EUVD-2014-6967

Malware in sbrugna...

NFX Series: Authentication Bypass Vulnerability Juniper Device Manager (JDM) (JSA10955)

An authentication bypass vulnerability exists in Junos Device Manager. An authenticated, local attacker can exploit this to bypass regular security controls and take control of the system. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid130264; scriptversion"1.3";...

Authorization

An improper authorization weakness in Juniper Networks Junos OS allows a local authenticated attacker to bypass regular security controls to access the Junos Device Manager JDM application and take control of the system. This issue affects: Juniper Networks Junos OS versions prior to 18.2R1,...

CVE-2019-0057 NFX Series: An attacker may be able to take control of the JDM application and subsequently the entire system.

An improper authorization weakness in Juniper Networks Junos OS allows a local authenticated attacker to bypass regular security controls to access the Junos Device Manager JDM application and take control of the system. This issue affects: Juniper Networks Junos OS versions prior to 18.2R1,...

NFX Series: Insecure sshd configuration in Juniper Device Manager (JDM) and host OS (JSA10878)

According to its self-reported version number, the remote Juniper Junos device is affected by a vulnerability. With an insecure SSHD configuration in Juniper Device Manager, a remote, unauthenticated attacker can gain access if any of the passwords on the system are empty. The affected SSHD...

JDM Drift Underground - Dangerous filesystem permissions, MIT license, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application JDM Drift Underground published at the 'play' market has multiple vulnerabilities...

COMODO Cross Site Scripting

Exploit Title: COMODO Subdomain XSS Vulnerability Google Dork: N/A Date: 2016/2/3 Exploit Author: RootByte Vendor Homepage: http://personalfirewall.comodo.com/ Software Link: N/A Version: N/A Tested on: Windows 10 / FireFox 44.0 CVE : N/A about Wikipedia: COMODO is a privately held group of...

jdm-nation.forumotion.net XSS vulnerability

Open Bug Bounty ID: OBB-60942 Description| Value ---|--- Affected Website:| jdm-nation.forumotion.net Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Preventio...

CVE-2014-7088

The JDM Lifestyle aka com.hondatech application 6.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The JDM Lifestyle aka com.hondatech application 6.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-7088

The CVE-2014-7088 entry concerns the JDM Lifestyle (com.hondatech) Android app version 6.4. It is vulnerable because the application does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificat...

CVE-2014-7088

The JDM Lifestyle aka com.hondatech application 6.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...