Lucene search
+L

215 matches found

Zero Day Initiative
Zero Day Initiative
added 2022/09/29 12:0 a.m.12 views

(0Day) GE CIMPLICITY CIM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GE CIMPLICITY. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of CIM...

7.8CVSS6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/07/21 12:34 a.m.12 views

cim-ms.de Cross Site Scripting vulnerability OBB-2802928

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Rockylinux
Rockylinux
added 2022/05/17 6:29 a.m.16 views

new packages: cim-schema

An update is available for cim-schema. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

2.2AI score
Exploits0
Kitploit
Kitploit
added 2021/09/08 8:30 p.m.202 views

SharpStrike - A Post Exploitation Tool Written In C# Uses Either CIM Or WMI To Query Remote Systems

SharpStrike is a post-exploitation tool written in C that uses either CIM or WMI to query remote systems. It can use provided credentials or the current user's session. Note: Some commands will use PowerShell in combination with WMI, denoted with in the --show-commands command. Introduction...

7.7AI score
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/08/25 12:0 a.m.10 views

The vulnerability of the SFCB service (Small Footprint CIM Broker), which is part of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform, allows a perpetrator to bypass the authentication process.

The vulnerability of the SFCB Small Footprint CIM Broker service of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass the authentication...

9.8CVSS7.7AI score0.01158EPSS
Exploits0References5Affected Software1
NCSC
NCSC
added 2021/07/14 12:0 a.m.53 views

Vulnerabilities fixed in VMware ESXi

VMware has fixed two vulnerabilities in ESXi. The vulnerability with reference CVE-2021-21994 is located in the Small Footprint CIM Broker SFCB and allows a remote malicious person to bypass authentication. This requires rogue network traffic be sent to port 5989 of the ESXi server. The...

9.8CVSS7AI score0.01158EPSS
Exploits0
OSV
OSV
added 2021/07/13 7:15 p.m.6 views

CVE-2021-21994

SFCB Small Footprint CIM Broker as used in ESXi has an authentication bypass vulnerability. A malicious actor with network access to port 5989 on ESXi may exploit this issue to bypass SFCB authentication by sending a specially crafted request...

9.8CVSS5.8AI score0.01158EPSS
Exploits0References1
NVD
NVD
added 2021/07/13 7:15 p.m.16 views

CVE-2021-21994

SFCB Small Footprint CIM Broker as used in ESXi has an authentication bypass vulnerability. A malicious actor with network access to port 5989 on ESXi may exploit this issue to bypass SFCB authentication by sending a specially crafted request...

9.8CVSS0.01158EPSS
Exploits0References1
CVE
CVE
added 2021/07/13 6:5 p.m.193 views

CVE-2021-21994

CVE-2021-21994 affects VMware ESXi via SFCB authentication bypass. A remote attacker with network access to port 5989 can bypass SFCB authentication by a crafted request. VMware's VMSA-2021-0014 provides patched versions: ESXi 7.0 (ESXi70U2-17630552), ESXi 6.7 (ESXi670-202103101-SG), and ESXi 6.5...

9.8CVSS9.5AI score0.01158EPSS
Exploits0References1Affected Software1
Kitploit
Kitploit
added 2021/05/15 9:30 p.m.90 views

CIMplant - C# Port Of WMImplant Which Uses Either CIM Or WMI To Query Remote Systems

C port of WMImplant which uses either CIM or WMI to query remote systems. It can use provided credentials or the current user's session. Note: Some commands will use PowerShell in combination with WMI, denoted with in the --show-commands command. Introduction CIMplant is a C rewrite and expansion...

7.5AI score
Exploits0References2
OSV
OSV
added 2020/07/27 7:15 p.m.4 views

CVE-2020-10609

Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...

7.5CVSS7.1AI score0.01519EPSS
Exploits0References1
NVD
NVD
added 2020/07/27 7:15 p.m.13 views

CVE-2020-10609

Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...

7.5CVSS7.3AI score0.01519EPSS
Exploits0References1
Prion
Prion
added 2020/07/27 7:15 p.m.17 views

Information disclosure

Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...

5CVSS7.2AI score0.01519EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/07/27 6:57 p.m.25 views

CVE-2020-10609

Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...

7.3AI score0.01519EPSS
Exploits0References1
CVE
CVE
added 2020/07/27 6:57 p.m.35 views

CVE-2020-10609

CVE-2020-10609 affects Grundfos CIM 500 embedded Ethernet module. The vulnerability is unprotected storage of credentials : the device stores plaintext credentials, enabling read access or modification of system settings by someone with access to the device. Affected version: all prior to v06.16....

7.5CVSS7.2AI score0.01519EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/07/17 10:15 p.m.29 views

CVE-2020-10605

Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...

7.5CVSS0.01132EPSS
Exploits0References1
OSV
OSV
added 2020/07/17 10:15 p.m.4 views

CVE-2020-10605

Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...

7.5CVSS5.8AI score0.01132EPSS
Exploits0References1
Prion
Prion
added 2020/07/17 10:15 p.m.12 views

Default credentials

Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...

5CVSS7.7AI score0.01132EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/07/17 9:55 p.m.27 views

CVE-2020-10605

Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...

7.7AI score0.01132EPSS
Exploits0References1
CVE
CVE
added 2020/07/17 9:55 p.m.45 views

CVE-2020-10605

CVE-2020-10605 affects Grundfos CIM 500 (all versions prior to v06.16.00). The root cause is missing authentication for a critical function that allows unauthenticated access to password storage files, effectively exposing plaintext credentials. Impact, as documented, includes unauthorized access...

7.5CVSS7.7AI score0.01132EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder