Lucene search
K

19 matches found

Vulnrichment
Vulnrichment
added 2025/09/17 2:10 a.m.3 views

CVE-2025-8153

Cross-site Scripting vulnerability in NEC Corporation UNIVERGE IX from Ver.9.5 to Ver.10.7, from Ver.10.8.21 to Ver.10.8.36, from Ver.10.9.11 to Ver.10.9.24, from Ver.10.10.21 to Ver.10.10.31, Ver.10.11.6 and UNIVERGE IX-R/IX-V Ver1.3.16, Ver1.3.21 allows a attacker to inject an arbitrary scripts...

5.1CVSS6.2AI score0.00311EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/29 12:0 a.m.5 views

NEC UNIVERGE IX 安全漏洞

The NEC UNIVERGE IX is a router from Nippon Electric NEC. A security vulnerability exists in NEC UNIVERGE IX. An attacker exploiting this vulnerability could hijack on-screen authentication on the device via the management interface...

4.3CVSS7AI score0.00177EPSS
Exploits0References1
NVD
NVD
added 2018/12/26 9:29 p.m.44 views

CVE-2018-11741

NEC Univerge Sv9100 WebPro 6.00.00 devices have Predictable Session IDs that result in Account Information Disclosure via Home.htm?sessionId=&GOTO8 URIs...

9.8CVSS9.3AI score0.17886EPSS
Exploits5References4
Prion
Prion
added 2018/12/26 9:29 p.m.16 views

Default credentials

NEC Univerge Sv9100 WebPro 6.00.00 devices have Cleartext Password Storage in the Web UI...

5CVSS9.4AI score0.14335EPSS
Exploits5References4Affected Software1
NVD
NVD
added 2018/12/26 9:29 p.m.24 views

CVE-2018-11742

NEC Univerge Sv9100 WebPro 6.00.00 devices have Cleartext Password Storage in the Web UI...

9.8CVSS9.5AI score0.14335EPSS
Exploits5References4
Cvelist
Cvelist
added 2018/12/26 8:0 p.m.27 views

CVE-2018-11742

NEC Univerge Sv9100 WebPro 6.00.00 devices have Cleartext Password Storage in the Web UI...

9.6AI score0.14335EPSS
Exploits5References4
Cvelist
Cvelist
added 2018/12/26 8:0 p.m.36 views

CVE-2018-11741

NEC Univerge Sv9100 WebPro 6.00.00 devices have Predictable Session IDs that result in Account Information Disclosure via Home.htm?sessionId=&GOTO8 URIs...

9.4AI score0.17886EPSS
Exploits5References4
Packet Storm
Packet Storm
added 2018/12/04 12:0 a.m.71 views

NEC Univerge Sv9100 WebPro 6.00.00 Predictable Session ID / Cleartext Passwords

Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/NEC-UNIVERGE-WEBPRO-v6.00-PREDICTABLE-SESSIONID-CLEARTEXT-PASSWORDS.txt + ISR: ApparitionSec Greetz: indoushka | Eduardo B. 0day Vendor www.necam.com Affected Product Code Base NEC Univerge...

0.2AI score0.17886EPSS
Exploits6
Exploit DB
Exploit DB
added 2018/12/04 12:0 a.m.60 views

NEC Univerge Sv9100 WebPro - 6.00 - Predictable Session ID / Clear Text Password Storage

''' + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/NEC-UNIVERGE-WEBPRO-v6.00-PREDICTABLE-SESSIONID-CLEARTEXT-PASSWORDS.txt + ISR: ApparitionSec Greetz: indoushka | Eduardo B. 0day Vendor www.necam.com Affected Product Code Base NEC...

9.8CVSS9.6AI score0.17886EPSS
Exploits6
0day.today
0day.today
added 2018/12/04 12:0 a.m.116 views

NEC Univerge Sv9100 WebPro - 6.00 - Predictable Session ID / Clear Text Password Storage

Exploit for hardware platform in category web applications ''' + Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/NEC-UNIVERGE-WEBPRO-v6.00-PREDICTABLE-SESSIONID-CLEARTEXT-PASSWORDS.txt + ISR: ApparitionSec Greetz: indoushka | Eduardo B...

