Lucene search
K

8071 matches found

Cvelist
Cvelist
added 2022/02/21 5:49 p.m.18 views

CVE-2021-27797

Brocade Fabric OS before Brocade Fabric OS v8.2.1c, v8.1.2h, and all versions of Brocade Fabric OS v8.0.x and v7.x contain documented hard-coded credentials, which could allow attackers to gain access to the system...

9.8AI score0.01326EPSS
Exploits2References1
Veracode
Veracode
added 2022/02/21 8:32 a.m.18 views

Weak Cryptography

github.com/gravitl/netmaker is vulnerable to weak cryptography. The vulnerability exits in SetJWTSecret function of wts.go due to hard-coded secret key which allows an attacker to create a valid authentication token for any user and use it with admin privileges...

9.8CVSS3.4AI score0.01674EPSS
Exploits1References5Affected Software1
CNVD
CNVD
added 2022/02/21 12:0 a.m.28 views

ASUS CMAX6000 Information Disclosure Vulnerability

The ASUS Cmax6000 is a 4x4 dual-band Wifi cable modem router from Asus China. A security vulnerability exists in ASUS CMAX6000 v1.02.00, which can be exploited by an attacker to recover encrypted data via a hard-coded key...

7.5CVSS6.7AI score0.01159EPSS
Exploits1References1
OSV
OSV
added 2022/02/19 12:1 a.m.50 views

GHSA-6RRW-4FM9-RGHV Use of Hard-coded Cryptographic Key in Netmaker

Netmaker prior to versions 0.8.5, 0.9.4, 0.10.0, and 0.10.1 uses a hard-coded cryptographic key...

8.8CVSS9.3AI score0.01674EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2022/02/18 10:0 p.m.6 views

CVE-2022-23650 Use of Hard-coded Cryptographic Key in Netmaker

Netmaker is a platform for creating and managing virtual overlay networks using WireGuard. Prior to versions 0.8.5, 0.9.4, and 010.0, there is a hard-coded cryptographic key in the code base which can be exploited to run admin commands on a remote server if the exploiter know the address and...

7.2CVSS7.5AI score0.0152EPSS
Exploits0References4
CVE
CVE
added 2022/02/18 10:0 p.m.135 views

CVE-2022-23650

Netmaker server component contains a hard-coded cryptographic key that, prior to v0.8.5, v0.9.4, and v0.10.0, could be exploited to run admin commands on a remote server if the attacker knows the admin’s address and username. The issue is limited to the Netmaker server and not clients. Patches ar...

9CVSS7.8AI score0.0152EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2022/02/18 2:15 p.m.27 views

CVE-2022-0664

Use of Hard-coded Cryptographic Key in Go github.com/gravitl/netmaker prior to 0.8.5,0.9.4,0.10.0,0.10.1...

10CVSS0.01674EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/02/18 2:15 p.m.4 views

CVE-2022-0664

Use of Hard-coded Cryptographic Key in Go github.com/gravitl/netmaker prior to 0.8.5,0.9.4,0.10.0,0.10.1...

10CVSS7.6AI score0.01674EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/02/18 2:0 p.m.33 views

CVE-2022-0664 Use of Hard-coded Cryptographic Key in gravitl/netmaker

Use of Hard-coded Cryptographic Key in Go github.com/gravitl/netmaker prior to 0.8.5,0.9.4,0.10.0,0.10.1...

8.8CVSS9.7AI score0.01674EPSS
Exploits1References2
CVE
CVE
added 2022/02/18 2:0 p.m.115 views

CVE-2022-0664

Summary: CVE-2022-0664 addresses a vulnerability inNetmaker where a hard-coded cryptographic key is used by the Go implementation (github.com/gravitl/netmaker) prior to versions 0.8.5, 0.9.4, 0.10.0, and 0.10.1. Affected software: Netmaker (Go component) on versions before the listed fixed releas...

