Medtronic MyCareLink Patient Monitor 安全漏洞

Medtronic MyCareLink Patient Monitor is an open-source monitoring system developed by Medtronic in the United States. The Medtronic MyCareLink Patient Monitor has a security vulnerability, which stems from its internal serial interface. This vulnerability could allow attackers with physical acces...

EUVD-2018-11725

Malware in sbrugna...

CVE-2023-33920

A vulnerability has been identified in CP-8031 MASTER MODULE All versions CPCI85 V05, CP-8050 MASTER MODULE All versions CPCI85 V05. The affected devices contain the hash of the root password in a hard-coded form, which could be exploited for UART console login to the device. An attacker with...

How to Reset the XenServer Host Password on a CloudBridge 2000/3000/4000/5000

This article describes how to reset the XenServer Host password on a CloudBridge 2000/3000/4000/5000. The procedure can be completed when credentials are not working to access the SVM, XS, and Serial Console...

CVE-2023-33920

Siemens SICAM A8000 CP-8031/CP-8050 Master Modules (versions older than CPCI85 V05) are affected by CVE-2023-33920 due to hard-coded root-password credentials. The vulnerability enables login via the UART console when an attacker has direct physical access, jeopardizing device integrity and contr...

PT-2023-3379 · Siemens · Cp-8050 Master Module +1

Name of the Vulnerable Software and Affected Versions: CP-8031 MASTER MODULE versions prior to CPCI85 V05 CP-8050 MASTER MODULE versions prior to CPCI85 V05 Description: A vulnerability has been identified that involves an exposed UART console login interface. This issue could allow an attacker...

CVE-2023-28346

An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for a remote attacker to communicate with the private API endpoints exposed at /login, /consoleSettings, /console, etc. despite Virtual Host Routing being used to block this access. Remote attackers can interact wit...

CVE-2023-20012

A vulnerability in the CLI console login authentication of Cisco Nexus 9300-FX3 Series Fabric Extender FEX when used in UCS Fabric Interconnect deployments could allow an unauthenticated attacker with physical access to bypass authentication. This vulnerability is due to the improper implementati...

CVE-2023-20012 Cisco Nexus 9300-FX3 Series Fabric Extender for UCS Fabric Interconnects Authentication Bypass Vulnerability

A vulnerability in the CLI console login authentication of Cisco Nexus 9300-FX3 Series Fabric Extender FEX when used in UCS Fabric Interconnect deployments could allow an unauthenticated attacker with physical access to bypass authentication. This vulnerability is due to the improper implementati...

Cisco Nexus 9300-FX3 Series Fabric Extender for UCS Fabric Interconnects Authentication Bypass Vulnerability

A vulnerability in the CLI console login authentication of Cisco Nexus 9300-FX3 Series Fabric Extender FEX when used in UCS Fabric Interconnect deployments could allow an unauthenticated attacker with physical access to bypass authentication. This vulnerability is due to the improper implementati...

SUSE CVE-2006-6662

Unspecified vulnerability in Linux User Management novell-lum on SUSE Linux Enterprise Desktop 10 and Open Enterprise Server 9, under unspecified conditions, allows local users to log in to the console without a password...

CVE-2022-33873

An improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in Console login components of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated attacker to execute arbitrary command in the...

Command injection

An improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in Console login components of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated attacker to execute arbitrary command in the...

CVE-2022-33873

CVE-2022-33873 describes an OS command injection in FortiTester Console login components due to improper neutralization of special elements. Affected FortiTester versions: 2.3.0–3.9.1, 4.0.0–4.2.0, and 7.0.0–7.1.0. Unauthenticated attackers could execute arbitrary commands in the underlying shell...

CVE-2022-33873

An improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in Console login components of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated attacker to execute arbitrary command in the...

PVS Login error: Error "the domain\user does not have access to the farm" or "The specified AuthGroup does not exist" when Trying to Connect to PVS Farm

When trying to connect to a PVS Farm through the PVS Console, the following error is displayed and you cannot connect to the Farm. Error : "the domain\user does not have access to the farm" Error : "The specified AuthGroup does not exist"...

CVE-2021-39065

IBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to execute arbitrary commands on the system, caused by improper validation of user-supplied input by the Spectrum Copy Data Management Admin Console login and uploadcertificate function . A remote attacker could...

Dell Technologies Dell PowerScale OneFS 日志信息泄露漏洞

Dell PowerScale OneFS is an operating system from Dell Technologies, Inc. Dell EMC PowerScale OneFS version 8.1.2 contains an information disclosure vulnerability that could be exploited by an attacker with ISIPRIVLOGINSSH and ISIPRIVLOGINCONSOLE privileges to access sensitive information in log...

EMC PowerScale操作系统命令注入漏洞

Dell EMC PowerScale OneFS is an API-driven file system. version 8.2.-9.2.1. of Dell EMC PowerScale OneFS is vulnerable to OS command injection. An attacker with ISIPRIVLOGINSSH or ISIPRIVLOGINCONSOLE privileges can exploit this vulnerability to elevate privileges and evade compliance assurance...

CVE-2021-21527

Dell PowerScale OneFS 8.1.0-9.1.0 contain an improper neutralization of special elements used in an OS command vulnerability. This vulnerability may allow an authenticated user with ISIPRIVLOGINSSH or ISIPRIVLOGINCONSOLE privileges to escalate privileges...