CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.7.9 iOS versions prior to 15.7.8 iPadOS versions prior to 15.7.8 macOS Monterey versions prior to 12.6.8 macOS Ventura versions prior to 13.5 Description: The issue is related to insufficient access control in the...

5.5CVSS5.8AI score0.00199EPSS

Exploits0References13

0day.today•added 2019/05/13 12:0 a.m.•82 views

SOCA Access Control System 180612 - CSRF (Add Admin) Vulnerability

Exploit for php platform in category web applications SOCA Access Control System 180612 CSRF Add Admin Exploit Vendor: SOCA Technology Co., Ltd Product web page: http://www.socatech.com Affected version: 180612, 170000 and 141007 Summary: The company's products include Proximity and Fingerprint...

7.1AI score

Exploits0

0day.today•added 2019/05/13 12:0 a.m.•55 views

SOCA Access Control System 180612 - Information Disclosure

Exploit for php platform in category web applications SOCA Access Control System 180612 Information Disclosure Vendor: SOCA Technology Co., Ltd Product web page: http://www.socatech.com Affected version: 180612, 170000 and 141007 Summary: The company's products include proximity and fingerprint...

7.4AI score

Exploits0

NVD•added 2015/08/01 1:59 a.m.•22 views

CVE-2015-5618

Chiyu BF-630 and BF-630W fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify a Voice Time Set configuration settings via a request to voice.htm or b UniFinger configuration settings via a request to bf.htm, a different vulnerability than...

7.5CVSS6.8AI score0.0174EPSS

Exploits0References1

NVD•added 2015/08/01 1:59 a.m.•22 views

CVE-2015-2871

Chiyu BF-660C fingerprint access-control devices allow remote attackers to bypass authentication and 1 read or 2 modify communication configuration settings via a request to net.htm, a different vulnerability than CVE-2015-5618...

7.5CVSS6.8AI score0.01736EPSS

Exploits0References1

Prion•added 2015/08/01 1:59 a.m.•14 views

Authentication flaw

7.5CVSS7.2AI score0.0174EPSS

Exploits0References1

Prion•added 2015/08/01 1:59 a.m.•14 views

Authentication flaw

7.5CVSS7.5AI score0.0174EPSS

Exploits0References1

Prion•added 2015/08/01 1:59 a.m.•17 views

Cross site scripting

Cross-site scripting XSS vulnerability on Chiyu BF-630, BF-630W, and BF-660C fingerprint access-control devices allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element...

4.3CVSS6.2AI score0.0117EPSS

Exploits0References1

CVE•added 2015/08/01 1:0 a.m.•50 views

CVE-2015-2870

CVE-2015-2870 affects Chiyu BF-630, BF-630W and BF-660C fingerprint access-control devices. The vulnerability is a cross-site scripting (XSS) flaw that lets remote attackers inject arbitrary web script or HTML via a SCRIPT element, typically through a URL passed to the device. The related CERT/CC...

4.3CVSS5.9AI score0.0117EPSS

Exploits0References1Affected Software3

CVE•added 2015/08/01 1:0 a.m.•49 views

CVE-2015-5618

The CVE-2015-5618 entry concerns Chiyu BF-630 and BF-630W fingerprint access-control devices. The documented vulnerability allows remote attackers to bypass authentication and read or modify configuration data: (1) Voice Time Set via a request to voice.htm and (2) UniFinger configuration via a re...

7.5CVSS7.1AI score0.0174EPSS

Exploits0References1Affected Software2

CVE•added 2015/08/01 1:0 a.m.•44 views

CVE-2015-2871

CVE-2015-2871 affects Chiyu BF-660C fingerprint access-control devices (and related BF-630/BF-630W family in CNVD/CNVD entries). The available documents state a remote attacker can bypass authentication and read or modify communication configuration settings by sending a crafted request to net.ht...

7.5CVSS7AI score0.01736EPSS

Exploits0References1Affected Software1

Cvelist•added 2015/08/01 1:0 a.m.•24 views

CVE-2015-2870

Cross-site scripting XSS vulnerability on Chiyu BF-630, BF-630W, and BF-660C fingerprint access-control devices allows remote attackers to inject arbitrary web script or HTML via a SCRIPT element...

5.8AI score0.0117EPSS

Exploits0References1

CERT•added 2015/07/31 12:0 a.m.•36 views

Chiyu Technology fingerprint access control contains multiple vulnerabilities

Overview Multiple models of Chiyu Technology fingerprint access control devices contain a cross-site scripting XSS vulnerability and an authentication bypass vulnerability. Description CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS- CVE-2015-2870According to t...

7.5CVSS5.8AI score0.01736EPSS

Exploits0References2

Packet Storm•added 2014/08/26 12:0 a.m.•55 views

Grand MA 300 Fingerprint Reader Weak PIN Verification

=== LSE Leading Security Experts GmbH - Security Advisory 2014-07-13 === Grand MA 300 Fingerprint Reader - Weak Pin Verification ------------------------------------------------------------------------ Affected Versions ================= Grand MA 300/ID with firmware 6.60 Issue Overview...

0.3AI score0.07057EPSS

Exploits3

Prion•added 2007/09/10 9:17 p.m.•15 views

Directory traversal

Sony Micro Vault Fingerprint Access Software, as distributed with Sony Micro Vault USM-F USB flash drives, installs a driver that hides a directory under %WINDIR%, which might allow remote attackers to bypass malware detection by placing files in this directory...

6.8CVSS7.2AI score0.01857EPSS

Exploits0References10

NVD•added 2007/09/10 9:17 p.m.•14 views

CVE-2007-4785

6.8CVSS6.6AI score0.01857EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by