Lucene search
K

208 matches found

OpenVAS
OpenVAS
added 2018/03/02 12:0 a.m.41 views

Icinga2 < 2.8.2 Multiple Vulnerabilities

Icinga2 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:icinga:icinga2"; if description...

8.1CVSS6.7AI score0.01389EPSS
Exploits1References7
NVD
NVD
added 2017/12/16 2:29 a.m.20 views

CVE-2017-3186

ACTi cameras including the D, B, I, and E series using firmware version A1D-500-V6.11.31-AC use non-random default credentials across all devices. A remote attacker can take complete control of a device using default admin credentials...

10CVSS9.6AI score0.06085EPSS
Exploits0References4
Prion
Prion
added 2017/12/16 2:29 a.m.27 views

Default credentials

ACTi cameras including the D, B, I, and E series using firmware version A1D-500-V6.11.31-AC use non-random default credentials across all devices. A remote attacker can take complete control of a device using default admin credentials...

10CVSS9.5AI score0.06085EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2017/10/13 5:29 p.m.21 views

CVE-2016-4922

Certain combinations of Junos OS CLI commands and arguments have been found to be exploitable in a way that can allow unauthorized access to the operating system. This may allow any user with permissions to run these CLI commands the ability to achieve elevated privileges and gain complete contro...

8.4CVSS8.8AI score0.00459EPSS
Exploits0References3
Prion
Prion
added 2017/10/01 1:29 a.m.20 views

Design/Logic Flaw

Lack of Transport Encryption in the public API in Philips Hue Bridge BSB002 SW 1707040932 allows remote attackers to read API keys and consequently bypass the pushlink protection mechanism, and obtain complete control of the connected accessories by leveraging the ability to sniff HTTP traffic on...

7.9CVSS7.5AI score0.00422EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2017/09/19 12:0 a.m.15 views

CCleaner 'CCleaner.exe' Backdoor Trojan Vulnerability - Windows

CCleaner is prone to backdoor trojan installation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS7AI score0.00494EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2017/09/14 12:0 a.m.129 views

Microsoft Live Meeting 2007 Add-in Multiple Vulnerabilities (KB4025869)

This host is missing an important security update according to Microsoft KB4025869 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

7.6CVSS5.9AI score0.14264EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2017/06/14 12:0 a.m.54 views

Microsoft Office Multiple Vulnerabilities (KB3191848)

This host is missing a critical security update according to Microsoft KB3191848 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.6AI score0.19889EPSS
Exploits6References6
OpenVAS
OpenVAS
added 2017/06/14 12:0 a.m.78 views

Microsoft Office Multiple Vulnerabilities (KB3191828)

This host is missing a critical security update according to Microsoft KB3191828 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.6AI score0.19889EPSS
Exploits6References6
NVD
NVD
added 2017/04/24 3:59 p.m.19 views

CVE-2017-2334

An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to perform a man-in-the-middle attack, thereby stealing authentic credentials from encrypted paths which are easily decrypted,...

7.5CVSS7.5AI score0.00973EPSS
Exploits0References2
Prion
Prion
added 2017/04/24 3:59 p.m.22 views

Information disclosure

An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to perform a man-in-the-middle attack, thereby stealing authentic credentials from encrypted paths which are easily decrypted,...

4.3CVSS7.4AI score0.00973EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/04/24 3:59 p.m.16 views

Authentication flaw

An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious, network based, unauthenticated attacker to perform privileged actions to gain complete control over the environment...

9.3CVSS8.8AI score0.0226EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/04/24 3:0 p.m.21 views

CVE-2017-2332

An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious, network based, unauthenticated attacker to perform privileged actions to gain complete control over the environment...

8.9AI score0.0226EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/04/24 3:0 p.m.25 views

CVE-2017-2334

An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to perform a man-in-the-middle attack, thereby stealing authentic credentials from encrypted paths which are easily decrypted,...

7.5AI score0.00973EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/04/21 12:0 a.m.14 views

wePresent WiPG Multiple Vulnerabilities

wePresent WiPG devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wepresent:wipg";...

7.4AI score
Exploits0References1
OpenVAS
OpenVAS
added 2017/02/02 12:0 a.m.30 views

Revive Adserver Multiple Vulnerabilities

Revive Adserver is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:revive:adserver"; if...

9.8CVSS6.9AI score0.03296EPSS
Exploits0References1
NVD
NVD
added 2017/01/06 9:59 p.m.23 views

CVE-2015-2867

A design flaw in the Trane ComfortLink II SCC firmware version 2.0.2 service allows remote attackers to take complete control of the system...

10CVSS9.4AI score0.04867EPSS
Exploits1References2
Cvelist
Cvelist
added 2017/01/06 9:0 p.m.30 views

CVE-2015-2867

A design flaw in the Trane ComfortLink II SCC firmware version 2.0.2 service allows remote attackers to take complete control of the system...

9.5AI score0.04867EPSS
Exploits1References2
CVE
CVE
added 2017/01/06 9:0 p.m.61 views

CVE-2015-2867

CVE-2015-2867 affects Trane ComfortLink II SCC firmware 2.0.2. Talos reports a design flaw that, during boot, installs two hardcoded user credentials (root: Cold,,2100AAAAA and raptor21: Cold,,2100RRRRR) enabling remote SSH access and local root privilege escalation. The vulnerability allows remo...

10CVSS9.4AI score0.04867EPSS
Exploits1References2Affected Software1
Cisco
Cisco
added 2016/12/07 4:0 p.m.26 views

Cisco IOS XR Software Default Credentials Vulnerability

A vulnerability in Cisco IOS XR Software could allow an authenticated, local attacker to log in to the device with the privileges of the root user. The vulnerability is due to a user account that has a default and static password. An attacker could exploit this vulnerability by connecting to the...

6.8CVSS7.8AI score0.00369EPSS
Exploits0References1
Rows per page
Query Builder