Lucene search
K

14 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.3 views

Malicious code in @zalastax/nolb-mics (npm)

The package @zalastax/nolb-mics was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-12346 Malicious code in @zalastax/nolb-mics (npm)

The package @zalastax/nolb-mics was found to contain malicious code...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/08/24 12:0 a.m.75 views

Ivanti Sentri Authentication Bypass (CVE-2023-38035)

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration. Note that Nessus has not tested for...

9.8CVSS8.7AI score0.99949EPSS
Exploits6References2
Malwarebytes
Malwarebytes
added 2023/08/23 4:30 p.m.45 views

[updated] Ivanti Sentry critical vulnerability—don't play dice, patch

Ivanti has published a security blog post about a vulnerability in Ivanti Sentry, formerly MobileIron Sentry. Successful exploitation of the vulnerability would enable an unauthenticated attacker to access some sensitive APIs that are used to configure Ivanti Sentry on the administrator portal...

7.5CVSS10.1AI score0.99999EPSS
Exploits20
NVD
NVD
added 2023/08/21 5:15 p.m.28 views

CVE-2023-38035

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration...

9.8CVSS9.8AI score0.99949EPSS
Exploits6References3
OSV
OSV
added 2023/08/21 5:15 p.m.3 views

CVE-2023-38035

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration...

9.8CVSS5.8AI score0.99949EPSS
Exploits6References3
Prion
Prion
added 2023/08/21 5:15 p.m.55 views

Authentication flaw

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration...

7.5CVSS9.4AI score0.99949EPSS
Exploits6References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/21 4:51 p.m.59 views

CVE-2023-38035

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration...

9.7AI score0.99949EPSS
Exploits6References2
Cvelist
Cvelist
added 2023/08/21 4:51 p.m.59 views

CVE-2023-38035

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration...

9.8AI score0.99949EPSS
Exploits6References2
CVE
CVE
added 2023/08/21 4:51 p.m.2992 views

CVE-2023-38035

CVE-2023-38035 affects Ivanti Sentry (MobileIron Sentry) 9.18.0 and earlier, via an unauthenticated path to the System Manager Portal on port 8443 due to an insufficiently restricting Apache HTTPD config. Exploitation can allow an attacker to bypass admin interface controls, change configuration,...

9.8CVSS9.7AI score0.99949EPSS
In wildExploits6References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/08/21 12:0 a.m.120 views

CVE-2023-38035

A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an attacker to bypass authentication controls on the administrative interface due to an insufficiently restrictive Apache HTTPD configuration. Recent assessments: jheysel-r7 at...

9.8CVSS10AI score0.99949EPSS
In wildExploits6References3
Openbugbounty
Openbugbounty
added 2020/09/13 6:38 a.m.8 views

mics-pics.com Cross Site Scripting vulnerability OBB-1331156

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/09/09 3:52 p.m.9 views

mics-pics.com Cross Site Scripting vulnerability OBB-1318614

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
HackRead
HackRead
added 2017/08/17 7:2 p.m.44 views

Speakers and Mics hacked to turn Music Into Surveillance Tool

By Waqas University of Washington’s Paul G. Allen School of Computer Science This is a post from HackRead.com Read the original post: Speakers and Mics hacked to turn Music Into Surveillance Tool...

6.9AI score
Exploits0
Rows per page
Query Builder