Lucene search
K

121 matches found

NVD
NVD
added 2019/10/29 8:15 p.m.23 views

CVE-2018-18929

The Tightrope Media Carousel Seneca HDn Windows-based appliance 7.0.4.104 is shipped with a default local administrator username and password. This can be found by a limited user account in an "unattend.xml" file left over on the C: drive from the Sysprep process. An attacker with this username a...

8.8CVSS8.7AI score0.01114EPSS
Exploits1References1
NVD
NVD
added 2019/08/22 2:15 p.m.18 views

CVE-2019-5635

A cleartext transmission of sensitive information vulnerability is present in Hickory Smart Ethernet Bridge from Belwith Products, LLC. Captured data reveals that the Hickory Smart Ethernet Bridge device communicates over the network to an MQTT broker without using encryption. This exposed the...

7.5CVSS6.6AI score0.00372EPSS
Exploits0References2
Prion
Prion
added 2019/08/22 2:15 p.m.21 views

Default credentials

A cleartext transmission of sensitive information vulnerability is present in Hickory Smart Ethernet Bridge from Belwith Products, LLC. Captured data reveals that the Hickory Smart Ethernet Bridge device communicates over the network to an MQTT broker without using encryption. This exposed the...

5CVSS7.5AI score0.00372EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/08/22 1:51 p.m.20 views

CVE-2019-5635 Hickory Smart Lock Cleartext Password

A cleartext transmission of sensitive information vulnerability is present in Hickory Smart Ethernet Bridge from Belwith Products, LLC. Captured data reveals that the Hickory Smart Ethernet Bridge device communicates over the network to an MQTT broker without using encryption. This exposed the...

6.5CVSS7.5AI score0.00372EPSS
Exploits0References2
NVD
NVD
added 2019/04/24 3:29 p.m.16 views

CVE-2019-11081

A default username and password in Dentsply Sirona Sidexis 4.3.1 and earlier allows an attacker to gain administrative access to the application server...

10CVSS9.7AI score0.01761EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/24 2:40 p.m.17 views

CVE-2019-11081

A default username and password in Dentsply Sirona Sidexis 4.3.1 and earlier allows an attacker to gain administrative access to the application server...

9.7AI score0.01761EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2018/09/20 4:10 p.m.33 views

Cisco Issues New Warning for 6-Month-Old Critical Bug in IOS XE

UPDATE Cisco Systems has issued a second warning for a critical static credential bug in its IOS XE software, which allows an unauthenticated attacker to gain access to targeted systems. The security bulletin comes more than six months after the company initially reported the bug and provided a...

10CVSS9.1AI score0.04823EPSS
Exploits0References9
OSV
OSV
added 2018/03/28 10:29 p.m.4 views

CVE-2018-0150

A vulnerability in Cisco IOS XE Software could allow an unauthenticated, remote attacker to log in to a device running an affected release of Cisco IOS XE Software with the default username and password that are used at initial boot, aka a Static Credential Vulnerability. The vulnerability is due...

9.8CVSS5.8AI score0.04823EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2018/03/28 5:35 p.m.52 views

Cisco Patches Two Critical RCE Bugs in IOS XE Software

Three critical vulnerabilities were patched by Cisco Systems on Wednesday, each tied to the company’s widely used internetworking operating system IOS XE. Two of the bugs are remote code execution vulnerabilities that could allow an attacker to take control over affected systems. The critical bug...

10CVSS2.5AI score0.9951EPSS
Exploits2References5
Cisco
Cisco
added 2018/03/28 4:0 p.m.120 views

Cisco IOS XE Software Static Credential Vulnerability

A vulnerability in Cisco IOS XE Software could allow an unauthenticated, remote attacker to log in to a device running an affected release of Cisco IOS XE Software with the default username and password that are used at initial boot. The vulnerability is due to an undocumented user account with...

