Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:11 a.m.9 views

CVE-2022-26519

There is no limit to the number of attempts to authenticate for the local configuration pages for the Hills ComNav Version 3002-19 interface, which allows local attackers to brute-force credentials...

5.5CVSS6.7AI score0.00191EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31077

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00191EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 p.m.9 views

CVE-2022-1318

Hills ComNav version 3002-19 suffers from a weak communication channel. Traffic across the local network for the configuration pages can be viewed by a malicious actor. The size of certain communications packets are predictable. This would allow an attacker to learn the state of the system if the...

6.2CVSS6.7AI score0.00096EPSS
Exploits0References1
OSV
OSV
added 2022/04/20 4:15 p.m.4 views

CVE-2022-26519

There is no limit to the number of attempts to authenticate for the local configuration pages for the Hills ComNav Version 3002-19 interface, which allows local attackers to brute-force credentials...

5.5CVSS6.1AI score0.00191EPSS
Exploits0References1
NVD
NVD
added 2022/04/20 4:15 p.m.27 views

CVE-2022-1318

Hills ComNav version 3002-19 suffers from a weak communication channel. Traffic across the local network for the configuration pages can be viewed by a malicious actor. The size of certain communications packets are predictable. This would allow an attacker to learn the state of the system if the...

6.2CVSS0.00096EPSS
Exploits0References1
Prion
Prion
added 2022/04/20 4:15 p.m.22 views

Hardcoded credentials

Hills ComNav version 3002-19 suffers from a weak communication channel. Traffic across the local network for the configuration pages can be viewed by a malicious actor. The size of certain communications packets are predictable. This would allow an attacker to learn the state of the system if the...

2.1CVSS5.4AI score0.00096EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/04/20 3:30 p.m.37 views

CVE-2022-26519 Interlogix Hills ComNav Improper Restriction of Excessive Authentication Attempts

There is no limit to the number of attempts to authenticate for the local configuration pages for the Hills ComNav Version 3002-19 interface, which allows local attackers to brute-force credentials...

5.5CVSS5.7AI score0.00191EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/04/20 3:30 p.m.43 views

CVE-2022-1318 Hills ComNav Inadequate Encryption Strength

Hills ComNav version 3002-19 suffers from a weak communication channel. Traffic across the local network for the configuration pages can be viewed by a malicious actor. The size of certain communications packets are predictable. This would allow an attacker to learn the state of the system if the...

6.2CVSS7AI score0.00096EPSS
Exploits0References1
CVE
CVE
added 2022/04/20 3:30 p.m.82 views

CVE-2022-1318

CVE-2022-1318 affects Hills ComNav, v3002-19, with an inadequate encryption strength: local-network traffic on configuration pages is observable, and packet sizes are predictable, allowing an observer to learn system state even when traffic is encrypted. The underlying issue is described as a wea...

6.2CVSS5.6AI score0.00096EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/04/20 12:0 a.m.6 views

PT-2022-13792 · Hills · Hills Comnav

Name of the Vulnerable Software and Affected Versions: Hills ComNav version 3002-19 Description: The issue concerns a weak communication channel in the configuration pages of the system. Traffic across the local network can be viewed by a malicious actor, and the size of certain communications...

6.2CVSS5.2AI score0.00096EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/19 12:0 a.m.4 views

Interlogix Hills ComNav 安全漏洞

Interlogix Hills ComNav is a remote access integration module for the Hills Reliance Security Alert System from Interlogix Australia. A security vulnerability exists in Interlogix Hills ComNav that allows a local attacker to brute-force break credentials...

5.5CVSS5.8AI score0.00191EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/19 12:0 a.m.6 views

Interlogix Hills ComNav 加密问题漏洞

Interlogix Hills ComNav is a remote access integration module for the Hills Reliance Security Alert System from Interlogix Australia. An encryption issue vulnerability exists in Interlogix Hills ComNav, which allows an attacker to view configuration page traffic across a local network...

6.2CVSS5.8AI score0.00096EPSS
Exploits0References4
ICS
ICS
added 2022/04/19 12:0 a.m.56 views

Interlogix Hills ComNav

1. EXECUTIVE SUMMARY CVSS v3 6.2 ATTENTION: Low attack complexity Vendor: Interlogix is a part of Carrier Global Corporation Equipment: Hills ComNav Vulnerabilities: Improper Restriction of Excessive Authentication Attempts, Inadequate Encryption Strength 2. RISK EVALUATION Successful...

6.2CVSS6.5AI score0.00191EPSS
Exploits0References5
Rows per page
Query Builder