Lucene search
K

2964 matches found

GithubExploit
GithubExploit
added 2023/08/01 6:12 p.m.184 views

Exploit for Missing Authentication for Critical Function in F5 Big-Ip_Access_Policy_Manager

Refresh This container emulates the vulnerable functionality o...

9.8CVSS10AI score0.99956EPSS
Exploits63
ICS
ICS
added 2023/07/21 6:0 a.m.45 views

Walchem Intuition 9

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Walchem Equipment: Intuition 9 Vulnerabilities: Missing Authentication for Critical Function, Improper Authentication 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an...

8.8CVSS8.3AI score0.00508EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2023/07/18 6:15 p.m.4 views

CVE-2023-36669

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit IDU before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Any attacker with layer-3 network access to the IDU can impersonate the Touch Panel Unit TPU within the IDU by sending crafte...

9.8CVSS7.5AI score0.00658EPSS
Exploits0References3
OSV
OSV
added 2023/07/18 6:15 p.m.4 views

CVE-2023-36669

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit IDU before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Any attacker with layer-3 network access to the IDU can impersonate the Touch Panel Unit TPU within the IDU by sending crafte...

9.8CVSS6AI score0.00658EPSS
Exploits0References2
NVD
NVD
added 2023/07/18 6:15 p.m.14 views

CVE-2023-36669

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit IDU before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Any attacker with layer-3 network access to the IDU can impersonate the Touch Panel Unit TPU within the IDU by sending crafte...

9.8CVSS0.00658EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/18 12:0 a.m.14 views

CVE-2023-36669

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit IDU before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Any attacker with layer-3 network access to the IDU can impersonate the Touch Panel Unit TPU within the IDU by sending crafte...

7.2AI score0.00658EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2023/07/12 12:0 a.m.235 views

AtTestimonials CMS 1.2 Missing Authentication

==================================================================================================================================== | Title : AtTestimonials CMS v1.2 Missing Authentication Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2023/07/11 2:42 a.m.35 views

CVE-2023-35873 Missing Authentication check in SAP NetWeaver Process Integration (Runtime Workbench)

The Runtime Workbench RWB of SAP NetWeaver Process Integration - version SAPXITOOL 7.50, does not perform authentication checks for certain functionalities that require user identity. An unauthenticated user might access technical data about the product status and its configuration. The...

6.5CVSS6.9AI score0.00481EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/11 12:0 a.m.4 views

SAP NetWeaver Process Integration 访问控制错误漏洞

SAP NetWeaver Process Integration PI is an SAP enterprise application integration software from SAP, Germany, and is a component of the NetWeaver product group. The component is mainly used for the exchange of information between the internal system and the external. An access control error...

6.5CVSS6.6AI score0.00481EPSS
Exploits0References3
NVD
NVD
added 2023/07/06 3:15 a.m.21 views

CVE-2023-30643

Missing authentication vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to delete arbitrary non-preloaded applications...

7.7CVSS7.6AI score0.00151EPSS
Exploits0References1
OSV
OSV
added 2023/07/06 3:15 a.m.4 views

CVE-2023-30643

Missing authentication vulnerability in Galaxy Themes Service prior to SMR Jul-2023 Release 1 allows local attackers to delete arbitrary non-preloaded applications...

7.1CVSS5.9AI score0.00151EPSS
Exploits0References1
CVE
CVE
added 2023/07/06 2:50 a.m.37 views

CVE-2023-30643

CVE-2023-30643 concerns Samsung Galaxy Themes Service. A missing authentication vulnerability allows local attackers to delete arbitrary non-preloaded applications. Affected product: Galaxy Themes Service in Samsung mobile devices (prior to SMR Jul-2023 Release 1). Root cause: missing authenticat...

7.7CVSS6.9AI score0.00151EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/07/06 12:0 a.m.5 views

SAMSUNG Mobile devices 访问控制错误漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices SMR Jul-2023 Release 1 version, which stems from a missing authentication vulnerability in t...

7.7CVSS7AI score0.00151EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/06 12:0 a.m.5 views

PT-2023-22837 · Samsung · Galaxy Themes Service

Name of the Vulnerable Software and Affected Versions: Galaxy Themes Service versions prior to SMR Jul-2023 Release 1 Description: A missing authentication issue allows local attackers to delete arbitrary non-preloaded applications. Recommendations: For versions prior to SMR Jul-2023 Release 1,...

7.7CVSS7AI score0.00151EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2023/06/26 12:0 a.m.202 views

Alhotphp Article CMS 1.0 Cross Site Request Forgery

==================================================================================================================================== | Title : Alhotphp article CMS 1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 66.0.332-bit | |...

7.1AI score
Exploits0
OSV
OSV
added 2023/06/19 5:15 p.m.2 views

CVE-2022-48491

Vulnerability of missing authentication on certain HUAWEI phones.Successful exploitation of this vulnerability can lead to ads and other windows to display at any time...

5.3CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/06/19 5:15 p.m.1 views

CVE-2022-48491

Vulnerability of missing authentication on certain HUAWEI phones.Successful exploitation of this vulnerability can lead to ads and other windows to display at any time...

5.3CVSS6.1AI score0.00308EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2023/06/19 5:15 p.m.20 views

CVE-2022-48491

Vulnerability of missing authentication on certain HUAWEI phones.Successful exploitation of this vulnerability can lead to ads and other windows to display at any time...

5.3CVSS5.4AI score0.00308EPSS
Exploits0References1
CVE
CVE
added 2023/06/19 12:0 a.m.50 views

CVE-2022-48491

CVE-2022-48491 : A missing authentication issue in Huawei EMUI (Android-based) phones can allow an attacker to cause ads or other windows to display at arbitrary times. Affected component is the EMUI shell (HarmonyOS-related references appear in some sources). The CVSS 3.1 base vector (AV:N/AC:L/...

5.3CVSS5.4AI score0.00308EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/06/19 12:0 a.m.23 views

CVE-2022-48491

Vulnerability of missing authentication on certain HUAWEI phones.Successful exploitation of this vulnerability can lead to ads and other windows to display at any time...

5.7AI score0.00308EPSS
Exploits0References1
Rows per page
Query Builder