CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Prion•added 2016/05/29 10:59 p.m.•10 views

Hardcoded credentials

5CVSS7.2AI score0.0016EPSS

NVD•added 2016/05/29 10:59 p.m.•11 views

CVE-2016-1404

7.5CVSS7.6AI score0.0016EPSS

Cvelist•added 2016/05/29 10:0 p.m.•15 views

CVE-2016-1404

7.6AI score0.0016EPSS

CVE•added 2016/05/29 10:0 p.m.•41 views

CVE-2016-1404

CVE-2016-1404 affects Cisco UCS Invicta software, including Invicta 4.3, 4.5, and 5.0.1 on Invicta appliances and Invicta Scaling System. The root cause is a single hardcoded GnuPG encryption key used across different customer installations, enabling remote attackers to defeat cryptographic prote...

7.5CVSS7.5AI score0.0016EPSS

CNVD•added 2016/05/25 12:0 a.m.•3 views

Cisco UCS Invicta Software Information Disclosure Vulnerability

Cisco UCS Invicta Software is a suite of software from the U.S. company Cisco Cisco that provides application acceleration capabilities. An information disclosure vulnerability exists in Cisco UCS Invicta Software. An attacker could exploit the vulnerability by intercepting communications to...

7.5CVSS6.2AI score0.0016EPSS

Cisco•added 2016/05/24 8:30 a.m.•29 views

Cisco UCS Invicta Software Default GPG Key Vulnerability

A vulnerability in Cisco UCS Invicta Software could allow an unauthenticated, remote attacker to access some encrypted information, if the attacker can intercept communication between an affected system and a Cisco UCS Invicta Autosupport server. The vulnerability is due to the presence of a...

4.3CVSS7.5AI score0.0016EPSS

CNVD•added 2016/04/07 12:0 a.m.•0 views

Cisco UCS Invicta C3124SA Appliance Elevation of Privilege Vulnerability

Cisco UCS Invicta is an industry-leading suite of Cisco operating software designed to maintain high throughput, high I/O operations per second IOPS rates, and ultra-low latency using NAND flash. Cisco UCS Invicta C3124SA Appliance 4.3.1 to 5.0.1, UCS Invicta Scaling System Appliance,Whiptail...

10CVSS7.4AI score0.01486EPSS

NVD•added 2016/04/06 11:59 p.m.•8 views

CVE-2016-1313

Cisco UCS Invicta C3124SA Appliance 4.3.1 through 5.0.1, UCS Invicta Scaling System and Appliance, and Whiptail Racerunner improperly store a default SSH private key, which allows remote attackers to obtain root access via unspecified vectors, aka Bug ID CSCun71294...

10CVSS9.3AI score0.01486EPSS

OSV•added 2016/04/06 11:59 p.m.•0 views

CVE-2016-1313

9.8CVSS5.8AI score

Prion•added 2016/04/06 11:59 p.m.•8 views

Code injection

10CVSS7.2AI score0.01486EPSS

CVE•added 2016/04/06 11:0 p.m.•41 views

CVE-2016-1313

CVE-2016-1313 affects Cisco UCS Invicta C3124SA Appliance (versions 4.3.1–5.0.1), UCS Invicta Scaling System and Appliance, and Whiptail Racerunner. The root cause is the insecure storage of a default SSH private key, which could allow an unauthenticated attacker with network access to obtain roo...

10CVSS9.2AI score0.01486EPSS

Cvelist•added 2016/04/06 11:0 p.m.•12 views

CVE-2016-1313

9.4AI score0.01486EPSS

Cisco•added 2016/04/06 4:0 p.m.•23 views

Cisco UCS Invicta Default SSH Key Vulnerability

A vulnerability in the implementation of intra-process communication for Cisco UCS Invicta Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of a default SSH private key that is...

10CVSS9.7AI score0.01486EPSS