPSS
Exploits0References2
NVD
NVD
added 2022/10/11 9:15 p.m.25 views

CVE-2021-36201

Under certain circumstances a CCURE Portal user could enumerate user accounts in CCURE 9000 version 2.90 and prior versions...

5.3CVSS0.00503EPSS
Exploits0References2
Prion
Prion
added 2022/10/11 9:15 p.m.20 views

Code injection

Under certain circumstances a CCURE Portal user could enumerate user accounts in CCURE 9000 version 2.90 and prior versions...

5CVSS5.2AI score0.00503EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/10/11 8:17 p.m.67 views

CVE-2021-36201

CVE-2021-36201 affects Johnson Controls/Sensormatic C-CURE 9000. The vulnerability, labeled Observable Response Discrepancy, occurs in CCURE 9000 versions prior to 2.90 and could allow an unauthorized CCURE Portal user to enumerate existing user accounts due to problematic responses. CVSS base me...

5.3CVSS4.8AI score0.00503EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/11 8:17 p.m.6 views

CVE-2021-36201 CCURE Observable Response Discrepancy

Under certain circumstances a CCURE Portal user could enumerate user accounts in CCURE 9000 version 2.90 and prior versions...

4.3CVSS5.6AI score0.00503EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/10/11 8:17 p.m.33 views

CVE-2021-36201 CCURE Observable Response Discrepancy

Under certain circumstances a CCURE Portal user could enumerate user accounts in CCURE 9000 version 2.90 and prior versions...

4.3CVSS5.6AI score0.00503EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/10/11 12:0 a.m.7 views

PT-2022-10492 · Unknown · Ccure 9000

Name of the Vulnerable Software and Affected Versions: CCURE 9000 versions prior to 2.90 Description: The issue allows a CCURE Portal user to enumerate user accounts under certain circumstances. Recommendations: For CCURE 9000 versions prior to 2.90, update to a version later than 2.90 to resolve...

5.3CVSS5.2AI score0.00503EPSS
Exploits0References3
OSV
OSV
added 2020/11/19 4:15 p.m.4 views

CVE-2020-9049

A vulnerability in specified versions of American Dynamics victor Web Client and Software House C•CURE Web Client could allow an unauthenticated attacker on the network to create and sign their own JSON Web Token and use it to execute an HTTP API Method without the need for valid...

5.3CVSS6.2AI score0.00527EPSS
Exploits0References2
OSV
OSV
added 2020/10/08 6:15 p.m.4 views

CVE-2020-9048

A vulnerability in specified versions of American Dynamics victor Web Client and Software House CCURE Web Client could allow a remote unauthenticated attacker on the network to delete arbitrary files on the system or render the system unusable by conducting a Denial of Service attack...

8.1CVSS7.4AI score0.01131EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2020/10/08 12:0 a.m.6 views

PT-2020-20461 · American Dynamics +1 · American Dynamics Victor Web Client +1

Name of the Vulnerable Software and Affected Versions: American Dynamics victor Web Client versions up to and including v5.4.1 Software House CCURE Web Client affected versions not specified Description: A remote unauthenticated attacker on the network could delete arbitrary files on the system o...

8.1CVSS8.1AI score0.01131EPSS
Exploits0References4
Rows per page
Query Builder