Lucene search
K

86 matches found

OSV
OSV
added 2018/07/18 11:29 p.m.5 views

CVE-2018-0375

A vulnerability in the Cluster Manager of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to log in to an affected system using the root account, which has default, static user credentials. The vulnerability is due to the presence of undocumented, static user...

9.8CVSS6AI score0.0379EPSS
Exploits0References2
CNVD
CNVD
added 2018/03/22 12:0 a.m.2 views

Tenda AC15 Authentication Vulnerability

Tenda AC15 is a wireless router product from Tenda, a Chinese company. A security vulnerability exists in the Tenda AC15, which originates from some default accounts on the device having root privileges. The vulnerability can be exploited by a remote attacker to create a telnetd service by sendin...

10CVSS7.2AI score0.02783EPSS
Exploits1References1
OSV
OSV
added 2017/04/21 8:59 p.m.6 views

CVE-2016-1561

ExaGrid appliances with firmware before 4.8 P26 have a default SSH public key in the authorizedkeys file for root, which allows remote attackers to obtain SSH access by leveraging knowledge of a private key from another installation or a firmware image...

7.5CVSS5.9AI score0.74261EPSS
Exploits4References3
0day.today
0day.today
added 2017/01/11 12:0 a.m.25 views

Trango Altum AC600 Default Root Login Vulnerability

Exploit for hardware platform in category web applications + Credits: Ian Ling + Website: iancaling.com + Source: http://blog.iancaling.com/post/155395764003 Vendor: ================= https://www.trangosys.com/ Product: ====================== -Altum AC600 Vulnerability Details:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2017/01/07 12:0 a.m.39 views

Trango Altum AC600 Default Root Login

Credits: Ian Ling + Website: iancaling.com + Source: http://blog.iancaling.com/post/155395764003 Vendor: ================= https://www.trangosys.com/ Product: ====================== -Altum AC600 Vulnerability Details: ===================== Trango Altum AC600a2s have a default root login...

0.7AI score
Exploits0
CNVD
CNVD
added 2016/07/01 12:0 a.m.4 views

MileSight camera default SSH root user vulnerability

MileSight camera is a network camera produced by Xiamen PulseVision Digital Technology Co. MileSight camera has a default SSH root user vulnerability. An attacker can use the vulnerability to log in to the device via root and obtain the highest privileges of the device...

7AI score
Exploits0
NVD
NVD
added 2016/06/30 4:59 p.m.32 views

CVE-2016-4474

The image build process for the overcloud images in Red Hat OpenStack Platform 8.0 Liberty director and Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo director aka overcloud-full use a default root password of ROOTPW, which allows attackers to gain access via unspecified vectors...

8.8CVSS8.8AI score0.00846EPSS
Exploits0References3
OSV
OSV
added 2016/06/30 4:59 p.m.3 views

CVE-2016-4474

The image build process for the overcloud images in Red Hat OpenStack Platform 8.0 Liberty director and Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo director aka overcloud-full use a default root password of ROOTPW, which allows attackers to gain access via unspecified vectors...

8.8CVSS5.8AI score0.00846EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/06/30 4:0 p.m.41 views

CVE-2016-4474

The image build process for the overcloud images in Red Hat OpenStack Platform 8.0 Liberty director and Red Hat Enterprise Linux OpenStack Platform 7.0 Kilo director aka overcloud-full use a default root password of ROOTPW, which allows attackers to gain access via unspecified vectors...

8.9AI score0.00846EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2016/06/15 12:0 a.m.28 views

FibeAir IP-10 Authentication Bypass

Credits: Ian Ling + Website: iancaling.com Vendor: ================= www.ceragon.com Product: ====================== -FibeAir IP-10 Vulnerability Type: =================== Default Root Account CVE Reference: ============== N/A Vulnerability Details: ===================== Ceragon FibeAir IP-10...

0.7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2016/06/13 9:25 p.m.5 views

overcloud-full: Default root password set

An issue was discovered in the image build process for the overcloud images, as used by director, resulting in all previous images to have a default root password of "rootpw". Remote root access via SSH is disabled by default...

