CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

CVE•added 2024/09/10 9:4 a.m.•46 views

CVE-2024-39582

Dell PowerScale InsightIQ 5.0 is affected by CVE-2024-39582 due to use of hard-coded credentials in the product. A high-privileged attacker with local access could exploit this to cause information disclosure. Root cause is the hard-coded credentials embedded in the software. No exploitation deta...

4.4CVSS6.5AI score0.00063EPSS

Exploits0References1Affected Software1

OSV•added 2023/03/21 3:15 p.m.•1 views

CVE-2023-27873

IBM Aspera Faspex 4.4.2 could allow a remote authenticated attacker to obtain sensitive credential information using specially crafted XML input. IBM X-Force ID: 249654...

6.5CVSS5.6AI score0.0031EPSS

Exploits0References2

NVD•added 2023/01/20 3:15 a.m.•15 views

CVE-2023-22331

Use of default credentials vulnerability in CONPROSYS HMI System CHS Ver.3.4.5 and earlier allows a remote unauthenticated attacker to alter user credentials information...

7.5CVSS8.1AI score0.00855EPSS

Exploits0References4

IBM Security Bulletins•added 2022/11/14 4:37 a.m.•38 views

Security Bulletin: Vulnerability from Apache Kafka affect IBM Operations Analytics - Log Analysis (CVE-2021-38153)

Summary Apache Kafka is vulnerable to timing attacks that could allow remote attacker to obtain sensitive information Vulnerability Details CVEID:CVE-2021-38153 DESCRIPTION: Apache Kafka could allow a remote attacker to obtain sensitive information, caused by a timing attack flaw due to the use o...

5.9CVSS6.4AI score0.0152EPSS

Exploits0Affected Software1

Zero Day Initiative•added 2019/10/30 12:0 a.m.•18 views

(0Day) Jenkins Delphix Cleartext Storage of Credentials Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Jenkins Delphix. Authentication is required to exploit this vulnerability. The specific flaw exists within the Delphix plugin. The issue results from storing credentials in plaintext. An...

3.3CVSS1.8AI score

Exploits0

Zero Day Initiative•added 2019/09/17 12:0 a.m.•22 views

Jenkins Port Allocator Cleartext Storage of Credentials Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Jenkins Port Allocator. Authentication is required to exploit this vulnerability. The specific flaw exists within the Port Allocator plugin. The issue results from storing credentials in...

3.3CVSS1.3AI score0.00088EPSS

Exploits0References1

OpenVAS•added 2012/02/16 12:0 a.m.•8 views

FreePBX 'gen_amp_conf.php' Credentials Information Disclosure Vulnerability

FreePBX is prone to an information-disclosure vulnerability that may expose administrator's credentials. Successful exploits will allow unauthenticated attackers to obtain sensitive information that may aid in further attacks. OpenVAS Vulnerability Test $Id: gbfreepbx52048.nasl 6720 2017-07-13...

7.1AI score

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by