Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:34 a.m.11 views

CVE-2019-7276

Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console...

10CVSS7.3AI score0.93384EPSS
Exploits7References1
Metasploit
Metasploit
added 2023/03/29 7:50 p.m.306 views

Optergy Proton and Enterprise BMS Command Injection using a backdoor

This module exploits an undocumented backdoor vulnerability in the Optergy Proton and Enterprise Building Management System BMS applications. Versions 2.0.3a and below are vulnerable. Attackers can exploit this issue by directly navigating to an undocumented backdoor script called Console.jsp in...

10CVSS8.6AI score0.93384EPSS
Exploits7
Packet Storm
Packet Storm
added 2023/03/28 12:0 a.m.215 views

Optergy Proton And Enterprise BMS 2.0.3a Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Optergy Proton and Enterprise BMS Command Injection using a backdoor', 'Description' = %q This module exploits an undocumented backdoor...

10CVSS9.4AI score0.93384EPSS
Exploits7
0day.today
0day.today
added 2023/03/28 12:0 a.m.361 views

Optergy Proton And Enterprise BMS 2.0.3a Command Injection Exploit

This Metasploit module exploits an undocumented backdoor vulnerability in the Optergy Proton and Enterprise Building Management System BMS applications. Versions 2.0.3a and below are vulnerable. Attackers can exploit this issue by directly navigating to an undocumented backdoor script called...

9.8CVSS9.6AI score0.93384EPSS
Exploits7
Circl
Circl
added 2020/10/15 3:7 p.m.21 views

CVE-2019-7276

creationtimestamp| type| source ---|---|--- 2020-10-15 15:07:04+00:00| seen| MISP/cbd9bbb3-3f53-4610-9d91-9191ff0a9ca8 2020-10-16 06:56:57+00:00| seen| MISP/25aef508-b116-4d75-84b2-b6ceff906e44 2023-03-29 14:49:46+00:00| seen|...

10CVSS9.3AI score0.93384EPSS
Exploits7References3
Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.97 views

Optergy BMS 2.0.3a Remote Root

!/usr/bin/env python Unauthenticated Remote Root Exploit in Optergy BMS Console Backdoor Affected version \n' sys.exit while True: challengeurl = 'http://'+sys.argv1+'/tools/ajax/ConsoleResult.html?get' try: req1 = requests.getchallengeurl getchallenge = json.loadsreq1.text challenge =...

10CVSS9.6AI score0.93384EPSS
Exploits7
0day.today
0day.today
added 2019/11/12 12:0 a.m.131 views

Optergy 2.3.0a - Remote Code Execution (Backdoor) Exploit

Exploit for hardware platform in category web applications Title: Optergy 2.3.0a - Remote Code Execution Author: LiquidWorm Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: \n' sys.exit while True: challengeurl =...

10CVSS9.6AI score0.93384EPSS
Exploits7
exploitpack
exploitpack
added 2019/11/12 12:0 a.m.140 views

Optergy 2.3.0a - Remote Code Execution (Backdoor)

Optergy 2.3.0a - Remote Code Execution Backdoor Title: Optergy 2.3.0a - Remote Code Execution Author: LiquidWorm Date: 2019-11-05 Vendor: https://optergy.com/ Product web page: https://optergy.com/products/ Affected version: \n' sys.exit while True: challengeurl =...

10CVSS0.93384EPSS
Exploits7
OSV
OSV
added 2019/07/01 8:15 p.m.6 views

CVE-2019-7276

Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console...

9.8CVSS7.4AI score0.93384EPSS
Exploits7References4
CVE
CVE
added 2019/07/01 12:0 a.m.151 views

CVE-2019-7276

Optergy Proton/Enterprise BMS is affected by CVE-2019-7276: unauthenticated remote code execution via a backdoor console. Public details show an undocumented backdoor script (Console.jsp) in the tools directory that enables full root access on vulnerable versions (notably 2.0.3a and earlier). Exp...

10CVSS9.4AI score0.93384EPSS
Exploits7References4Affected Software2
Rows per page
Query Builder