Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

BDU FSTEC
BDU FSTECadded 2021/11/10 12:0 a.m.2 views

The vulnerability of the UserGate UTM corporate network interface of UserGate D500 allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the UserGate UTM corporate network interface of UserGate D500 exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to influence the confidentiality and integrity of the protected information...

4.2CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTECadded 2021/11/10 12:0 a.m.1 views

The vulnerability of the web interface for remote administration of the IPMI corporate network switch UserGate D500 allows a hacker to obtain the current value of the user’s username (account information).

The vulnerability of the UserGate D500 enterprise network interface relates to insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain the current user name account information by using the password reset form...

5.4CVSS5.5AI score
Exploits0Affected Software1
Cvelist
Cvelistadded 2020/04/28 3:59 p.m.37 views

CVE-2016-11055

Certain NETGEAR devices are affected by CSRF. This affects CM400 before 2017-01-11, CM600 before 2017-01-11, D1500 before 2017-01-11, D500 before 2017-01-11, DST6501 before 2017-01-11, JNR1010v1 before 2017-01-11, JWNR2000Tv3 before 2017-01-11, JWNR2010v3 before 2017-01-11, PLW1000 before...

4.7AI score0.00348EPSS
Exploits0References1
CVE
CVEadded 2020/04/28 3:59 p.m.50 views

CVE-2016-11055

CVE-2016-11055 is a CSRF vulnerability in multiple NETGEAR devices (e.g., CM400/CM600/D1500/D500/DST6501/JNR1010v1/JWNR2000Tv3/JWNR2010v3/PLW1000/PLW1010/WNR500/WNR612v3/N450/CG3000Dv2). Root cause: cross-site request forgery that enables an attacker with a crafted script to log in to the victim’...

4.3CVSS4.7AI score0.00348EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2020/04/24 2:8 p.m.93 views

CVE-2017-18703

CVE-2017-18703 describes a Cross-Site Request Forgery (CSRF) in a wide range of NETGEAR devices. The web application does not adequately validate request origins, enabling CSRF exploitation that could affect multiple models (examples: D1500, D500, D6100, D7000, D7800, EX6100v2, EX6150v2, JNR1010v...

8.8CVSS8.6AI score0.0046EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2020/04/23 8:12 p.m.24 views

CVE-2018-21139

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects D1500 before 1.0.0.27, D500 before 1.0.0.27, D6100 before 1.0.0.58, D6200 before 1.1.00.30, D6220 before 1.0.0.46, D6400 before 1.0.0.82, D7000 before 1.0.1.68, D7000v2 before 1.0.0.51, D7800 before 1.0.1.42...

7.1CVSS7.5AI score0.01159EPSS
Exploits0References1
Rows per page
Query Builder