Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CNNVD
CNNVDadded 2023/03/31 12:0 a.m.2 views

Generex UPS Adapter CS141 安全漏洞

Generex UPS Adapter CS141 is a UPS Uninterruptible Power System adapter from Generex. A security vulnerability exists in Generex UPS Adapter CS141 versions prior to 2.06 that allows an attacker to replace the administrator password by uploading a modified users.json file to a web server...

8.8CVSS8.4AI score0.0108EPSS
Exploits0References4
Microsoft Secure
Microsoft Secureadded 2020/07/02 6:0 p.m.44 views

The world is your authentication and identity oyster

This blog post is part of the Microsoft Intelligence Security Association guest blog series. To learn more about MISA, go here. The world is your authentication/identity oyster If you’re older than 10 years of age you’ve undoubtedly heard the phrase “The world is your oyster.” This basically mean...

7.1AI score
Exploits0
OSV
OSVadded 2019/10/08 1:15 p.m.1 views

CVE-2019-14657

Yealink phones through 2019-08-04 have an issue with OpenVPN file upload. They execute tar as root to extract files, but do not validate the extraction directory. Creating a tar file with ../../../../ allows replacement of almost any file on a phone. This leads to password replacement and arbitra...

8.8CVSS7.8AI score
Exploits0References2
Prion
Prionadded 2019/10/08 1:15 p.m.9 views

Design/Logic Flaw

Yealink phones through 2019-08-04 have an issue with OpenVPN file upload. They execute tar as root to extract files, but do not validate the extraction directory. Creating a tar file with ../../../../ allows replacement of almost any file on a phone. This leads to password replacement and arbitra...

9CVSS9.1AI score0.01826EPSS
Exploits1References2Affected Software3
Cvelist
Cvelistadded 2019/10/08 12:2 p.m.11 views

CVE-2019-14657

Yealink phones through 2019-08-04 have an issue with OpenVPN file upload. They execute tar as root to extract files, but do not validate the extraction directory. Creating a tar file with ../../../../ allows replacement of almost any file on a phone. This leads to password replacement and arbitra...

9.1AI score0.01826EPSS
Exploits1References2
Microsoft Secure
Microsoft Secureadded 2018/05/01 5:0 p.m.16 views

Building a world without passwords

Nobody likes passwords. They are inconvenient, insecure, and expensive. In fact, we dislike them so much that weve been busy at work trying to create a world without them a world without passwords. In this blog, we will provide a brief insight into how we at Microsoft think about solving this...

Exploits0
exploitpack
exploitpackadded 2015/06/01 12:0 a.m.18 views

Linux Kernel (PonyOS 3.0) - VFS Permissions Local Privilege Escalation

Linux Kernel PonyOS 3.0 - VFS Permissions Local Privilege Escalation / MyLittleUnix include include include include include char pwnystr = "root:07821d2459368443042007bf1c7cdf3c55284" "29a65f8f10ce388d301b47865a283147bfd290545b" "0b9b12ae622a8eb359497cb3635506f99d2f5e4c4e"...

0.8AI score
Exploits0
Rows per page
Query Builder