Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

CVE
CVEadded 2016/06/20 1:0 a.m.41 views

CVE-2016-2364

The CVE-2016-2364 issue affects Fonality’s HUDweb plugin for Google Chrome (versions 12.6–14.1i) where the plugin uses a single hardcoded private key across different customer installations, enabling remote attackers to defeat cryptographic protections by exploiting knowledge of that key from ano...

7.5CVSS7.9AI score0.02283EPSS
Exploits0References1Affected Software2
CERT
CERTadded 2016/06/01 12:0 a.m.42 views

Fonality contains a hard-coded password and embedded SSL private key

Overview Fonality previously trixbox Pro version 12.6 and later uses a hard-coded password, and the accompanying HUDweb plugin embeds a private SSL key. Description CWE-259: Use of Hard-coded Password - CVE-2016-2362According to the reporter, FTP is used to sync phone configurations for users, by...

10CVSS8AI score0.02465EPSS
Exploits0References4
Rows per page
Query Builder