CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

OSV•added 2016/01/15 7:59 p.m.•1 views

CVE-2016-1262

Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.1X48 before 12.3X48-D20, and 15.1X49 before 15.1X49-D30 on SRX series devices, when the Real Time Streaming Protocol Application Layer Gateway RTSP ALG is enabled, allow remote attackers to cause a denial of service flowd crash v...

5.9CVSS5.8AI score0.00608EPSS

Exploits0References2

CNVD•added 2015/10/22 12:0 a.m.•1 views

Juniper Networks vSRX virtual denial of service vulnerability

Juniper Networks vSRX virtual is a firewall emulator product from Juniper Networks, Inc.J-Web is one of the network management tools. A security vulnerability in the J-Web service in the Juniper Networks vSRX virtual firewall used in Junos OS versions prior to 15.1X49-D20 can be exploited by a...

7.8CVSS6.8AI score0.00453EPSS

Exploits0References1

CVE•added 2013/12/10 7:0 p.m.•38 views

CVE-2012-3047

The CVE-2012-3047 issue affects Cisco Scientific Atlanta D20 and D30 cable modems, where the web-wizard setup page is vulnerable to Cross-site Scripting (XSS). The root cause is insufficient sanitization of user-supplied input on the web wizard setup page, enabling an unauthenticated, remote atta...

4.3CVSS5.8AI score0.00263EPSS

Exploits0References1Affected Software37

Metasploit•added 2012/04/05 5:35 p.m.•24 views

General Electric D20ME TFTP Server Buffer Overflow DoS

By sending a malformed TFTP request to the GE D20ME, it is possible to crash the device. This module is based on the original 'd20ftpbo.rb' Basecamp module from DigitalBond. This module requires Metasploit: https://metasploit.com/download Current source:...

10AI score

Exploits0

ThreatPost•added 2012/01/20 5:19 p.m.•14 views

Ladder logic

The devices tested by the Basecamp Project included the D20 PLC by GE, The Modicon Quantum by Schneider Electric, Rockwell and Koyo Electronics. Each device was tested using a number of additional attack vectors. Researchers attempted to upload custom firmware or so-called “ladder logic” for the...

1.2AI score

Exploits0

ThreatPost•added 2012/01/20 5:19 p.m.•7 views

(Not) making the grade

The researchers working on Project Basecamp found significant security issues with programmable logic controller PLC they tested. Some PLCs were too brittle and insecure to even tolerate security scans and probing. The D20 ME PLC by General Electric – a widely deployed industrial system – fared t...

0.3AI score

Exploits0

Metasploit•added 2012/01/19 4:58 p.m.•62 views

General Electric D20 Password Recovery

The General Electric D20ME and possibly other units D200? feature TFTP readable configurations with plaintext passwords. This module retrieves the username, password, and authentication level list. This module requires Metasploit: https://metasploit.com/download Current source:...

7.5CVSS0.2AI score0.2314EPSS

Exploits2