8.8CVSS5.9AI score0.00846EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/06/13 7:30 p.m.4 views

overcloud-full: Default root password set

An issue was discovered in the image build process for the overcloud images, as used by director, resulting in all previous images to have a default root password of "rootpw". Remote root access via SSH is disabled by default...

8.8CVSS5.9AI score0.00846EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2016/06/13 5:18 p.m.29 views

CVE-2016-4474

An issue was discovered in the image build process for the overcloud images, as used by director, resulting in all previous images to have a default root password of "rootpw". Remote root access via SSH is disabled by default...

8.8CVSS3.3AI score0.00846EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/03/17 12:0 a.m.11 views

The vulnerability of the Zhuhai RaySharp video surveillance software allows a intruder to gain access to protected information.

The software of the video surveillance device Zhuhai RaySharp has a default root user password. Exploiting this vulnerability allows a malicious actor to gain access to protected information via the TCP port 23 or 9000...

10CVSS7.7AI score0.04563EPSS
Exploits1References8
CNVD
CNVD
added 2016/03/04 12:0 a.m.4 views

Cisco Nexus 3000/3500 Switch Default Credentials Vulnerability

Cisco Nexus is Cisco's family of network switches designed for data centers. A security vulnerability exists in NX-OS on Cisco Nexus 3000 series switches and Cisco Nexus 3500 platform switches, which originates from a user account that is created during installation and cannot be deleted or...

10CVSS7.1AI score0.03745EPSS
Exploits0References1
CERT
CERT
added 2016/02/02 12:0 a.m.28 views

OpenELEC and RasPlex have a hard-coded SSH root password

Overview OpenELEC and derivatives utilize a hard-coded default root password, and enable SSH root access by default. Description CWE-259: Use of Hard-coded Password OpenELEC has a hard-coded root password. The root partition is by default read-only, preventing a user from changing the password on...

7.3AI score
Exploits0References4
exploitpack
exploitpack
added 2016/01/12 12:0 a.m.20 views

FingerTec Fingerprint Reader - Remote Access and Remote Enrolment

FingerTec Fingerprint Reader - Remote Access and Remote Enrolment Exploit Title: Default Root Password and Remote Enrollment on FingerTec Devices Date: 12-01-2016 Exploit Author: Daniel Lawson Contact: http://twitter.com/fang0654 Website: https://digital-panther.com Category: physical access...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2016/01/12 12:0 a.m.37 views

FingerTec Fingerprint Reader - Remote Access and Remote Enrolment

Exploit Title: Default Root Password and Remote Enrollment on FingerTec Devices Date: 12-01-2016 Exploit Author: Daniel Lawson Contact: http://twitter.com/fang0654 Website: https://digital-panther.com Category: physical access control 1. Description Almost all FingerTec Access Control devices are...

7.4AI score
Exploits0
CNVD
CNVD
added 2015/11/15 12:0 a.m.3 views

ZTE ZXHN H108N R1A Default Account Privilege Bypass Vulnerability

The ZTE ZXHN H108N R1A is a wireless router product from China's ZTE Corporation. ZTE ZXHN H108N R1A ZTE.bhs.ZXHNH108NR1A.hPE The root account uses the 'root' password, which can be exploited by a remote attacker to take full control of the device when the system is enabled with Telnet service...

10CVSS7.1AI score0.10589EPSS
Exploits4References1
exploitpack
exploitpack
added 2015/07/08 12:0 a.m.17 views

Grandstream GXV3275 1.0.3.30 - Multiple Vulnerabilities

Grandstream GXV3275 1.0.3.30 - Multiple Vulnerabilities The Grandstream GXV3275 is an Android-based VoIP phone. Several vulnerabilities were found affecting this device. The device ships with a default root SSH key, which could be used as a backdoor: /system/root/.ssh cat authorizedkeys Public ke...

0.5AI score
Exploits0
Rows per page
Query Builder