9.8CVSS2.2AI score0.04823EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2016/02/24 8:43 p.m.15 views

Asus Faces 20 years of Audits Over Poor Wi-Fi Router Security

Currently, Asus is undergoing through a troublesome situation after a lawsuit had been filed by the US Federal Trade Commission FTC regarding its Router Insecurity. On Tuesday, FTC settled charges with Asus, where the hardware manufacturing company agrees to: Undergo Independent Security Audits...

7.8AI score
Exploits0
myhack58
myhack58
added 2015/09/09 12:0 a.m.26 views

American Internet Emergency Response Center CERT: Seagate wireless hard drive to a vulnerability-vulnerability warning-the black bar safety net

! American Internet emergency center released a on Seagate wireless hard drive with a warning, because the products were found to have multiple vulnerabilities could be exploited by attackers to download to disk all of the files. The default“root”login American Internet emergency center noted:...

2.6AI score
Exploits0
0day.today
0day.today
added 2014/12/19 12:0 a.m.34 views

CIK Telecom VoIP router SVG6000RW - Privilege Escalation / Command Execution

Exploit for php platform in category web applications Exploit Title: CIK Telecom VoIP router SVG6000RW Privilege Escalation and Command Execution Date: 2014/12/10 Exploit Author: Chako Vendor Homepage: https://www.ciktel.com/ Description: CIK Telecom VoIP router SVG6000RW has a Privilege Escalati...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2014/12/17 12:0 a.m.37 views

CIK Telecom VoIP Router SVG6000RW - Privilege Escalation / Command Execution

Exploit Title: CIK Telecom VoIP router SVG6000RW Privilege Escalation and Command Execution Date: 2014/12/10 Exploit Author: Chako Vendor Homepage: https://www.ciktel.com/ Description: CIK Telecom VoIP router SVG6000RW has a Privilege Escalation vulnerabilitie and can lead to Command Execution...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2014/12/16 12:0 a.m.72 views

CIK Telecom SVG6000RW Default Account / Command Execution

Exploit Title: CIK Telecom VoIP router SVG6000RW Privilege Escalation and Command Execution Date: 2014/12/10 Exploit Author: Chako Vendor Homepage: https://www.ciktel.com/ Description: CIK Telecom VoIP router SVG6000RW has a Privilege Escalation vulnerabilitie and can lead to Command Execution...

Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.77 views

Internet Security Systems ICECap Manager 2.0.23 Default Username and Password

No description provided by source. source: http://www.securityfocus.com/bid/1216/info ICECap Manager is a management console for BlackICE IDS Agents and Sentries. By default, ICECap Manager listens on port 8081, transmits alert messages to another server on port 8082, and has an administrative...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

Novell Groupwise 5.5/6.0 Servlet Gateway Default Authentication Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3697/info Novell Groupwise Servlet Gateway is a product that allows Java servlets to be run with NetWare, using Novell JVM for NetWare v1.1.7b and NetWare Enterprise Web Server. A remote attacker may gain access to the...

7.1AI score
Exploits0
NVD
NVD
added 2014/01/07 5:4 p.m.21 views

CVE-2013-6884

The write-blocker in CRU Ditto Forensic FieldStation with firmware before 2013Oct15a has a default "ditto" username and password, which allows remote attackers to gain privileges...

10CVSS6.9AI score0.10275EPSS
Exploits5References6
Cvelist
Cvelist
added 2014/01/07 5:0 p.m.25 views

CVE-2013-6884

The write-blocker in CRU Ditto Forensic FieldStation with firmware before 2013Oct15a has a default "ditto" username and password, which allows remote attackers to gain privileges...

6.9AI score0.10275EPSS
Exploits5References6
NVD
NVD
added 2013/10/28 3:42 a.m.12 views

CVE-2013-5430

The Jazz Team Server component in IBM Security AppScan Enterprise 8.x before 8.8 has a default username and password, which makes it easier for remote authenticated users to obtain unspecified access to this component by leveraging this credential information in an environment with applicable...

5.5CVSS5.7AI score0.0093EPSS
Exploits0References2
Rows per page
Query Builder