8047 matches found
Hardcoded credentials
A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and...
CVE-2017-14021
A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e,...
CVE-2017-14021
CVE-2017-14021 applies to Korenix JetNet devices (JetNet5018G 1.4, JetNet5310G 1.4a, JetNet5428G-2G-2FX 1.4, JetNet5628G-R 1.4, JetNet5628G 1.4, JetNet5728G-24P 1.4, JetNet5828G 1.1d, JetNet6710G-HVDC 1.1e, JetNet6710G 1.1). It involves a Use of Hard-coded Cryptographic Key CWE-321, enabling acce...
CVE-2017-14027
A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and...
CVE-2017-14027
A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and...
CVE-2017-14027
CVE-2017-14027 concerns Korenix JetNet industrial Ethernet switches with hard-coded credentials. Affected versions include JetNet5018G v1.4, JetNet5310G v1.4a, JetNet5428G-2G-2FX v1.4, JetNet5628G-R v1.4, JetNet5628G v1.4, JetNet5728G-24P v1.4, JetNet5828G v1.1d, JetNet6710G-HVDC v1.1e, and JetNe...
EMC AppSync Server Hardcoded Password Vulnerability
EMC AppSync is a suite of data protection software from EMC Corporation. The software provides simple, self-service, service-level agreement SLA-driven data protection and storage management for EMC VNX and EMC VMAX storage.EMC AppSync Server is its server version. A hard-coded password...
Korenix JetNet Man-in-the-Middle Attack Vulnerability
JetNet is a family of industrial Ethernet switch products from Clorox. A man-in-the-middle attack vulnerability exists in Korenix JetNet, where an attacker can access hard-coded certificates and private keys, leading to the execution of a man-in-the-middle attack...
Korenix JetNet Unauthorized Access Vulnerability
JetNet is a family of industrial Ethernet switch products from Clorox. An unauthorized access vulnerability exists in Korenix JetNet, which allows an attacker unauthorized access due to the software's use of undocumented hard-coded credentials...
PT-2017-3193 · Korenix · Jetnet5628G-R +7
Name of the Vulnerable Software and Affected Versions: Korenix JetNet JetNet5018G version 1.4 Korenix JetNet JetNet5310G version 1.4a Korenix JetNet JetNet5428G-2G-2FX version 1.4 Korenix JetNet JetNet5628G-R version 1.4 Korenix JetNet JetNet5628G version 1.4 Korenix JetNet JetNet5728G-24P versio...
Korenix JetNet
CVSS v3 9.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Korenix Equipment: JetNet Vulnerabilities: Use of Hard-coded Cryptographic Key, Use of Hard-coded Credentials AFFECTED PRODUCTS The following versions of JetNet, an Ethernet switch, are affected: JetNet5018G version...
PT-2017-3192 · Korenix · Jetnet5628G-R +7
Name of the Vulnerable Software and Affected Versions: Korenix JetNet5018G version 1.4 Korenix JetNet5310G version 1.4a Korenix JetNet5428G-2G-2FX version 1.4 Korenix JetNet5628G-R version 1.4 Korenix JetNet5628G version 1.4 Korenix JetNet5728G-24P version 1.4 Korenix JetNet5828G version 1.1d...
ZTE ZXR10 Router Multiple Vulnerabilities( CVE-2017-10931)
Vulnerabilities summary The following advisory describes five 5 vulnerabilities found in ZTE ZXR10 Router. ZXR10 ZSR V2 series router is “the next generation intelligent access router product of ZTE, which integrates routing, switching, wireless, security, and VPN gateway. The product adopts...
Boston Scientific ZOOM LATITUDE PRM Hardcoded Encryption Vulnerability
The ZOOM LATITUDE PRMs are a suite of Boston Scientific's portable cardiac rhythm management systems for communicating with implantable pacemakers and defibrillators, deployed in healthcare and public health. The Boston Scientific ZOOM LATITUDE PRMs have a hard-coded encryption vulnerability that...
ICSMA-17-292-01_Boston Scientific ZOOM LATITUDE PRM Vulnerabilities
OVERVIEW Researchers Jonathan Butts and Billy Rios of Whitescope have identified two vulnerabilities in Boston Scientific’s ZOOM LATITUDE Programmer/Recorder/Monitor PRM – Model 3120. Boston Scientific has provided compensating controls to reduce the risk of exploitation. AFFECTED PRODUCTS The...
Juniper Contrail Information Disclosure Vulnerability
Juniper Contrail is a suite of cloud-based security solutions from Juniper Networks, Inc. The solution provides intelligent automation, application security and reliability for cloud and NFV. A security vulnerability exists in the ifmap service in Juniper Contrail that stems from the program's us...
CVE-2017-10616
The ifmap service that comes bundled with Juniper Networks Contrail releases uses hard coded credentials. Affected releases are Contrail releases 2.2 prior to 2.21.4; 3.0 prior to 3.0.3.4; 3.1 prior to 3.1.4.0; 3.2 prior to 3.2.5.0. CVE-2017-10616 and CVE-2017-10617 can be chained together and ha...
CVE-2017-10616
The ifmap service that comes bundled with Juniper Networks Contrail releases uses hard coded credentials. Affected releases are Contrail releases 2.2 prior to 2.21.4; 3.0 prior to 3.0.3.4; 3.1 prior to 3.1.4.0; 3.2 prior to 3.2.5.0. CVE-2017-10616 and CVE-2017-10617 can be chained together and ha...
CVE-2017-10616
CVE-2017-10616 affects Juniper Contrail’s ifmap service and stems from hard-coded credentials in the bundled ifmap component. Affected releases include Contrail 2.2 before 2.21.4; 3.0 before 3.0.3.4; 3.1 before 3.1.4.0; and 3.2 before 3.2.5.0. This CVE can be chained with CVE-2017-10617, contribu...
CVE-2017-10616 Contrail: hard coded credentials
The ifmap service that comes bundled with Juniper Networks Contrail releases uses hard coded credentials. Affected releases are Contrail releases 2.2 prior to 2.21.4; 3.0 prior to 3.0.3.4; 3.1 prior to 3.1.4.0; 3.2 prior to 3.2.5.0. CVE-2017-10616 and CVE-2017-10617 can be chained together and ha...