CVE-2019-6698

Use of Hard-coded Credentials vulnerability in FortiRecorder all versions below 2.7.4 may allow an unauthenticated attacker with knowledge of the aforementioned credentials and network access to FortiCameras to take control of those, provided they are managed by a FortiRecorder device...

CVE-2019-6698

CVE-2019-6698 involves Fortinet FortiRecorder where all FortiRecorder versions below 2.7.4 expose hard-coded credentials for FortiCameras connected to the recorder, enabling an unauthenticated attacker with network access and knowledge of those credentials to take control of the cameras. Connecte...

CloudBees Jenkins Sametime Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing project and some timed tasks . Sametime Plugin is used in one of the...

CloudBees Jenkins Relution Enterprise Appstore Publisher Plugin Trust Management Issues Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Relution Enterprise Appstore Publisher Plugin...

CloudBees Jenkins Assembla Auth Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed tasks . Assembla Auth Plugin is used in which an OAut...

CloudBees Jenkins TestFairy Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based development of continuous integration tools from the U.S. CloudBees. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . TestFairy Plugin is used in one of the plug-in for...

CloudBees Jenkins Perfecto Mobile Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software release/testing projects and some timed tasks . Perfecto Mobile Plugin is used in one of the mobile...

CloudBees Jenkins Open STF Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Open STF Plugin is used in one of the STF...

CloudBees Jenkins Hyper.sh Commons Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Hyper.sh Commons Plugin is used in one of th...

CloudBees Jenkins Aqua Security Scanner Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Aqua Security Scanner Plugin is used in one o...

CloudBees Jenkins Trac Publisher Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . Trac Publisher Plugin is used in one of...

CloudBees Jenkins Bugzilla Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software release/testing projects and some timed tasks . Bugzilla Plugin is used in one of the error , change...

CloudBees Jenkins Official OWASP ZAP Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is a set of Java-based continuous integration tools from CloudBees. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . Official OWASP ZAP Plugin is used in one of the automatic scanning tool for...

CloudBees Jenkins HockeyApp Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version of the release/testing project and some timed tasks . HockeyApp Plugin is used in one of the...

CloudBees Jenkins WebSphere Deployer Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . WebSphere Deployer Plugin is used in which a...

CloudBees Jenkins Crowd Integration Plugin Trust Management Issue Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software version release/testing projects and some timed tasks . Crowd Integration Plugin is used in one of th...

cPanel Trust Management Issues Vulnerability (CNVD-2019-29006)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A trust management issue vulnerability exists in versions prior to cPanel 55.9999.141. The vulnerability stems from the lack of a...

CloudBees Jenkins Codefresh Integration Plugin Authorization Issues Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools . An authorization issue vulnerability exists in CloudBees Jenkins Codefresh Integration Plugin, which can be exploited by an attacker to attack affected components...

Johnson Controls Metasys

1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION: Exploitable remotely Vendor: Johnson Controls Equipment: Metasys Vulnerabilities: Reusing a Nonce, Key Pair in Encryption; Use of Hard-coded Cryptographic Key 2. RISK EVALUATION Successful exploitation of these vulnerabilities could be leveraged by an...

Security Bulletin: IBM Secure Gateway is affected by two vulnerabilities

Summary Secure Gateway has addressed the following vulnerabilities: CVE-2019-4498 CVE-2019-4499 Vulnerability Details CVEID: CVE-2019-4498 DESCRIPTION: IBM Secure Gateway Service uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive informatio...