Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:29 p.m.15 views

CVE-2026-20175

A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to load arbitrary files from remote locations into an active user session on an affected device, possibly leading to browser-based attacks. This vulnerability is due to insufficient validation of user-supplied input...

6.1CVSS5.9AI score0.0018EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-32369

Malicious code in bioql PyPI...

6.1CVSS5.8AI score0.00578EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:1 a.m.5 views

CVE-2023-28412

When supplied with a random MAC address, Snap One OvrC cloud servers will return information about the device. The MAC address of devices can be enumerated in an attack and the OvrC cloud will disclose their information...

5.3CVSS6.6AI score0.00482EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:41 a.m.5 views

CVE-2023-39981

A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1. This vulnerability arises from inadequate authentication measures, potentially leading to the disclosure of device information by a remote attacker...

7.5CVSS6.8AI score0.00618EPSS
Exploits0
Cvelist
Cvelist
added 2024/07/24 7:58 a.m.24 views

CVE-2024-3454 In-Fabric Matter Cluster Attribute Disclosure

An implementation issue in the Connectivity Standards Alliance Matter 1.2 protocol as used in the connectedhomeip SDK allows a third party to disclose information about devices part of the same fabric footprinting, even though the protocol is designed to prevent access to such information...

3.5CVSS0.00208EPSS
Exploits0References1
NVD
NVD
added 2024/02/16 8:15 p.m.14 views

CVE-2024-0016

In multiple locations, there is a possible out of bounds read due to a missing bounds check. This could lead to paired device information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

6.5CVSS6.1AI score0.00212EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/16 7:33 p.m.12 views

CVE-2024-0016

In multiple locations, there is a possible out of bounds read due to a missing bounds check. This could lead to paired device information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

6.4AI score0.00212EPSS
Exploits0References2
CVE
CVE
added 2024/02/16 7:33 p.m.6233 views

CVE-2024-0016

CVE-2024-0016 is an Android/Bluetooth-related issue described as an out-of-bounds read caused by a missing bounds check. It could lead to disclosure of paired device information without any user interaction or privileges. The connected documents confirm the vulnerability exists in multiple locati...

6.5CVSS6.2AI score0.00212EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/01/25 11:15 p.m.3 views

CVE-2024-21619

A Missing Authentication for Critical Function vulnerability combined with a Generation of Error Message Containing Sensitive Information vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated, network-based attacker to access sensitive system...

7.5CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/02 12:25 p.m.12 views

CVE-2023-39981 MXsecurity Device Information Disclosure

A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1. This vulnerability arises from inadequate authentication measures, potentially leading to the disclosure of device information by a remote attacker...

7.5CVSS7.5AI score0.00618EPSS
Exploits0References1
NVD
NVD
added 2023/05/22 8:15 p.m.27 views

CVE-2023-28412

When supplied with a random MAC address, Snap One OvrC cloud servers will return information about the device. The MAC address of devices can be enumerated in an attack and the OvrC cloud will disclose their information...

5.3CVSS5.7AI score0.00482EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/22 7:24 p.m.11 views

CVE-2023-28412

When supplied with a random MAC address, Snap One OvrC cloud servers will return information about the device. The MAC address of devices can be enumerated in an attack and the OvrC cloud will disclose their information...

5.3CVSS6.6AI score0.00482EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/22 2:45 p.m.9 views

CVE-2023-32346

Teltonika’s Remote Management System versions prior to 4.10.0 contain a function that allows users to claim their devices. This function returns information based on whether the serial number of a device has already been claimed, the MAC address of a device has already been claimed, or whether th...

5.3CVSS6.9AI score0.00544EPSS
Exploits0References1
Prion
Prion
added 2020/04/27 3:15 p.m.12 views

Design/Logic Flaw

An issue was discovered where there are multiple externally accessible pages that do not require any sort of authentication, and store system information for internal usage. The devices automatically query these pages to update dashboards and other statistics, but the pages can be accessed...

5CVSS8.5AI score0.01722EPSS
Exploits0References5Affected Software3
CNVD
CNVD
added 2018/09/06 12:0 a.m.2 views

Red Hat glusterfs server arbitrary file read vulnerability

Red Hat glusterfs server is an open source distributed file system from Red Hat Red Hat. The system is mainly for media streaming , data analysis and other data and bandwidth intensive tasks to create large-scale distributed storage solutions. A security vulnerability exists in the Red Hat...

8.1CVSS7.9AI score0.01672EPSS
Exploits0References1
Rows per page
Query Builder