Lucene search
+L

308 matches found

Prion
Prion
added 2020/12/14 2:15 a.m.17 views

Design/Logic Flaw

In the Macally WIFISD2-2A82 Media and Travel Router 2.000.010, the Guest user is able to reset its own password. This process has a vulnerability which can be used to take over the administrator account and results in shell access. As the admin user may read the /etc/shadow file, the password...

9CVSS8.6AI score0.04866EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2020/12/14 1:39 a.m.36 views

CVE-2020-29669

In the Macally WIFISD2-2A82 Media and Travel Router 2.000.010, the Guest user is able to reset its own password. This process has a vulnerability which can be used to take over the administrator account and results in shell access. As the admin user may read the /etc/shadow file, the password...

8.7AI score0.04866EPSS
Exploits4References3
OpenVAS
OpenVAS
added 2020/11/27 12:0 a.m.9 views

Linux: Read /etc/shadow

shadow is a file which contains the password information for the system Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

7.3AI score
Exploits0References1
NVD
NVD
added 2020/06/01 6:15 p.m.21 views

CVE-2020-13695

In QuickBox Community Edition through 2.5.5 and Pro Edition through 2.1.8, the local www-data user has sudo privileges to execute grep as root without a password, which allows an attacker to obtain sensitive information via a grep of a /root/.db or /etc/shadow file...

9CVSS6.9AI score0.01404EPSS
Exploits1References1
OSV
OSV
added 2020/06/01 6:15 p.m.20 views

CVE-2020-13695

In QuickBox Community Edition through 2.5.5 and Pro Edition through 2.1.8, the local www-data user has sudo privileges to execute grep as root without a password, which allows an attacker to obtain sensitive information via a grep of a /root/.db or /etc/shadow file...

7.2CVSS6.7AI score0.17772EPSS
Exploits7References1
Prion
Prion
added 2020/04/29 3:15 a.m.14 views

Directory traversal

A Local File Inclusion LFI issue on Onkyo TX-NR585 1000-0000-000-0008-0000 devices allows remote unauthenticated users on the network to read sensitive files via %2e%2e%2f directory traversal, as demonstrated by reading /etc/shadow...

5CVSS7.5AI score0.14071EPSS
Exploits1References1Affected Software1
Talos
Talos
added 2020/03/09 12:0 a.m.78 views

WAGO PFC100/200 Web-Based Management (WBM) Authentication Timing Information Disclosure Vulnerability

Summary An exploitable timing discrepancy vulnerability exists in the authentication functionality of the Web-Based Management WBM web application on WAGO PFC100/200 controllers. The WBM application makes use of the PHP crypt function which can be exploited to disclose hashed user credentials...

7.5CVSS6.7AI score0.02199EPSS
Exploits1
0day.today
0day.today
added 2020/03/02 12:0 a.m.124 views

Wing FTP Server 6.2.3 - Privilege Escalation Exploit

Exploit Title: Wing FTP Server 6.2.3 - Privilege Escalation Google Dork: intitle:"Wing FTP Server - Web" Date: 2020-03-02 Exploit Author: Cary Hooper Vendor Homepage: https://www.wftpserver.com Software Link: https://www.wftpserver.com/download/wftpserver-linux-64bit.tar.gz Version: v6.2.3 Tested...

7.8CVSS0.5AI score0.00807EPSS
Exploits7
BDU FSTEC
BDU FSTEC
added 2020/01/20 12:0 a.m.6 views

The vulnerability of the etc/shadow microprogramming software components of Cisco Small Business RV016, RV042, RV042G, and RV082 allows a hacker to elevate their privileges to the level of root or lldpd.

The vulnerability of the etc/shadow microprogramming software components of Cisco Small Business RV016, RV042, RV042G, and RV082 is related to the presence of embedded authentication data. Exploiting this vulnerability can allow an attacker to elevate their privileges to the level of root or lldp...

9CVSS5.5AI score
Exploits0References1Affected Software4
CNVD
CNVD
added 2019/11/04 12:0 a.m.6 views

Milesight IP security cameras trust management issue vulnerability

Milesight IP security cameras are IP camera products from China Pulse Digital Technology Milesight. A security vulnerability exists in Milesight IP security cameras version 2016-11-14 and earlier, which stems from the default root password in /etc/shadow being the same for different users'...

9.8CVSS7.1AI score0.02064EPSS
Exploits1References1
0day.today
0day.today
added 2019/08/01 12:0 a.m.31 views

Linux/x86 chmod(/etc/shadow, 0666) Polymorphic Shellcode (53 bytes)

---------------------- DESCRIPTION ------------------------------------- ; Title: chmod“/etc/shadow”, 0666 and exit for Linux/x86 - Polymorphic ; Author: Daniel Ortiz ; Tested on: Linux 4.18.0-25-generic 26 Ubuntu ; Size: 53 bytes ; SLAE ID: PA-9844 ---------------------- ASM CODE...

