Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

48 matches found

Packet Storm
Packet Stormadded 2015/08/17 12:0 a.m.37 views

Werkzeug Debug Shell Command Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' class Metasploit4 'Werkzeug Debug Shell Command Execution', 'Description' = %q This module will exploit the Werkzeug debug console to put...

0.2AI score
Exploits0
NVD
NVDadded 2014/07/09 11:7 a.m.12 views

CVE-2014-3312

The debug console interface on Cisco Small Business SPA300 and SPA500 phones does not properly perform authentication, which allows local users to execute arbitrary debug-shell commands, or read or modify data in memory or a filesystem, via direct access to this interface, aka Bug ID CSCun77435...

6.9CVSS6.9AI score0.00052EPSS
Exploits0References4
Prion
Prionadded 2014/07/09 11:7 a.m.16 views

Design/Logic Flaw

The debug console interface on Cisco Small Business SPA300 and SPA500 phones does not properly perform authentication, which allows local users to execute arbitrary debug-shell commands, or read or modify data in memory or a filesystem, via direct access to this interface, aka Bug ID CSCun77435...

6.9CVSS7.3AI score0.00052EPSS
Exploits0References4
Cvelist
Cvelistadded 2014/07/09 10:0 a.m.14 views

CVE-2014-3312

The debug console interface on Cisco Small Business SPA300 and SPA500 phones does not properly perform authentication, which allows local users to execute arbitrary debug-shell commands, or read or modify data in memory or a filesystem, via direct access to this interface, aka Bug ID CSCun77435...

6.9AI score0.00052EPSS
Exploits0References4
CVE
CVEadded 2014/07/09 10:0 a.m.46 views

CVE-2014-3312

Cisco Small Business SPA300 and SPA500 Series IP Phones are affected by CVE-2014-3312 due to an insufficiently authenticated debug console interface. The vulnerability allows a local attacker to execute arbitrary commands on the debug shell and read/modify data in memory or on the filesystem via ...

6.9CVSS7.1AI score0.00052EPSS
Exploits0References4Affected Software16
securityvulns
securityvulnsadded 2011/05/11 12:0 a.m.78 views

PR10-17 Various XSS and information disclosure flaws within KeyFax response management system

PR10-17: Various XSS and information disclosure flaws within KeyFax response management system http://www.omfax.co.uk Vulnerability found: 25th August 2010 Vendor informed: Vulnerability fixed: Severity: Medium/High Description: KeyFax response management system provides professional management o...

7.1AI score
Exploits0
securityvulns
securityvulnsadded 2006/09/29 12:0 a.m.36 views

[SA22041] Fi Win WiFi Phone SS28S Debug Console Security Issue

---------------------------------------------------------------------- Want to work within IT-Security? Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit. Currently the following type of positions are available:...

7.2AI score
Exploits0
securityvulns
securityvulnsadded 2006/09/29 12:0 a.m.36 views

FiWin SS28S Wi-Fi phones backdoor account

Phone has debug console with telnet access and hardcoded account 1 with password 1...

1.3AI score
Exploits0References1
Rows per page
Query Builder