Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2017-9116

Malware in sbrugna...

9.8CVSS9.5AI score0.00458EPSS
Exploits2References3
RedhatCVE
RedhatCVEadded 2025/05/22 10:41 a.m.12 views

CVE-2017-17974

BA SYSTEMS BAS Web on BAS920 devices with Firmware 01.01.00, HTTPserv 00002, and Script 02. and ISC2000 devices allows remote attackers to obtain sensitive information via a request for isc/getsidjs.aspx or isc/getsid.aspx, as demonstrated by obtaining administrative access by subsequently using...

9.8CVSS6.7AI score0.00458EPSS
Exploits2References1
seebug.org
seebug.orgadded 2018/05/10 12:0 a.m.72 views

SCADAS "BAS920 & ISC2000" Credentials Exposed(CVE-2017-17974)

Exploit; SCADAS "BAS920 & ISC2000"; Credentials Exposed BA System “Improper Access Control Authorization” Exploit Title: "SCADAS "BAS920 & ISC2000"; Credentials Exposed” CVE: CVE-2017-17974 Date: 29/12/2017 Exploit Author: Fernandez Ezequiel @capitanalfa && Bertin Jose @bertinjoseb Vendor: BA...

5CVSS9.8AI score0.00458EPSS
Exploits2
CNVD
CNVDadded 2018/01/04 12:0 a.m.4 views

BA SYSTEMS BAS Web Information Disclosure Vulnerability in BAS920 and ISC2000 Devices

BAS920 and ISC2000 devices are both programmable intelligent controller products from BA SYSTEMS of Denmark.BA SYSTEMS BAS Web is a building automation system that runs on them. An access control error vulnerability exists in BA SYSTEMS BAS Web on BAS920 and ISC2000 devices using firmware version...

9.8CVSS6.9AI score0.00458EPSS
Exploits2References1
OSV
OSVadded 2017/12/29 9:29 p.m.1 views

CVE-2017-17974

BA SYSTEMS BAS Web on BAS920 devices with Firmware 01.01.00, HTTPserv 00002, and Script 02. and ISC2000 devices allows remote attackers to obtain sensitive information via a request for isc/getsidjs.aspx or isc/getsid.aspx, as demonstrated by obtaining administrative access by subsequently using...

9.8CVSS5.8AI score0.00458EPSS
Exploits2References2
Prion
Prionadded 2017/12/29 9:29 p.m.10 views

Design/Logic Flaw

BA SYSTEMS BAS Web on BAS920 devices with Firmware 01.01.00, HTTPserv 00002, and Script 02. and ISC2000 devices allows remote attackers to obtain sensitive information via a request for isc/getsidjs.aspx or isc/getsid.aspx, as demonstrated by obtaining administrative access by subsequently using...

5CVSS9.1AI score0.00458EPSS
Exploits2References2Affected Software2
NVD
NVDadded 2017/12/29 9:29 p.m.8 views

CVE-2017-17974

BA SYSTEMS BAS Web on BAS920 devices with Firmware 01.01.00, HTTPserv 00002, and Script 02. and ISC2000 devices allows remote attackers to obtain sensitive information via a request for isc/getsidjs.aspx or isc/getsid.aspx, as demonstrated by obtaining administrative access by subsequently using...

9.8CVSS9.2AI score0.00458EPSS
Exploits2References2
CVE
CVEadded 2017/12/29 9:0 p.m.45 views

CVE-2017-17974

CVE-2017-17974 affects BA SYSTEMS BAS Web on BAS920 devices (firmware 01.01.00*, HTTPserv 00002, Script 02.*) and ISC2000 devices. The issue arises from an information-disclosure/authorization flaw exposed by requests to isc/get_sid_js.aspx or isc/get_sid.aspx, enabling an attacker to obtain cred...

9.8CVSS9.1AI score0.00458EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder