Unspecified Vulnerability in Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 (CNVD-2025-29092)

The Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 are both networked access controllers from Azure Access Technology, USA. The Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 have a security vulnerability that stems from the use of default SNMP community...

CVE-2025-27093

creationtimestamp| type| source ---|---|--- 2025-10-27 22:59:13+00:00| published-proof-of-concept| https://github.com/BishopFox/sliver/security/advisories/GHSA-q8j9-34qf-7vq7 2025-11-21 12:22:30+00:00| seen| https://threatintel.cc/2025/11/21/sliver-c-insecure-default-network.html 2025-11-21...

Forvia Hella HELLA Driving Recorder DR 820 安全漏洞

Forvia Hella HELLA Driving Recorder DR 820 is a driving recorder from Forvia. A security vulnerability exists in Forvia Hella HELLA Driving Recorder DR 820 that stems from the use of a fixed default SSID and password that cannot be modified by the user, allowing unauthorized access to the device...

CVE-2020-11917

An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. It uses a default SSID value, which makes it easier for remote attackers to discover the physical locations of many Siime Eye devices, violating the privacy of users who do not wish to disclose their ownership of this type of...

PT-2024-10771 · Siime +3 · Siime Eye +3

Name of the Vulnerable Software and Affected Versions: Siime Eye version 14.1.00000001.3.330.0.0.3.14 Description: An issue was discovered in Siime Eye, which uses a default SSID value. This makes it easier for remote attackers to discover the physical locations of many Siime Eye devices, violati...

CVE-2024-8037

Vulnerable juju hook tool abstract UNIX domain socket. When combined with an attack of JUJUCONTEXTID, any user on the local system with access to the default network namespace may connect to the @/var/lib/juju/agents/unit-xxxx-yyyy/agent.socket and perform actions that are normally reserved to a...

CVE-2024-8037

Vulnerable juju hook tool abstract UNIX domain socket. When combined with an attack of JUJUCONTEXTID, any user on the local system with access to the default network namespace may connect to the @/var/lib/juju/agents/unit-xxxx-yyyy/agent.socket and perform actions that are normally reserved to a...

Juju 安全漏洞

Juju is an open source application orchestration engine from Canonical Juju Open Source. Juju has a security vulnerability in 该漏洞源于任何有权访问默认网络命名空间的用户都可以连接到@/var/lib/juju/agents/unit-xxxx-yyyy/agent.socket and performs operations normally reserved for the juju charm...

The vulnerability of the microprogrammed software of the hybrid digital video recorder Hitron Systems DVR LGUVR-4H, related to the use of default login credentials, allows a violator to trigger a service failure.

The vulnerability of the microprogramming software of the hybrid digital video recorder Hitron Systems DVR LGUVR-4H is related to the use of default login credentials. Exploiting this vulnerability could allow a malicious actor to trigger a service failure by using the default network identifier...

DEBIAN-CVE-2023-32668

LuaTeX before 1.17.0 allows a document compiled with the default settings to make arbitrary network requests. This occurs because full access to the socket library is permitted by default, as stated in the documentation. This also affects TeX Live before 2023 r66984 and MiKTeX before 23.5...

CVE-2022-20354

In onDefaultNetworkChanged of Vpn.java, there is a possible way to disable VPN due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11...

CVE-2022-26834

Improper access control vulnerability in Rakuten Casa version APFV141 or APFV200 allows a remote attacker to obtain the information stored in the product because the product is set to accept HTTP connections from the WAN side by default...

vulhub

This is a Docker Compose file for a vulnerability environment. It is a collection of services that can be used to test and demonstrate various types of vulnerabilities. The file is written in YAML format and defines the services, their ports, and the networks they use. The file contains several...

CVE-2020-10269

One of the wireless interfaces within MiR100, MiR200 and possibly according to the vendor other MiR fleet vehicles comes pre-configured in WiFi Master Access Point mode. Credentials to such wireless Access Point default to well known and widely spread SSID MiRRXXXX and passwords omitted. This...

Hardcoded credentials

A Use of Hard-coded Credentials issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. The pump with default network configuration uses hard-coded credentials to automatically establish a wireless network connection. The pump will establis...

BlackStratus LOGStorm 4.5.1.35/4.5.1.96 - Remote Code Execution

!/usr/bin/python logstorm-root.py BlackStratus LOGStorm Remote Root Exploit Jeremy Brown jbrown3264/gmail Dec 2016 -Synopsis- "Better Security and Compliance for Any Size Business" BlackStratus LOGStorm has multiple vulnerabilities that allow a remote unauthenticated user, among other things, to...