Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2009-2269

Malware in sbrugna...

5CVSS6.4AI score0.0066EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2009-2270

Malware in sbrugna...

7.8CVSS6.4AI score0.00914EPSS
Exploits0References3
NVD
NVDadded 2009/07/01 1:0 p.m.20 views

CVE-2009-2272

The Huawei D100 stores the administrator's account name and password in cleartext in a cookie, which allows context-dependent attackers to obtain sensitive information by 1 reading a cookie file, by 2 sniffing the network for HTTP headers, and possibly by using unspecified other vectors...

7.5CVSS7.5AI score0.00644EPSS
Exploits0References1
NVD
NVDadded 2009/07/01 1:0 p.m.15 views

CVE-2009-2273

The default configuration of the Wi-Fi component on the Huawei D100 does not use encryption, which makes it easier for remote attackers to obtain sensitive information by sniffing the network...

5CVSS6.2AI score0.0066EPSS
Exploits0References1
NVD
NVDadded 2009/07/01 1:0 p.m.15 views

CVE-2009-2274

The Huawei D100 allows remote attackers to obtain sensitive information via a direct request to 1 lanstatusadv.asp, 2 wlanbasiccfg.asp, or 3 lancfg.asp in en/, related to use of JavaScript to protect against reading file contents...

7.8CVSS6.2AI score0.00914EPSS
Exploits0References2
Prion
Prionadded 2009/07/01 1:0 p.m.12 views

Information disclosure

The Huawei D100 allows remote attackers to obtain sensitive information via a direct request to 1 lanstatusadv.asp, 2 wlanbasiccfg.asp, or 3 lancfg.asp in en/, related to use of JavaScript to protect against reading file contents...

7.8CVSS6.7AI score0.00914EPSS
Exploits0References2
Prion
Prionadded 2009/07/01 1:0 p.m.16 views

Design/Logic Flaw

The Huawei D100 stores the administrator's account name and password in cleartext in a cookie, which allows context-dependent attackers to obtain sensitive information by 1 reading a cookie file, by 2 sniffing the network for HTTP headers, and possibly by using unspecified other vectors...

5CVSS6.9AI score0.00644EPSS
Exploits0References1
Prion
Prionadded 2009/07/01 1:0 p.m.22 views

Default configuration

The default configuration of the Wi-Fi component on the Huawei D100 does not use encryption, which makes it easier for remote attackers to obtain sensitive information by sniffing the network...

5CVSS6.7AI score0.0066EPSS
Exploits0References1
Cvelist
Cvelistadded 2009/07/01 12:26 p.m.18 views

CVE-2009-2271

The Huawei D100 has 1 a certain default administrator password for the web interface, and does not force a password change; and has 2 a default password of admin for the admin account in the telnet interface; which makes it easier for remote attackers to obtain access...

6.7AI score0.01313EPSS
Exploits0References2
Cvelist
Cvelistadded 2009/07/01 12:26 p.m.19 views

CVE-2009-2272

The Huawei D100 stores the administrator's account name and password in cleartext in a cookie, which allows context-dependent attackers to obtain sensitive information by 1 reading a cookie file, by 2 sniffing the network for HTTP headers, and possibly by using unspecified other vectors...

7.5AI score0.00644EPSS
Exploits0References1
Cvelist
Cvelistadded 2009/07/01 12:26 p.m.18 views

CVE-2009-2274

The Huawei D100 allows remote attackers to obtain sensitive information via a direct request to 1 lanstatusadv.asp, 2 wlanbasiccfg.asp, or 3 lancfg.asp in en/, related to use of JavaScript to protect against reading file contents...

6.2AI score0.00914EPSS
Exploits0References2
Rows per page
Query Builder