Lucene search
K

7573 matches found

Cvelist
Cvelist
added 2022/08/28 11:58 p.m.23 views

CVE-2022-36610

TOTOLINK A720R V4.1.5cu.532B20210610 was discovered to contain a hardcoded password for root at /etc/shadow.sample...

8AI score0.00283EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.6 views

PT-2022-23505 · Totolink · Totolink A800R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A800R version 4.1.2cu.5137 B20200730 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...

7.8CVSS7.7AI score0.00283EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.6 views

PT-2022-23508 · Totolink · Totolink A860R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A860R version 4.1.2cu.5182 B20201027 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...

7.8CVSS7.6AI score0.00283EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.8 views

PT-2022-23504 · Totolink · Totolink A720R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A720R version 4.1.5cu.532 B20210610 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...

7.8CVSS7.6AI score0.00283EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/08/28 12:0 a.m.3 views

TOTOLINK A3000RU 信任管理问题漏洞

The TOTOLINK A3000Ru is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK A3000RU version V4.1.2cu.5185B20201128, which originates from the inclusion of a hardcoded root password in /etc/shadow.sample...

7.8CVSS7AI score0.00283EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/08/28 12:0 a.m.2 views

TOTOLINK A860R 信任管理问题漏洞

The TOTOLINK A860R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK A860R version V4.1.2cu.5182B20201027, which originates from the inclusion of a hardcoded root password in /etc/shadow.sample...

7.8CVSS7AI score0.00283EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/08/28 12:0 a.m.5 views

TOTOLINK A810R 信任管理问题漏洞

The TOTOLINK A810R is a wireless dual-band router from China's Gion Electronics TOTOLINK. A security vulnerability exists in TOTOLINK A810R versions V4.1.2cu.5182B20201026 and V5.9c.4050B20190424, which originates from the inclusion of a hardcoded root password in /etc/shadow.sample...

7.8CVSS7AI score0.00283EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.7 views

PT-2022-4464 · Totolink · Totolink A810R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A810R versions V4.1.2cu.5182 B20201026 through V5.9c.4050 B20190424 Description: The issue is related to a hardcoded password for the root user at /etc/shadow.sample. This could allow a remote attacker to elevate their privileges. Th...

10CVSS7.6AI score0.00283EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.5 views

PT-2022-23509 · Totolink · Totolink A3000Ru

Name of the Vulnerable Software and Affected Versions: TOTOLINK A3000RU version 4.1.2cu.5185 B20201128 Description: A hardcoded password for the root user was found in the /etc/shadow.sample file. This issue allows unauthorized access to the device. Recommendations: For TOTOLINK A3000RU version...

7.8CVSS7.6AI score0.00283EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/08/28 12:0 a.m.4 views

TOTOLINK A800R 信任管理问题漏洞

The TOTOLINK A800R is a wireless router from China's Gion Electronics TOTOLINK. A security vulnerability exists in the TOTOLINK A800R version V4.1.2cu.5137B20200730, which originates from the inclusion of a hardcoded password for root in /etc/shadow.sample...

7.8CVSS7AI score0.00283EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.7 views

PT-2022-23506 · Totolink · Totolink A950Rg

Name of the Vulnerable Software and Affected Versions: TOTOLINK A950RG version 4.1.2cu.5204 B20210112 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...

7.8CVSS7.7AI score0.00283EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/08/28 12:0 a.m.7 views

PT-2022-23507 · Totolink · Totolink N600R

Name of the Vulnerable Software and Affected Versions: TOTOLINK N600R version 4.3.0cu.7647 B20210106 Description: The issue concerns a hardcoded password for the root user located at /etc/shadow.sample. This could potentially allow unauthorized access to the system. Recommendations: For TOTOLINK...

7.8CVSS7.6AI score0.00283EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/08/19 9:15 p.m.1 views

CVE-2022-36170

MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...

8.8CVSS7.4AI score0.00766EPSS
Exploits1References3
OSV
OSV
added 2022/08/19 9:15 p.m.1 views

CVE-2022-36170

MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...

8.8CVSS5.9AI score0.00766EPSS
Exploits1References2
NVD
NVD
added 2022/08/19 9:15 p.m.15 views

CVE-2022-36170

MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...

8.8CVSS0.00766EPSS
Exploits1References2
Prion
Prion
added 2022/08/19 9:15 p.m.13 views

Hardcoded credentials

MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...

6.5CVSS8.8AI score0.00766EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/08/19 8:30 p.m.16 views

CVE-2022-36170

MapGIS 10.5 Pro IGServer has hardcoded credentials in the front-end and can lead to escalation of privileges and arbitrary file deletion...

9.1AI score0.00766EPSS
Exploits1References2
CVE
CVE
added 2022/08/19 8:30 p.m.49 views

CVE-2022-36170

MapGIS 10.5 Pro IGServer is affected by CVE-2022-36170 due to hardcoded credentials in the front-end, enabling privilege escalation and arbitrary file deletion. The NVD record lists CVSS 3.1 base score 8.8 (Network, Low attack complexity, Privileges required: Low, User interaction: None, Scope: U...

8.8CVSS8.8AI score0.00766EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2022/08/19 12:0 a.m.26 views

Use of Hard-coded Credentials in AgileConfig.Client

Hardcoded JWT Secret in AgileConfig 1.6.8 Server allows remote attackers to use the generated JWT token to gain administrator access...

9.8CVSS9.1AI score0.01109EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2022/08/19 12:0 a.m.2 views

PT-2022-23241 · Unknown · Mapgis 10.5 Pro Igserver

Name of the Vulnerable Software and Affected Versions: MapGIS 10.5 Pro IGServer version 10.5 Description: The issue is related to hardcoded credentials in the front-end of the software, which can lead to escalation of privileges and arbitrary file deletion. Recommendations: For MapGIS 10.5 Pro...

8.8CVSS8.8AI score0.00766EPSS
Exploits1References5
Rows per page
Query Builder