Lucene search
K

36 matches found

OSV
OSV
added 2023/03/07 5:15 p.m.6 views

CVE-2022-27490

A exposure of sensitive information to an unauthorized actor in Fortinet FortiManager version 6.0.0 through 6.0.4, FortiAnalyzer version 6.0.0 through 6.0.4, FortiPortal version 6.0.0 through 6.0.9, 5.3.0 through 5.3.8, 5.2.x, 5.1.0, 5.0.x, 4.2.x, 4.1.x, FortiSwitch version 7.0.0 through 7.0.4,...

6.5CVSS5.8AI score0.00469EPSS
Exploits0References1
NVD
NVD
added 2023/03/07 5:15 p.m.22 views

CVE-2022-27490

A exposure of sensitive information to an unauthorized actor in Fortinet FortiManager version 6.0.0 through 6.0.4, FortiAnalyzer version 6.0.0 through 6.0.4, FortiPortal version 6.0.0 through 6.0.9, 5.3.0 through 5.3.8, 5.2.x, 5.1.0, 5.0.x, 4.2.x, 4.1.x, FortiSwitch version 7.0.0 through 7.0.4,...

6.5CVSS5.6AI score0.00469EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/07 4:4 p.m.12 views

CVE-2022-27490

A exposure of sensitive information to an unauthorized actor in Fortinet FortiManager version 6.0.0 through 6.0.4, FortiAnalyzer version 6.0.0 through 6.0.4, FortiPortal version 6.0.0 through 6.0.9, 5.3.0 through 5.3.8, 5.2.x, 5.1.0, 5.0.x, 4.2.x, 4.1.x, FortiSwitch version 7.0.0 through 7.0.4,...

5.4CVSS6.3AI score0.00469EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/07 4:4 p.m.22 views

CVE-2022-27490

A exposure of sensitive information to an unauthorized actor in Fortinet FortiManager version 6.0.0 through 6.0.4, FortiAnalyzer version 6.0.0 through 6.0.4, FortiPortal version 6.0.0 through 6.0.9, 5.3.0 through 5.3.8, 5.2.x, 5.1.0, 5.0.x, 4.2.x, 4.1.x, FortiSwitch version 7.0.0 through 7.0.4,...

5.4CVSS6.5AI score0.00469EPSS
Exploits0References1
Fortinet
Fortinet
added 2020/09/18 12:0 a.m.37 views

Information disclosure through diagnose debug commands in FortiWeb

...

4CVSS6.4AI score0.00859EPSS
Exploits0
NVD
NVD
added 2020/03/13 4:15 p.m.25 views

CVE-2019-16157

An information exposure vulnerability in Fortinet FortiWeb 6.2.0 CLI and earlier may allow an authenticated user to view sensitive information being logged via diagnose debug commands...

6.5CVSS6.2AI score0.00859EPSS
Exploits0References1
Prion
Prion
added 2020/03/13 4:15 p.m.20 views

Information disclosure

An information exposure vulnerability in Fortinet FortiWeb 6.2.0 CLI and earlier may allow an authenticated user to view sensitive information being logged via diagnose debug commands...

4CVSS6.1AI score0.00859EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/03/13 3:2 p.m.9 views

CVE-2019-16157

An information exposure vulnerability in Fortinet FortiWeb 6.2.0 CLI and earlier may allow an authenticated user to view sensitive information being logged via diagnose debug commands...

6.2AI score0.00859EPSS
Exploits0References1
CVE
CVE
added 2020/03/13 3:2 p.m.64 views

CVE-2019-16157

CVE-2019-16157 affects Fortinet FortiWeb (6.2.0 CLI and earlier). The underlying issue is an information exposure: an authenticated user could view sensitive information being logged via diagnose debug commands. Impact is primarily confidentiality loss for logged data; CVSS metrics indicate a bas...

6.5CVSS6.1AI score0.00859EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/11/26 3:15 a.m.4 views

CVE-2019-15967

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...

4.4CVSS5.8AI score0.00288EPSS
Exploits0References1
NVD
NVD
added 2019/11/26 3:15 a.m.19 views

CVE-2019-15967

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...

4.4CVSS4.5AI score0.00288EPSS
Exploits0References1
Prion
Prion
added 2019/11/26 3:15 a.m.10 views

Design/Logic Flaw

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...

2.1CVSS4.6AI score0.00288EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2019/11/26 3:11 a.m.8 views

CVE-2019-15967 Cisco TelePresence Collaboration Endpoint and RoomOS Audio Eavesdropping Vulnerability

A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint CE and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. The vulnerability is due to the presence of unnecessary debug commands. An attacker could exploit th...

4.4CVSS6.5AI score0.00288EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/11/07 9:5 a.m.9 views

OpenJDK: insufficient checks of JDWP packets (Hotspot, 8159519)

It was discovered that the Hotspot component of OpenJDK did not properly check received Java Debug Wire Protocol JDWP packets. An attacker could possibly use this flaw to send debugging commands to a Java program running with debugging enabled if they could make victim's browser send HTTP request...

8.3CVSS7.4AI score0.03255EPSS
Exploits0References5
Fortinet
Fortinet
added 2015/04/10 12:0 a.m.81 views

Http debug commands in FortiMail exposes users credentials to admins

...

4CVSS6.4AI score0.00982EPSS
Exploits0
securityvulns
securityvulns
added 2005/06/21 12:0 a.m.32 views

[Full-disclosure] Undocumented account vulnerability in Enterasys Vertical Horizon switches

Problem Description An undocumented account with a default password exists, additionally guest users can DoS the switch. 2. Tested systems The following versions were tested and found vulnerable: Vertical Horizon VH-2402S with firmware 02.05.00 Vertical Horizon VH-2402S with firmware 02.05.09.07...

Exploits0
Rows per page
Query Builder