CVE-2017-14027

A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and...

EMC AppSync Server Hardcoded Password Vulnerability

EMC AppSync is a suite of data protection software from EMC Corporation. The software provides simple, self-service, service-level agreement SLA-driven data protection and storage management for EMC VNX and EMC VMAX storage.EMC AppSync Server is its server version. A hard-coded password...

Korenix JetNet Man-in-the-Middle Attack Vulnerability

JetNet is a family of industrial Ethernet switch products from Clorox. A man-in-the-middle attack vulnerability exists in Korenix JetNet, where an attacker can access hard-coded certificates and private keys, leading to the execution of a man-in-the-middle attack...

Korenix JetNet Unauthorized Access Vulnerability

JetNet is a family of industrial Ethernet switch products from Clorox. An unauthorized access vulnerability exists in Korenix JetNet, which allows an attacker unauthorized access due to the software's use of undocumented hard-coded credentials...

PT-2017-3193 · Korenix · Jetnet5628G-R +7

Name of the Vulnerable Software and Affected Versions: Korenix JetNet JetNet5018G version 1.4 Korenix JetNet JetNet5310G version 1.4a Korenix JetNet JetNet5428G-2G-2FX version 1.4 Korenix JetNet JetNet5628G-R version 1.4 Korenix JetNet JetNet5628G version 1.4 Korenix JetNet JetNet5728G-24P versio...

PT-2017-3192 · Korenix · Jetnet5628G-R +7

Name of the Vulnerable Software and Affected Versions: Korenix JetNet5018G version 1.4 Korenix JetNet5310G version 1.4a Korenix JetNet5428G-2G-2FX version 1.4 Korenix JetNet5628G-R version 1.4 Korenix JetNet5628G version 1.4 Korenix JetNet5728G-24P version 1.4 Korenix JetNet5828G version 1.1d...

Korenix JetNet

CVSS v3 9.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Korenix Equipment: JetNet Vulnerabilities: Use of Hard-coded Cryptographic Key, Use of Hard-coded Credentials AFFECTED PRODUCTS The following versions of JetNet, an Ethernet switch, are affected: JetNet5018G version...

ZTE ZXR10 Router Multiple Vulnerabilities( CVE-2017-10931)

Vulnerabilities summary The following advisory describes five 5 vulnerabilities found in ZTE ZXR10 Router. ZXR10 ZSR V2 series router is “the next generation intelligent access router product of ZTE, which integrates routing, switching, wireless, security, and VPN gateway. The product adopts...

Boston Scientific ZOOM LATITUDE PRM Hardcoded Encryption Vulnerability

The ZOOM LATITUDE PRMs are a suite of Boston Scientific's portable cardiac rhythm management systems for communicating with implantable pacemakers and defibrillators, deployed in healthcare and public health. The Boston Scientific ZOOM LATITUDE PRMs have a hard-coded encryption vulnerability that...

Juniper Contrail Information Disclosure Vulnerability

Juniper Contrail is a suite of cloud-based security solutions from Juniper Networks, Inc. The solution provides intelligent automation, application security and reliability for cloud and NFV. A security vulnerability exists in the ifmap service in Juniper Contrail that stems from the program's us...

ICSMA-17-292-01_Boston Scientific ZOOM LATITUDE PRM Vulnerabilities

OVERVIEW Researchers Jonathan Butts and Billy Rios of Whitescope have identified two vulnerabilities in Boston Scientific’s ZOOM LATITUDE Programmer/Recorder/Monitor PRM – Model 3120. Boston Scientific has provided compensating controls to reduce the risk of exploitation. AFFECTED PRODUCTS The...

CVE-2017-10616

The ifmap service that comes bundled with Juniper Networks Contrail releases uses hard coded credentials. Affected releases are Contrail releases 2.2 prior to 2.21.4; 3.0 prior to 3.0.3.4; 3.1 prior to 3.1.4.0; 3.2 prior to 3.2.5.0. CVE-2017-10616 and CVE-2017-10617 can be chained together and ha...

CVE-2017-10616

The ifmap service that comes bundled with Juniper Networks Contrail releases uses hard coded credentials. Affected releases are Contrail releases 2.2 prior to 2.21.4; 3.0 prior to 3.0.3.4; 3.1 prior to 3.1.4.0; 3.2 prior to 3.2.5.0. CVE-2017-10616 and CVE-2017-10617 can be chained together and ha...

CVE-2017-10616 Contrail: hard coded credentials

The ifmap service that comes bundled with Juniper Networks Contrail releases uses hard coded credentials. Affected releases are Contrail releases 2.2 prior to 2.21.4; 3.0 prior to 3.0.3.4; 3.1 prior to 3.1.4.0; 3.2 prior to 3.2.5.0. CVE-2017-10616 and CVE-2017-10617 can be chained together and ha...

CVE-2017-10616

CVE-2017-10616 affects Juniper Contrail’s ifmap service and stems from hard-coded credentials in the bundled ifmap component. Affected releases include Contrail 2.2 before 2.21.4; 3.0 before 3.0.3.4; 3.1 before 3.1.4.0; and 3.2 before 3.2.5.0. This CVE can be chained with CVE-2017-10617, contribu...

PT-2017-11411 · Juniper Networks · Contrail

The ifmap service that comes bundled with Juniper Networks Contrail releases uses hard coded credentials. Affected releases are Contrail releases 2.2 prior to 2.21.4; 3.0 prior to 3.0.3.4; 3.1 prior to 3.1.4.0; 3.2 prior to 3.2.5.0. CVE-2017-10616 and CVE-2017-10617 can be chained together and ha...

Complain Management System - Hard-Coded Credentials Blind SQL injection

Complain Management System - Hard-Coded Credentials Blind SQL injection Exploit Title : Complain Management System Blind SQL Injection Date: 10 October 2017 Exploit Author: havysec Tested on: ubuntu14.04 Vendor: https://sourceforge.net/projects/complain-management-system/ Version: not supplied...

Complain Management System - Hard-Coded Credentials / Blind SQL injection

Exploit Title : Complain Management System Blind SQL Injection Date: 10 October 2017 Exploit Author: havysec Tested on: ubuntu14.04 Vendor: https://sourceforge.net/projects/complain-management-system/ Version: not supplied Download Software:...

FLIR Systems Multiple Vulnerabilities

Vulnerabilities Summary The following advisory describes 5 five vulnerabilities found in FLIR Systems FLIR Thermal/Infrared Camera FC-Series S, FC-Series ID, PT-Series. FLIR – “Best-in-class thermal cameras with on-board analytics for high-performance intrusion detection. The new FC-Series ID...

FLIR Systems Cameras Multiple Vulnerabilities

FLIR Systems FLIR Thermal/Infrared Camera FC-Series S, FC-Series ID, PT-Series are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...