Lucene search
K

17 matches found

CVE
CVE
added 2026/05/28 9:35 a.m.22 views

CVE-2026-46142

The CVE-2026-46142 issue affects the Linux kernel’s net: libwx code, where reading the PF-restricted WX_CFG_PORT_ST register during VF initialization can trigger an illegal register access, potentially causing a system hang. The root cause is that a VF’s bus function ID can be read directly from ...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.22 views

PT-2026-44265

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the libwx network component where a Virtual Function VF attempts to access the WX CFG PORT ST register. Because this is a Physical Function PF restricted register, the...

9.8CVSS5.8AI score0.03663EPSS
Exploits15References282
RedhatCVE
RedhatCVE
added 2026/01/07 9:11 a.m.11 views

CVE-2025-1907

Instantel Micromate lacks authentication on a configuration port which could allow an attacker to execute commands if connected...

9.8CVSS7.5AI score0.0078EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-1999-0797

Malware in sbrugna...

10CVSS6.4AI score0.02557EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-16436

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0078EPSS
Exploits1References3
NVD
NVD
added 2025/05/30 12:15 a.m.18 views

CVE-2025-1907

Instantel Micromate lacks authentication on a configuration port which could allow an attacker to execute commands if connected...

9.8CVSS0.0078EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/05/29 11:12 p.m.9 views

CVE-2025-1907 Instantel Micromate Missing Authentication for Critical Function

Instantel Micromate lacks authentication on a configuration port which could allow an attacker to execute commands if connected...

9.8CVSS9.8AI score0.0078EPSS
Exploits1References2
CVE
CVE
added 2025/05/29 11:12 p.m.70 views

CVE-2025-1907

CVE-2025-1907 concerns Instantel Micromate devices where a lack of authentication on a configuration port could allow an attacker to execute commands if the port is accessed. Public sources report this as a critical, unauthenticated risk with high confidentiality, integrity, and availability impa...

9.8CVSS7.2AI score0.0078EPSS
Exploits1References2
ICS
ICS
added 2025/05/29 6:0 a.m.12 views

Instantel Micromate (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated attacker to access the device's configuration port and execute commands. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability,...

9.8CVSS10AI score0.0078EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/05/29 12:0 a.m.6 views

Instantel Micromate 访问控制错误漏洞

Instantel Micromate is a portable vibration and noise monitor from Instantel Canada. An access control error vulnerability exists in the Instantel Micromate that stems from a lack of authentication on the configuration port, which could lead to the execution of commands...

9.8CVSS9.3AI score0.0078EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/29 12:0 a.m.11 views

PT-2025-23214 · Instantel · Instantel Micromate

Name of the Vulnerable Software and Affected Versions: Instantel Micromate affected versions not specified Description: The issue concerns a lack of authentication on a configuration port in Instantel Micromate devices, which could allow an attacker to execute commands if connected. This...

9.8CVSS10AI score0.0078EPSS
Exploits1References15
Prion
Prion
added 2022/09/13 10:15 p.m.15 views

Hardcoded credentials

WAPPLES through 6.0 has a hardcoded systemi account. A threat actor could use this account to access the system configuration and confidential information such as SSL keys via an HTTPS request to the /webapi/ URI on port 443 or 5001...

7.5CVSS9.2AI score0.12476EPSS
Exploits0References3Affected Software1
Talos
Talos
added 2022/05/25 12:0 a.m.28 views

Open Automation Software Platform Engine SecureBrowseFile information disclosure vulnerability

Summary An information disclosure vulnerability exists in the OAS Engine SecureBrowseFile functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted network request can lead to a disclosure of sensitive information. An attacker can send a network request to trigger th...

7.5CVSS7.6AI score0.01641EPSS
Exploits1
Metasploit
Metasploit
added 2012/10/14 5:46 p.m.51 views

Lantronix Telnet Password Recovery

This module retrieves the setup record from Lantronix serial-to-ethernet devices via the config port 30718/udp, enabled by default and extracts the telnet password. It has been tested successfully on a Lantronix Device Server with software version V5.8.0.1. This module requires Metasploit:...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2005/08/31 12:0 a.m.24 views

[Full-disclosure] ELSA Lancom Router Discloses the Administrator Password to Remote Users

It is reported that the default configuration allows a remote user to connect to the router via port 80 with a web browser and obtain the remote access password, which is apparently stored in clear text. The remote user can also change the router's configuration and can remotely upgrade the...

2.4AI score
Exploits0
CVE
CVE
added 2000/06/02 4:0 a.m.70 views

CVE-1999-0865

CVE-1999-0865 affects CommuniGate Pro

5CVSS6.8AI score0.01531EPSS
Exploits0References3Affected Software1
NVD
NVD
added 1999/12/03 5:0 a.m.8 views

CVE-1999-0865

Buffer overflow in CommuniGatePro via a long string to the HTTP configuration port...

5CVSS6.8AI score0.01531EPSS
Exploits0References3
Rows per page
Query Builder