10CVSS9.2AI score0.01674EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/02/18 12:0 a.m.11 views

Gravitl Netmaker安全漏洞

Gravitl Netmaker is a platform for creating and managing fast, secure and dynamic virtual overlay networks using WireGuard from Gravitl USA. for creating and controlling automated virtual networks. Gravitl Netmaker has a security vulnerability that stems from the use of hard-coded encryption keys...

6.5CVSS6.5AI score0.00982EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/02/18 12:0 a.m.3 views

PT-2022-13342

Name of the Vulnerable Software and Affected Versions Netmaker versions prior to 0.8.5 Netmaker versions prior to 0.9.4 Netmaker versions prior to 0.10.0 Netmaker versions prior to 0.10.1 Description The issue is related to the use of a hard-coded cryptographic key in Netmaker. This could...

10CVSS7.3AI score0.01674EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2022/02/18 12:0 a.m.3 views

PT-2022-16161

Name of the Vulnerable Software and Affected Versions Netmaker versions prior to 0.8.5 Netmaker versions prior to 0.9.4 Netmaker versions prior to 0.10.0 Description The issue is related to a hard-coded cryptographic key in the code base of Netmaker, a platform for creating and managing virtual...

9CVSS7.3AI score0.0152EPSS
Exploits0References12
CNNVD
CNNVD
added 2022/02/18 12:0 a.m.19 views

Gravitl Netmaker 安全漏洞

Gravitl Netmaker is a platform for creating and managing fast, secure and dynamic virtual overlay networks using WireGuard from Gravitl USA. for creating and controlling automated virtual networks. Gravitl Netmaker has a security vulnerability that stems from the use of hard-coded encryption keys...

10CVSS7.8AI score0.01674EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/02/17 7:15 p.m.4 views

CVE-2021-46247

The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from ASUS CMAX6000 v1.02.00...

7.5CVSS7.2AI score0.01159EPSS
Exploits1References2
OSV
OSV
added 2022/02/17 7:15 p.m.4 views

CVE-2021-46247

The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from ASUS CMAX6000 v1.02.00...

7.5CVSS7.1AI score0.01159EPSS
Exploits1References1
CVE
CVE
added 2022/02/17 6:15 p.m.89 views

CVE-2021-46247

The CVE-2021-46247 entry concerns the ASUS CMAX6000 v1.02.00 4x4 dual‑band WiFi cable modem router. The root cause cited across connected documents is a hard‑coded cryptographic key, enabling an attacker to recover encrypted data. The vulnerability affects the device’s ability to keep data confid...

7.5CVSS7.5AI score0.01159EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/02/17 12:0 a.m.2 views

Asus CMAX6000 安全漏洞

The ASUS Cmax6000 is a 4x4 dual-band Wifi cable modem router from Asus China. A security vulnerability exists in ASUS CMAX6000 v1.02.00, which can be exploited by an attacker to recover encrypted data via a hard-coded key...

7.5CVSS5.6AI score0.01159EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/02/16 12:0 a.m.5 views

Brocade Fabric OS 信任管理问题漏洞

Brocade Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Brocade USA. Brocade Fabric OS suffers from a trust management issue vulnerability that can be exploited by an attacker to bypass Brocade Fabric OS restrictions by hard-coding credential...

9.8CVSS8.3AI score0.01326EPSS
Exploits2References5
Broadcom
Broadcom
added 2022/02/16 12:0 a.m.7 views

BSA-2021-1722

Security Advisory ID : BSA-2021-1722 Component : hard-coded credentials Revision : 1.0 Brocade Fabric OS before Brocade Fabric OS v8.2.1c, v8.1.2h, and all versions of Brocade Fabric OS v8.0.x and v7.x contain documented hard-coded credentials, which could allow attackers to gain access to the...

9.8CVSS7.2AI score0.01326EPSS
Exploits2
Rows per page
Query Builder