CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2012-0237

Malware in sbrugna...

7.5CVSS6.2AI score0.00379EPSS

Exploits1References4

ICS•added 2016/12/03 7:0 a.m.•36 views

Eaton Lighting Systems EG2 Web Control Authentication Bypass Vulnerabilities

OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on March 1, 2016, and is being released to the NCCIC/ICS-CERT web site. Independent researcher Maxim Rupp has identified vulnerabilities in Eaton Lighting Systems’ EG2 Web Control application. Eaton Lighting Systems...

8.1AI score

Exploits0References10

OSV•added 2016/04/06 11:59 p.m.•2 views

CVE-2016-2272

Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to have an unspecified impact via a modified cookie...

7.5CVSS5.8AI score0.00321EPSS

Exploits0References1

NVD•added 2016/04/06 11:59 p.m.•10 views

CVE-2016-2272

Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to have an unspecified impact via a modified cookie...

7.5CVSS7.6AI score0.00321EPSS

Exploits0References1

OSV•added 2016/04/06 11:59 p.m.•0 views

CVE-2016-0871

Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to read the configuration file, and consequently discover credentials, via a direct request...

7.5CVSS5.8AI score

Exploits0References1

Prion•added 2016/04/06 11:59 p.m.•13 views

Design/Logic Flaw

Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to read the configuration file, and consequently discover credentials, via a direct request...

5CVSS7AI score0.00419EPSS

Exploits0References1Affected Software1

Prion•added 2016/04/06 11:59 p.m.•13 views

Code injection

Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to have an unspecified impact via a modified cookie...

5CVSS7.3AI score0.00321EPSS

Exploits0References1Affected Software1

CVE•added 2016/04/06 11:0 p.m.•38 views

CVE-2016-2272

CVE-2016-2272 affects Eaton Lighting EG2 Web Control versions 4.04P and earlier. The ICS advisory notes an authentication bypass/root cause: reliance on cookies without proper validation/integrity, enabling a remote attacker to alter browser cookies and perform administrative actions that could c...

7.5CVSS7.6AI score0.00321EPSS

Exploits0References1Affected Software1

CVE•added 2016/04/06 11:0 p.m.•45 views

CVE-2016-0871

The CVE-2016-0871 issue affects Eaton Lighting EG2 Web Control (V4.04P and prior). Root causes include CWE-565: Reliance on Cookies without Validation, and CWE-312: Cleartext Storage of Sensitive Information. A remote attacker could read configuration files and view credentials via a direct reque...

7.5CVSS7.4AI score0.00419EPSS

Exploits0References1Affected Software1

CNVD•added 2016/04/06 12:0 a.m.•0 views

Eaton Lighting Systems EG2 Web Control Authentication Bypass Vulnerability (CNVD-2016-02006)

The Eaton Lighting Systems EG2 Web Control is a controller product from Eaton Lighting Systems USA for Internet and Wi-Fi LAN connections to the iLumin network. An authentication bypass vulnerability exists in Eaton Lighting Systems EG2 Web Control version 4.04P and earlier. A remote attacker cou...

7.5CVSS7.1AI score0.00321EPSS

Exploits0References1

Prion•added 2012/03/06 4:18 a.m.•13 views

Sql injection

Multiple SQL injection vulnerabilities in IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 allow remote attackers to execute arbitrary SQL commands via 1 a SOAP message to the Printer.getPrinterAgentKey function in the SoapServlet servlet, 2 the User.updateUserValue functio...

7.5CVSS8.9AI score0.00379EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by