CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

143 matches found

OSV•added 2026/04/18 4:1 p.m.•1 views

MINI-R3G5-4V94-C7F2

Bulletin has no description...

7.1CVSS5.6AI score0.00006EPSS

Exploits0

NVD•added 2026/03/25 5:16 p.m.•0 views

CVE-2025-69096

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in G5Theme Zorka zorka allows Reflected XSS.This issue affects Zorka: from n/a through = 1.5.7...

7.1CVSS0.00045EPSS

Exploits0References1

Positive Technologies•added 2026/03/25 12:0 a.m.•1 views

PT-2026-27806

CVE-2025-69096 Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in G5Theme Zorka zorka allows Reflected XSS.This issue affects Zork… https://t.co/7vIIzsCyr0...

7.1CVSS5.9AI score0.00045EPSS

Exploits0References3

ICS•added 2025/12/09 12:0 a.m.•3 views

Siemens Energy Services

SUMMARY Energy Services from Siemens previously known as Managed Applications and Services, sell solutions using Elspec G5 devices that allows a person with physical access to the device to reset the Admin password by inserting a USB drive containing a publicly documented reset string into a USB...

6.8CVSS6.8AI score0.00029EPSS

Exploits0References10

RedhatCVE•added 2025/11/07 1:46 p.m.•2 views

CVE-2025-59392

On Elspec G5 devices through 1.2.2.19, a person with physical access to the device can reset the Admin password by inserting a USB drive containing a publicly documented reset string into a USB port...

6.8CVSS6.7AI score0.00029EPSS

Exploits0References1

EUVD•added 2025/11/06 6:32 p.m.•1 views

EUVD-2025-38049

6.8CVSS6.2AI score0.00029EPSS

Exploits0References3

NVD•added 2025/11/06 4:16 p.m.•1 views

CVE-2025-59392

6.8CVSS0.00029EPSS

Exploits0References2

OSV•added 2025/11/06 4:16 p.m.•1 views

CVE-2025-59392

6.8CVSS5.8AI score

Exploits0References2

Cvelist•added 2025/11/06 12:0 a.m.•4 views

CVE-2025-59392

0.00029EPSS

Exploits0References2

CVE•added 2025/11/06 12:0 a.m.•7 views

CVE-2025-59392

The CVE describes a vulnerability in Elspec G5 devices (versions up to and including 1.2.2.19) where a user with physical access can reset the Admin password by inserting a USB drive containing a publicly documented reset string. Root cause is physical access combined with USB-based reset data; i...

6.8CVSS6.3AI score0.00029EPSS

Exploits0References2Affected Software1

CNNVD•added 2025/11/06 12:0 a.m.•1 views

Elspec G5 安全漏洞

Elspec G5 is a multifunctional digital fault recorder from Elspec, Israel. A security vulnerability exists in Elspec G5 version 1.2.2.19 and earlier, which originates from a physical visitor being able to reset the administrator password by inserting a USB drive containing a specific string...

6.8CVSS6.5AI score0.00029EPSS

Exploits0References2

Vulnrichment•added 2025/11/06 12:0 a.m.•2 views

CVE-2025-59392

6.3AI score0.00029EPSS

Exploits0References2

Positive Technologies•added 2025/11/06 12:0 a.m.•3 views

PT-2025-45256

Name of the Vulnerable Software and Affected Versions Elspec G5 versions through 1.2.2.19 Description A person with physical access to the device can reset the Admin password by inserting a USB drive containing a publicly documented reset string into a USB port. Recommendations Versions prior to...

6.8CVSS8AI score0.00029EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2010-1729

Malware in sbrugna...

4.3CVSS6.4AI score0.00285EPSS

Exploits1References5

RedhatCVE•added 2025/05/23 9:54 a.m.•3 views

CVE-2024-22083

An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. A hardcoded backdoor session ID exists that can be used for further access to the device, including reconfiguration tasks...

6.5CVSS6.9AI score0.00121EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:54 a.m.•5 views

CVE-2024-22078

An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. Privilege escalation can occur via world writable files. The network configuration script has weak filesystem permissions. This results in write access for all authenticated users and the possibility to...

8.8CVSS7.3AI score0.00169EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:54 a.m.•4 views

CVE-2024-22085

An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. The shadow file is world readable...

6.2CVSS6.9AI score0.00066EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:54 a.m.•3 views

CVE-2024-22081

An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. Unauthenticated memory corruption can occur in the HTTP header parsing mechanism...

9.8CVSS7.2AI score0.00374EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:54 a.m.•7 views

CVE-2024-22079

An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. Directory traversal can occur via the system logs download mechanism...

7.5CVSS6.9AI score0.00492EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 9:54 a.m.•2 views

CVE-2024-22077

An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. The SQLite database file has weak permissions...

5.3CVSS6.9AI score0.00142EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by