Lucene search
+L

880 matches found

CVE
CVE
added 2020/10/16 12:55 p.m.41 views

CVE-2019-19885

CVE-2019-19885 affects Bender COMTRAXX devices (COM465IP, COM465DP, COM465ID, CP700, CP907, CP915) prior to version 4.2.0. Root cause: user authorization is validated for most routes but not all; a user who knows the routes can read and write configuration data without prior authorization. Impact...

9.1CVSS9AI score0.00999EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2020/10/05 5:58 p.m.46 views

Malware Families Turn to Legit Pastebin-Like Service

Cybercriminals are increasingly turning to a legitimate, Pastebin-like web service for downloading malware — such as AgentTesla and LimeRAT — in spear-phishing attacks. Pastebin, a code-hosting service that enables users to share plain text through public posts called “pastes,” currently has 17...

7AI score
Exploits0References13
ThreatPost
ThreatPost
added 2020/07/22 4:43 p.m.294 views

Lazarus Group Surfaces with Advanced Malware Framework

The North Korea-linked APT known as Lazarus Group has debuted an advanced, multipurpose malware framework, called MATA, to target Windows, Linux and macOS operating systems. Kaspersky researchers uncovered a series of attacks utilizing MATA so-called because the malware authors themselves call...

10CVSS9.4AI score0.99913EPSS
Exploits20References12
OSV
OSV
added 2020/06/16 8:15 p.m.3 views

CVE-2020-7513

A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy T300 Firmware version 1.5.2 and older which could allow an attacker to intercept traffic and read configuration data...

7.5CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2020/06/16 8:15 p.m.20 views

CVE-2020-7513

A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy T300 Firmware version 1.5.2 and older which could allow an attacker to intercept traffic and read configuration data...

7.5CVSS0.00815EPSS
Exploits0References1
Prion
Prion
added 2020/06/16 8:15 p.m.20 views

Design/Logic Flaw

A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy T300 Firmware version 1.5.2 and older which could allow an attacker to intercept traffic and read configuration data...

5CVSS7.3AI score0.00815EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/06/16 7:45 p.m.27 views

CVE-2020-7513

A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy T300 Firmware version 1.5.2 and older which could allow an attacker to intercept traffic and read configuration data...

7.4AI score0.00815EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/05/18 3:45 p.m.32 views

CVE-2020-11551

An issue was discovered on NETGEAR Orbi Tri-Band Business WiFi Add-on Satellite SRS60 AC3000 V2.5.1.106, Outdoor Satellite RBS50Y V2.5.1.106, and Pro Tri-Band Business WiFi Router SRR60 AC3000 V2.5.1.106. The administrative SOAP interface allows an unauthenticated remote write of arbitrary Wi-Fi...

9.6CVSS8.9AI score0.01651EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2020/04/30 12:0 a.m.6 views

The vulnerability of Microprogrammed Software in Modicon Controllers arises from the existence of rigidly encrypted user data, which allows a intruder to execute any command against the Modicon Controllers.

The vulnerability of Microprogrammed Software in Modicon Controllers stems from the existence of rigidly encoded configuration data used to transmit configuration files to Modicon Controllers. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands on Modicon...

7.8CVSS7.7AI score0.0115EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/04/06 12:0 a.m.5 views

The vulnerability of the Border Gateway Protocol (BGP) implementation in the Cisco NX-OS operating system allows a attacker to compromise the integrity and accessibility of protected information.

The vulnerability of the Border Gateway Protocol BGP implementation in the Cisco NX-OS operating system is related to the use of pre-installed configuration data. Exploiting this vulnerability could allow a malicious actor to compromise the integrity and accessibility of protected information...

8.2CVSS7.5AI score0.01278EPSS
Exploits0References4
CNVD
CNVD
added 2020/03/18 12:0 a.m.1 views

Micro Focus Service Manager Information Disclosure Vulnerability (CNVD-2020-18401)

Micro Focus Service Manager is a suite of service desk software from Micro Focus UK. The software supports the deployment of a comprehensive IT service management ITSM system and standardizes management processes. A security vulnerability exists in Micro Focus Service manager. An attacker could...

5.3CVSS6.7AI score0.00862EPSS
Exploits0References1
CNVD
CNVD
added 2020/03/18 12:0 a.m.1 views

Micro Focus Service Manager Information Disclosure Vulnerability (CNVD-2020-18400)

Micro Focus Service Manager is a suite of service desk software from Micro Focus UK. The software supports the deployment of a comprehensive IT service management ITSM system and standardizes management processes. A security vulnerability exists in Micro Focus Service manager. An attacker could...

5.3CVSS6.7AI score0.00862EPSS
Exploits0References1
OSV
OSV
added 2020/03/16 2:15 p.m.4 views

CVE-2020-9518

Login filter can access configuration files vulnerability in Micro Focus Service Manager Web Tier, affecting versions 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow unauthorized access to configuration data...

5.3CVSS6AI score0.00862EPSS
Exploits0References1
NVD
NVD
added 2020/03/16 2:15 p.m.21 views

CVE-2020-9518

Login filter can access configuration files vulnerability in Micro Focus Service Manager Web Tier, affecting versions 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow unauthorized access to configuration data...

5.3CVSS5.2AI score0.00862EPSS
Exploits0References1
Prion
Prion
added 2020/03/16 2:15 p.m.15 views

Design/Logic Flaw

Login filter can access configuration files vulnerability in Micro Focus Service Manager Web Tier, affecting versions 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow unauthorized access to configuration data...

5CVSS5.2AI score0.00862EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/03/16 1:15 p.m.29 views

CVE-2020-9519

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

5.3CVSS5.2AI score0.00862EPSS
Exploits0References1
Prion
Prion
added 2020/03/16 1:15 p.m.23 views

Design/Logic Flaw

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

5CVSS5.2AI score0.00862EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/16 1:0 p.m.44 views

CVE-2020-9519

HTTP methods reveled in Web services vulnerability in Micro Focus Service manager server, affecting versions 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62, 9.63. The vulnerability could be exploited to allow exposure of configuration data...

5.3AI score0.00862EPSS
Exploits0References1
ICS
ICS
added 2020/02/25 12:0 a.m.123 views

Moxa MB3xxx Series Protocol Gateways

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Moxa Equipment: MB3170 series, MB3180 series, MB3270 series, MB3280 series, MB3480 series, and MB3660 series Vulnerabilities: Stack-based Buffer Overflow, Integer Overflow to Buffer Overflow,...

9.8CVSS9.4AI score0.03941EPSS
Exploits0References5
CNVD
CNVD
added 2020/02/17 12:0 a.m.3 views

Lenovo XClarity Administrator Access Control Error Vulnerability

Lenovo XClarity Administrator LXCA is a centralized resource management solution from Lenovo, China. The product is capable of providing agentless hardware management for servers, storage, network switches, and more. An access control error vulnerability exists in Lenovo XClarity Administrator LX...

7.5CVSS7AI score0.01033EPSS
Exploits0References1
Rows per page
Query Builder