0.1AI score
Exploits0
0day.today
0day.today
added 2019/07/14 12:0 a.m.36 views

Linux/x86 - chmod 666 /etc/passwd & chmod 666 /etc/shadow Shellcode (61 bytes)

Exploit Title: Linux/x86 - chmod 666 /etc/passwd & chmod 666 /etc/shadow 61 bytes Date: 10/07/2019 Exploit Author: Xavier Invers Fornells Contact: email protected Tested on: Debian 4.19.28 Architecture: x86 Size: 61 bytes chmod.nasm global start section .text start: push byte 15 pop eax push byte...

7.4AI score
Exploits0
Node.js
Node.js
added 2019/07/10 2:27 p.m.14 views

Malicious Package

Overview All versions of malicious-do-not-install contain malicious code. The package copies the contents of /etc/passwd and /etc/shadow to files in the local /tmp/ folder. Recommendation Remove the package from your environment and rotate affected credentials. References GitHub Advisory...

6.6AI score
Exploits0Affected Software1
Prion
Prion
added 2019/05/21 1:29 p.m.13 views

Information disclosure

A missing permission check in Jenkins PAM Authentication Plugin 1.5 and earlier, except 1.4.1 in PamSecurityRealm.DescriptorImpldoTest allowed users with Overall/Read permission to obtain limited information about the file /etc/shadow and the user Jenkins is running as...

4CVSS4.4AI score0.00786EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/04/24 5:17 p.m.34 views

CVE-2019-9950

Western Digital My Cloud, My Cloud Mirror Gen2, My Cloud EX2 Ultra, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100, My Cloud DL4100, My Cloud PR2100 and My Cloud PR4100 firmware before 2.31.174 is affected by an authentication bypass vulnerability. The loginmgr.cgi file checks credentials...

9.8AI score0.02304EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.25 views

SUSE SLED15 / SLES15 Security Update : accountsservice (SUSE-SU-2018:3625-1)

This update for accountsservice fixes the following issues : This security issue was fixed : CVE-2018-14036: Prevent directory traversal caused by an insufficient path check in userchangeiconfileauthorizedcb bsc1099699 Thsese non-security issues were fixed: Don't abort loading users when an...

6.5CVSS6.1AI score0.03086EPSS
Exploits1References6
EUVD
EUVD
added 2018/11/16 8:0 p.m.5 views

EUVD-2018-10659

In the Linux kernel 4.15.x through 4.19.x before 4.19.2, mapwrite in kernel/usernamespace.c allows privilege escalation because it mishandles nested user namespaces with more than 5 UID or GID ranges. A user who has CAPSYSADMIN in an affected user namespace can bypass access controls on resources...

7CVSS7.9AI score0.07611EPSS
Exploits24References18
0day.today
0day.today
added 2018/10/15 12:0 a.m.104 views

FLIR AX8 Thermal Camera 1.32.16 - Arbitrary File Disclosure Vulnerability

Exploit for hardware platform in category web applications Exploit Title: FLIR AX8 Thermal Camera 1.32.16 - Arbitrary File Disclosure Auhor: Gjoko 'LiquidWorm' Krstic Date: 2018-10-14 Vendor: FLIR Systems, Inc. Product web page: https://www.flir.com Affected version: Firmware: 1.32.16, 1.17.13 OS...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2018/10/15 12:0 a.m.35 views

FLIR AX8 Thermal Camera 1.32.16 - Arbitrary File Disclosure

FLIR AX8 Thermal Camera 1.32.16 - Arbitrary File Disclosure Exploit Title: FLIR AX8 Thermal Camera 1.32.16 - Arbitrary File Disclosure Auhor: Gjoko 'LiquidWorm' Krstic Date: 2018-10-14 Vendor: FLIR Systems, Inc. Product web page: https://www.flir.com Affected version: Firmware: 1.32.16, 1.17.13 O...

0.3AI score
Exploits0
CNVD
CNVD
added 2018/03/29 12:0 a.m.5 views

Webmin File Read Vulnerability

Webmin is a web-based system administration tool for Unix-like operating systems developed by Australian software developer Jamie Cameron and the Webmin community. A security vulnerability exists in Webmin versions 1.840 and 1.880 that stems from weak default configuration settings. The...

9.8CVSS6.5AI score0.01828EPSS
Exploits0References1
Rows per page
Query Builder