0.17886EPSS
Exploits6
0day.today
0day.today
added 2018/01/23 12:0 a.m.82 views

NEC Univerge SV9100/SV8100 WebPro 10.0 - Configuration Download Vulnerability

NEC Univerge SV9100/SV8100 WebPro version 10.0 suffers from a remote configuration download vulnerability. The gzipped telephone system configuration file 'config.gz' or 'config.pcpx' that contains the unencrypted data file 'conf.pcpn', can be downloaded by an attacker from the root directory if...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2018/01/23 12:0 a.m.205 views

NEC Univerge SV9100/SV8100 WebPro 10.0 Remote Configuration Download

NEC Univerge SV9100/SV8100 WebPro 10.0 Remote Configuration Download Vendor: NEC Corporation Product web page: http://www.nec.com Affected version: WebPro =10.00 DSP Firmware Version: 12.11.00.02 Summary: NEC's UNIVERGEAr SV9100 is the unified communications UC solution of choice for small and...

7.1AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2018/01/22 12:0 a.m.1419 views

NEC Univerge SV9100/SV8100 WebPro 10.0 Remote Configuration Download

Summary NEC's UNIVERGE® SV9100 is the unified communications UC solution of choice for small and medium businesses SMBs who don't want to be left behind. Designed to fit your unique needs, the UNIVERGE SV9100 platform is a powerful communications solution that provides SMBs with the efficient,...

5.7AI score
Exploits0
0day.today
0day.today
added 2017/07/22 12:0 a.m.27 views

NEC UNIVERGE UM4730 < 11.8 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: NEC UNIVERGE UM4730 11.8 SQL injection Vulnerbility: SQL injection login bypass Date: 15-12-2016 Exploit Author: b0x41s Author web: https://www.xrayit.nl Vendor Homepage: https://www.nec-enterprise.com Category: webapps Version:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2017/07/21 12:0 a.m.11 views

NEC UNIVERGE UM4730 11.8 - SQL Injection

NEC UNIVERGE UM4730 11.8 - SQL Injection Exploit Title: NEC UNIVERGE UM4730 11.8 SQL injection Vulnerbility: SQL injection login bypass Date: 15-12-2016 Exploit Author: b0x41s Author web: https://www.xrayit.nl Vendor Homepage: https://www.nec-enterprise.com Category: webapps Version: 11.6.0.31...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2017/07/21 12:0 a.m.20 views

NEC Universe UM4730 SQL Injection

Exploit Title: NEC UNIVERGE UM4730 11.8 SQL injection Vulnerbility: SQL injection login bypass Date: 15-12-2016 Exploit Author: b0x41s Author web: https://www.xrayit.nl Vendor Homepage: https://www.nec-enterprise.com Category: webapps Version: 11.6.0.31 Tested on: Windows server 2008 Description:...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2017/07/21 12:0 a.m.33 views

NEC UNIVERGE UM4730 &lt; 11.8 - SQL Injection

Exploit Title: NEC UNIVERGE UM4730 11.8 SQL injection Vulnerbility: SQL injection login bypass Date: 15-12-2016 Exploit Author: b0x41s Author web: https://www.xrayit.nl Vendor Homepage: https://www.nec-enterprise.com Category: webapps Version: 11.6.0.31 Tested on: Windows server 2008 Description:...

7.4AI score
Exploits0
CVE
CVE
added 2005/12/22 12:0 a.m.44 views

CVE-2005-4465

The CVE-2005-4465 entry concerns IKEv1 in NEC UNIVERGE IX1000/IX2000/IX3000, where crafted IKE packets can cause a denial of service and possibly arbitrary code execution, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Connected sources also reference related IKEv1 issues (CVE-2005-36...

7.5CVSS7.7AI score0.02688EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2005/12/22 12:0 a.m.26 views

CVE-2005-4465

The Internet Key Exchange version 1 IKEv1 implementation in NEC UNIVERGE IX1000, IX2000, and IX3000 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of...

7.3AI score0.02688EPSS
Exploits0References4
Rows per page
Query Builder