CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-44047

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.00245EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 8:35 a.m.•2 views

CVE-2024-4423

The access control in CemiPark software does not properly validate user-entered data, which allows the authentication bypass. An attacker who has network access to the login panel can log in with administrator rights to the application.This issue affects CemiPark software: 4.5, 4.7, 5.03 and...

7.2CVSS7.2AI score0.00166EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:35 a.m.•2 views

CVE-2024-4425

The access control in CemiPark software stores integration e.g. FTP or SIP credentials in plain-text. An attacker who gained unauthorized access to the device can retrieve clear text passwords used by the system.This issue affects CemiPark software: 4.5, 4.7, 5.03 and potentially others. The vend...

5.4CVSS7AI score0.00147EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 8:35 a.m.•3 views

CVE-2024-4424

The access control in CemiPark software does not properly validate user-entered data, which allows the stored cross-site scripting XSS attack. The parameters used to enter data into the system do not have appropriate validation, which makes possible to smuggle in HTML/JavaScript code. This code...

6.1CVSS5.8AI score0.00245EPSS

Exploits0References1

NVD•added 2024/05/14 3:43 p.m.•9 views

CVE-2024-4425

5.4CVSS6.6AI score0.00147EPSS

Exploits0References3

NVD•added 2024/05/14 3:43 p.m.•4 views

CVE-2024-4424

6.1CVSS5.5AI score0.00245EPSS

Exploits0References3

NVD•added 2024/05/14 3:43 p.m.•9 views

CVE-2024-4423

7.2CVSS6.8AI score0.00166EPSS

Exploits0References3

CNNVD•added 2024/05/14 12:0 a.m.•1 views

CemiPark 安全漏洞

CemiPark is an application from CemiPark, Inc. A security vulnerability exists in CemiPark that stems from access control storing integration credentials in plain text, which allows an unauthorized attacker to retrieve plaintext passwords used by the system...

7.2CVSS6.5AI score0.00166EPSS

Exploits0References5

CVE•added 2024/05/09 9:37 a.m.•26 views

CVE-2024-4425

CVE-2024-4425 affects CemiPark software (versions 4.5, 4.7, 5.03 and potentially others). The root cause is improper handling of credentials, with integration credentials (e.g., FTP or SIP) stored in plain-text. An attacker who gains unauthorized access to the device can retrieve clear-text passw...

5.4CVSS6.8AI score0.00147EPSS

Exploits0References3

Cvelist•added 2024/05/09 9:37 a.m.•18 views

CVE-2024-4425 Storing credentials in plaintext in CemiPark

6.8AI score0.00147EPSS

Exploits0References3

Vulnrichment•added 2024/05/09 9:37 a.m.•10 views

CVE-2024-4425 Storing credentials in plaintext in CemiPark

6.9AI score0.00166EPSS

Exploits0References3

Cvelist•added 2024/05/09 9:36 a.m.•7 views

CVE-2024-4424 Stored XSS in CemiPark

5.7AI score0.00245EPSS

Exploits0References3

CVE•added 2024/05/09 9:36 a.m.•21 views

CVE-2024-4424

CVE-2024-4424 affects CemiPark software (versions 4.5, 4.7, 5.03 and potentially others) where input data is not properly validated, enabling stored cross-site scripting (XSS). The vulnerability arises from insufficient validation of user-entered data in the access control/data entry pathways, al...

6.1CVSS5.7AI score0.00245EPSS

Exploits0References3

Vulnrichment•added 2024/05/09 9:36 a.m.•10 views

CVE-2024-4424 Stored XSS in CemiPark

5.8AI score0.00245EPSS

Exploits0References3

Cvelist•added 2024/05/09 9:36 a.m.•7 views

CVE-2024-4423 Authentication bypass in CemiPark

7AI score0.00166EPSS

Exploits0References3

CVE•added 2024/05/09 9:36 a.m.•17 views

CVE-2024-4423

The CVE-2024-4423 entry concerns CemiPark software where flawed access control allows authentication bypass. The issue exists in versions 4.5, 4.7, 5.03 and potentially others; the vendor has not disclosed the exact affected product range. A malicious actor with network access to the login panel ...

7.2CVSS7AI score0.00166EPSS

Exploits0References3

Vulnrichment•added 2024/05/09 9:36 a.m.•9 views

CVE-2024-4423 Authentication bypass in CemiPark

7.1AI score0.00166EPSS

Exploits0References3

Positive Technologies•added 2024/05/09 12:0 a.m.•1 views

PT-2024-31058 · Cemipark · Cemipark

Name of the Vulnerable Software and Affected Versions: CemiPark software versions 4.5, 4.7, 5.03 Description: The access control in CemiPark software does not properly validate user-entered data, allowing for authentication bypass. An attacker with network access to the login panel can log in wit...

7.2CVSS6.5AI score0.00166EPSS

Exploits0References5

Positive Technologies•added 2024/05/09 12:0 a.m.•2 views

PT-2024-31076 · Cemipark · Cemipark

Name of the Vulnerable Software and Affected Versions: CemiPark software versions 4.5 through 5.03 Description: The access control in CemiPark software stores integration credentials, such as FTP or SIP, in plain-text. An attacker who gains unauthorized access to the device can retrieve clear tex...

7.2CVSS6.4AI score0.00166EPSS

Exploits0References5

Positive Technologies•added 2024/05/09 12:0 a.m.•2 views

PT-2024-31067 · Cemipark · Cemipark

Name of the Vulnerable Software and Affected Versions: CemiPark software versions 4.5, 4.7, 5.03 Description: The access control in CemiPark software does not properly validate user-entered data, allowing a stored cross-site scripting XSS attack. The parameters used to enter data into the system...

7.2CVSS5.1AI score0.00245EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by