CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

RedhatCVE•added 2026/01/07 9:27 a.m.•6 views

CVE-2019-12797

A clone version of an ELM327 OBD2 Bluetooth device has a hardcoded PIN, leading to arbitrary commands to an OBD-II bus of a vehicle...

9.8CVSS7.2AI score0.01208EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-4380

Malware in sbrugna...

9.8CVSS9.2AI score0.01208EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2023-56341

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.03871EPSS

Exploits0References2

ATTACKERKB•added 2024/05/03 3:16 a.m.•0 views

CVE-2023-51629

D-Link DCS-8300LHV2 ONVIF Hardcoded PIN Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DCS-8300LHV2 IP cameras. Authentication is not required to exploit this vulnerability. The specific flaw...

8.8CVSS5.8AI score0.03871EPSS

Exploits0References3Affected Software1

OSV•added 2024/05/03 3:16 a.m.•3 views

CVE-2023-51629

8.8CVSS5.8AI score0.03871EPSS

Exploits0References2

CVE•added 2024/05/03 2:15 a.m.•125 views

CVE-2023-51629

The CVE-2023-51629 entry concerns the D-Link DCS-8300LHV2 ONVIF API, where a hardcoded PIN in the configuration enables authentication bypass. The vulnerability affects the DCS-8300LHV2 IP camera and allows network-adjacent attackers to bypass authentication without user interaction. The issue is...

8.8CVSS6.4AI score0.03871EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2024/05/03 2:15 a.m.•17 views

CVE-2023-51629 D-Link DCS-8300LHV2 ONVIF Hardcoded PIN Authentication Bypass Vulnerability

6.3CVSS6.8AI score0.03871EPSS

Exploits0References2

Zero Day Initiative•added 2024/01/11 12:0 a.m.•31 views

D-Link DCS-8300LHV2 ONVIF Hardcoded PIN Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DCS-8300LHV2 IP cameras. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the ONVIF API. The issue results from the u...

6.3CVSS7AI score0.03871EPSS

Exploits0References1

Positive Technologies•added 2024/01/11 12:0 a.m.•4 views

PT-2024-1094 · D Link · D-Link Dcs-8300Lhv2

Name of the Vulnerable Software and Affected Versions: D-Link DCS-8300LHV2 Description: The issue is related to the configuration of the ONVIF API in the D-Link DCS-8300LHV2 Wi-Fi camera, which is associated with weaknesses in the authentication procedure. This allows a remote attacker to bypass...

8.8CVSS7.1AI score0.03871EPSS

Exploits0References6

NVD•added 2019/07/31 7:15 p.m.•22 views

CVE-2019-12797

A clone version of an ELM327 OBD2 Bluetooth device has a hardcoded PIN, leading to arbitrary commands to an OBD-II bus of a vehicle...

9.8CVSS9.6AI score0.01208EPSS

Exploits0References2

Prion•added 2019/07/31 7:15 p.m.•15 views

Hardcoded credentials

A clone version of an ELM327 OBD2 Bluetooth device has a hardcoded PIN, leading to arbitrary commands to an OBD-II bus of a vehicle...

7.5CVSS9.4AI score0.01208EPSS

Exploits0References2

Cvelist•added 2019/07/31 6:21 p.m.•18 views

CVE-2019-12797

A clone version of an ELM327 OBD2 Bluetooth device has a hardcoded PIN, leading to arbitrary commands to an OBD-II bus of a vehicle...

9.6AI score0.01208EPSS

Exploits0References2

CVE•added 2019/07/31 6:21 p.m.•77 views

CVE-2019-12797

CVE-2019-12797 concerns a clone of the ELM327 OBD2 Bluetooth device that exposes a hardcoded PIN. The root cause is a hardcoded PIN allowing an attacker to send arbitrary commands to a vehicle’s OBD‑II bus. Affected is the Elm327 OBD2 Bluetooth device family (clone variants); impact includes arbi...

9.8CVSS9.4AI score0.01208EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2019/07/31 12:0 a.m.•4 views

PT-2019-12948 · Elm Electronics · Elm327 Obd2 Bluetooth Device

Name of the Vulnerable Software and Affected Versions: ELM327 OBD2 Bluetooth device affected versions not specified Description: The issue concerns a clone version of an ELM327 OBD2 Bluetooth device that has a hardcoded PIN. This hardcoded PIN can be exploited to send arbitrary commands to an...

9.8CVSS9.4AI score0.01208EPSS

Exploits0References3

OSV•added 2017/01/30 4:59 a.m.•2 views

CVE-2016-10179

An issue was discovered on the D-Link DWR-932B router. There is a hardcoded WPS PIN of 28296607...

7.5CVSS5.8AI score0.04885EPSS

Exploits1References2

Cvelist•added 2017/01/30 4:24 a.m.•17 views

CVE-2016-10179

An issue was discovered on the D-Link DWR-932B router. There is a hardcoded WPS PIN of 28296607...

7.6AI score0.04885EPSS

Exploits1References2

CNVD•added 2016/10/18 12:0 a.m.•1 views

Unauthorized Access Vulnerability in D-Link DWR-932B LET Router WPS System

The D-Link DWR-932B LET is a wireless router. An unauthorized access vulnerability exists in the WPS system of the D-Link DWR-932B LET router. Since the WPS system PIN is hardcoded into the /bin/appmgr program, an attacker can exploit the vulnerability to use the PIN to access the wireless networ...

6.9AI score

Exploits0References1

CVE•added 2015/04/16 11:0 p.m.•66 views

CVE-2013-4866

CVE-2013-4866 affects the LIXIL My SATIS Genius Toilet Android app and its Bluetooth interface. The Android app contains a hard-coded Bluetooth PIN (noted in public advisories as 0000), enabling physically proximate attackers to use the app to control the toilet and trigger resource consumption (...

3.3CVSS6.5AI score0.00998EPSS

Exploits1References6Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by