Lucene search
K

7580 matches found

OSV
OSV
added 2023/01/05 10:15 p.m.2 views

CVE-2022-3928

Hardcoded credential is found in affected products' message queue. An attacker that manages to exploit this vulnerability will be able to access data to the internal message queue. This issue affects FOXMAN-UN product: FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B...

5.5CVSS5.7AI score0.00211EPSS
Exploits0References2
Prion
Prion
added 2023/01/05 10:15 p.m.25 views

Hardcoded credentials

Hardcoded credential is found in affected products' message queue. An attacker that manages to exploit this vulnerability will be able to access data to the internal message queue. This issue affects FOXMAN-UN product: FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B...

1.7CVSS7.3AI score0.00211EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2023/01/05 9:50 p.m.10 views

CVE-2022-3928 Hardcoded credential is found in the message queue

Hardcoded credential is found in affected products' message queue. An attacker that manages to exploit this vulnerability will be able to access data to the internal message queue. This issue affects FOXMAN-UN product: FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B...

7.1CVSS6.7AI score0.00211EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/01/05 9:50 p.m.27 views

CVE-2022-3928 Hardcoded credential is found in the message queue

Hardcoded credential is found in affected products' message queue. An attacker that manages to exploit this vulnerability will be able to access data to the internal message queue. This issue affects FOXMAN-UN product: FOXMAN-UN R15B, FOXMAN-UN R15A, FOXMAN-UN R14B, FOXMAN-UN R14A, FOXMAN-UN R11B...

7.1CVSS7AI score0.00211EPSS
Exploits0References2
CVE
CVE
added 2023/01/05 9:50 p.m.58 views

CVE-2022-3928

CVE-2022-3928 describes a hardcoded credential in the message queue of Hitachi Energy FOXMAN-UN and UNEM products (R9C–R15B). The vulnerability allows an attacker who can exploit it to access data in the internal message queue. Connected advisories and records confirm the affected families (FOXMA...

7.1CVSS6.2AI score0.00211EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2023/01/05 12:0 a.m.5 views

PT-2023-13717 · Unem +1 · Unem +1

Name of the Vulnerable Software and Affected Versions: FOXMANN-UN versions R9C through R15B UNEM versions R9C through R15B Description: A hardcoded credential is found in the affected products' message queue. An attacker that manages to exploit this issue will be able to access data to the intern...

7.1CVSS5.2AI score0.00211EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/01/04 12:0 a.m.5 views

KubePi 信任管理问题漏洞

KubePi is a K8s panel. It allows administrators to import multiple Kubernetes clusters and assign permissions for different clusters, namespaces to specified users through permission control. KubePi 1.6.2 and prior versions have a trust management issue vulnerability that stems from its jwt...

9.8CVSS8.5AI score0.69667EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/01/04 12:0 a.m.4 views

PT-2023-3271 · NetGear · Netgear Rax30

Name of the Vulnerable Software and Affected Versions: NETGEAR RAX30 affected versions not specified Description: This issue allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR RAX30 routers. The specific flaw exists within the system configuration, whe...

6.3CVSS6.8AI score0.00447EPSS
Exploits0References11
Prion
Prion
added 2023/01/03 3:15 a.m.21 views

Hardcoded credentials

Merit LILIN AH55B04 & AH55B08 DVR firm has hard-coded administrator credentials. An unauthenticated remote attacker can use these credentials to log in administrator page, to manipulate system or disrupt service...

7.5CVSS9.4AI score0.01022EPSS
Exploits0References1
Prion
Prion
added 2023/01/01 9:15 a.m.15 views

Hardcoded credentials

A vulnerability, which was classified as critical, has been found in taoeffect Empress. Affected by this issue is some unknown functionality. The manipulation leads to use of hard-coded password. The patch is identified as 557e177d8a309d6f0f26de46efb38d43e000852d. It is recommended to apply a pat...

5.8CVSS7.1AI score0.00876EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/12/29 12:15 a.m.2 views

CVE-2022-4780

ISOS firmwares from versions 1.81 to 2.00 contain hardcoded credentials from embedded StreamX installer that integrators are not forced to change...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References1
NVD
NVD
added 2022/12/29 12:15 a.m.24 views

CVE-2022-4780

ISOS firmwares from versions 1.81 to 2.00 contain hardcoded credentials from embedded StreamX installer that integrators are not forced to change...

7.8CVSS0.0015EPSS
Exploits0References1
Prion
Prion
added 2022/12/29 12:15 a.m.20 views

Hardcoded credentials

ISOS firmwares from versions 1.81 to 2.00 contain hardcoded credentials from embedded StreamX installer that integrators are not forced to change...

4.3CVSS7.6AI score0.0015EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/12/28 2:21 p.m.2 views

CVE-2022-4780 hard coded credentials in elvexys ISOS firmwares

ISOS firmwares from versions 1.81 to 2.00 contain hardcoded credentials from embedded StreamX installer that integrators are not forced to change...

4.5CVSS6.9AI score0.0015EPSS
Exploits0References1
CVE
CVE
added 2022/12/28 2:21 p.m.64 views

CVE-2022-4780

Summary: CVE-2022-4780 affects ISOS firmwares 1.81–2.00, due to hardcoded credentials in the embedded StreamX installer. The root cause is fixed credentials that integrators are not forced to change, enabling potential unauthorized access to the appliance/update flow. Impact (as stated): unauthor...

7.8CVSS5.9AI score0.0015EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/12/28 2:21 p.m.30 views

CVE-2022-4780 hard coded credentials in elvexys ISOS firmwares

ISOS firmwares from versions 1.81 to 2.00 contain hardcoded credentials from embedded StreamX installer that integrators are not forced to change...

4.5CVSS7.8AI score0.0015EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/12/28 12:0 a.m.4 views

PT-2022-28087 · Isos · Isos

Name of the Vulnerable Software and Affected Versions: ISOS firmwares versions 1.81 through 2.00 Description: The issue concerns hardcoded credentials in the embedded StreamX installer within ISOS firmwares. These credentials are not mandatory for integrators to change, posing a security risk...

7.8CVSS7.4AI score0.0015EPSS
Exploits0References3
Prion
Prion
added 2022/12/27 6:15 p.m.19 views

Hardcoded credentials

Some Dahua software products have a vulnerability of using of hard-coded cryptographic key. An attacker can obtain the AES crypto key by exploiting this vulnerability...

5CVSS7.5AI score0.0053EPSS
Exploits0References1Affected Software5
Prion
Prion
added 2022/12/22 8:15 p.m.20 views

Hardcoded credentials

When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

5.8CVSS6.2AI score0.00877EPSS
Exploits0References4Affected Software3
Prion
Prion
added 2022/12/22 8:15 p.m.18 views

Hardcoded credentials

Firefox's HTML parser did not correctly interpret HTML comment tags, resulting in an incongruity with other browsers. This could have been used to escape HTML comments on pages that put user-controlled data in them. This vulnerability affects Firefox 101...

4.3CVSS6.3AI score0.00428EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder