Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-26396

Malicious code in bioql PyPI...

9.8CVSS6.8AI score0.00451EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/04 11:33 a.m.5 views

CVE-2025-52544

E3 Site Supervisor Control firmware version 2.31F01 has a floor plan feature that allows for an unauthenticated attacker to upload floor plan files. By uploading a specially crafted floor plan file, an attacker can access any file from the E3 file system...

8.8CVSS7.1AI score0.00334EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/04 11:33 a.m.5 views

CVE-2025-52549

E3 Site Supervisor Control firmware version 2.31F01 generates the root linux password on each boot. An attacker can generate the root linux password for a vulnerable device based on known or easy to fetch parameters...

9.2CVSS7AI score0.00451EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/04 11:33 a.m.12 views

CVE-2025-52545

E3 Site Supervisor Control firmware version 2.31F01 RCI service contains an API call to read users info, which returns all usernames and password hashes for the application services...

7.7CVSS6.9AI score0.00241EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/04 11:33 a.m.6 views

CVE-2025-6519

E3 Site Supervisor firmware version 2.31F01 has a default admin user "ONEDAY" with a daily generated password. An attacker can predictably generate the password for ONEDAY. The oneday user cannot be deleted or modified by any user...

9.3CVSS7AI score0.00501EPSS
Exploits0References1
NVD
NVD
added 2025/09/02 12:15 p.m.9 views

CVE-2025-6519

E3 Site Supervisor firmware version 2.31F01 has a default admin user "ONEDAY" with a daily generated password. An attacker can predictably generate the password for ONEDAY. The oneday user cannot be deleted or modified by any user...

9.8CVSS0.00501EPSS
Exploits0References1
OSV
OSV
added 2025/09/02 12:15 p.m.5 views

CVE-2025-6519

E3 Site Supervisor firmware version 2.31F01 has a default admin user "ONEDAY" with a daily generated password. An attacker can predictably generate the password for ONEDAY. The oneday user cannot be deleted or modified by any user...

9.8CVSS5.8AI score0.00501EPSS
Exploits0References1
NVD
NVD
added 2025/09/02 12:15 p.m.7 views

CVE-2025-52549

E3 Site Supervisor Control firmware version 2.31F01 generates the root linux password on each boot. An attacker can generate the root linux password for a vulnerable device based on known or easy to fetch parameters...

9.8CVSS0.00451EPSS
Exploits0References1
CVE
CVE
added 2025/09/02 11:26 a.m.28 views

CVE-2025-52548

The CVE-2025-52548 entry concerns Copeland E3 Supervisory Control firmware versions older than 2.31F01. A hidden API call in the application services exists (enabled by default disabled) that, if accessed by an admin, can enable SSH and Shellinabox, granting remote access to the underlying operat...

6.9CVSS6.4AI score0.00328EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/02 11:23 a.m.2 views

CVE-2025-6519 Consistent predictable generation of the password for the default admin user "ONEDAY" to the application services

E3 Site Supervisor firmware version 2.31F01 has a default admin user "ONEDAY" with a daily generated password. An attacker can predictably generate the password for ONEDAY. The oneday user cannot be deleted or modified by any user...

9.3CVSS6.5AI score0.00501EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/02 11:23 a.m.9 views

CVE-2025-6519 Consistent predictable generation of the password for the default admin user "ONEDAY" to the application services

E3 Site Supervisor firmware version 2.31F01 has a default admin user "ONEDAY" with a daily generated password. An attacker can predictably generate the password for ONEDAY. The oneday user cannot be deleted or modified by any user...

9.3CVSS0.00501EPSS
Exploits0References1
Rows per page
Query Builder