CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An issue discovered in IXP EasyInstall 6.6.14884.0 allows attackers to run arbitrary commands, gain escalated privilege, and cause other unspecified impacts via unauthenticated API calls...

9.8CVSS7.4AI score0.0024EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:32 a.m.•1 views

CVE-2023-30132

An issue discovered in IXP Data EasyInstall 6.6.14907.0 allows attackers to gain escalated privileges via static Cryptographic Key...

7.8CVSS7.2AI score0.0002EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 4:48 a.m.•4 views

CVE-2019-19894

In IXP EasyInstall 6.2.13723, it is possible to temporarily disable UAC by using the Agent Service on a client system. An authenticated attacker non-admin can disable UAC for other users by renaming and replacing %SYSTEMDRIVE%\IXP\DATA\IXPAS.IXP...

5.5CVSS6.8AI score0.00134EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 5:12 p.m.•5 views

CVE-2019-19898

In IXP EasyInstall 6.2.13723, there are cleartext credentials in network communication on TCP port 20050 when using the Administrator console remotely...

7.5CVSS6.9AI score0.00168EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 5:11 p.m.•3 views

CVE-2019-19896

In IXP EasyInstall 6.2.13723, there is Remote Code Execution via weak permissions on the Engine Service share. The default file permissions of the IXP$ share on the server allows modification of directories and files e.g., bat-scripts, which allows execution of code in the context of NT...

9.9CVSS7.8AI score0.0344EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 5:11 p.m.•6 views

CVE-2019-19897

In IXP EasyInstall 6.2.13723, there is Remote Code Execution via the Agent Service. An unauthenticated attacker can communicate with the Agent Service over TCP port 20051, and execute code in the NT AUTHORITY\SYSTEM context of the target system by using the Execute Command Line function...

10CVSS8.1AI score0.21791EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 5:11 p.m.•9 views

CVE-2019-19893

In IXP EasyInstall 6.2.13723, there is Directory Traversal on TCP port 8000 via the Engine Service by an unauthenticated attacker, who can access the server's filesystem with the access rights of NT AUTHORITY\SYSTEM...

7.8CVSS7AI score0.01827EPSS

Exploits1References1

NVD•added 2023/10/19 9:15 p.m.•10 views

CVE-2023-30132

An issue discovered in IXP Data EasyInstall 6.6.14907.0 allows attackers to gain escalated privileges via static Cryptographic Key...

7.8CVSS7.8AI score0.0002EPSS

Exploits1References1

ATTACKERKB•added 2023/10/19 9:15 p.m.•0 views

CVE-2023-30132

An issue discovered in IXP Data EasyInstall 6.6.14907.0 allows attackers to gain escalated privileges via static Cryptographic Key...

7.8CVSS7.1AI score0.0002EPSS

Exploits1References2

OSV•added 2023/10/19 9:15 p.m.•1 views

CVE-2023-30131

An issue discovered in IXP EasyInstall 6.6.14884.0 allows attackers to run arbitrary commands, gain escalated privilege, and cause other unspecified impacts via unauthenticated API calls...

9.8CVSS5.9AI score0.0024EPSS

Exploits1References1

OSV•added 2023/10/19 9:15 p.m.•0 views

CVE-2023-30132

An issue discovered in IXP Data EasyInstall 6.6.14907.0 allows attackers to gain escalated privileges via static Cryptographic Key...

7.8CVSS5.8AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by