CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2026/03/24 9:31 p.m.•3 views

EUVD-2026-14960

A Missing Authentication for Critical Function vulnerability in Pharos Controls Mosaic Show Controller firmware version 2.15.3 could allow an unauthenticated attacker to bypass authentication and execute arbitrary commands with root privileges...

9.3CVSS6.1AI score0.00247EPSS

Exploits0References2

Cvelist•added 2026/03/24 6:6 p.m.•17 views

CVE-2026-2417 Missing Authentication for Critical Function in Pharos Controls Mosaic Show Controller

9.3CVSS0.00247EPSS

Exploits0References1

ATTACKERKB•added 2026/03/24 6:6 p.m.•2 views

CVE-2026-2417

9.3CVSS6.1AI score0.00247EPSS

Exploits0References2Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-4879

Malware in sbrugna...

7.5CVSS7.6AI score0.00315EPSS

Exploits0References2

CNVD•added 2018/07/02 12:0 a.m.•2 views

Pharos Controls Device Information Disclosure Vulnerability

Pharos Controls devices is a lighting control device from Pharos Architectural Controls, UK. A security vulnerability exists in Pharos Controls devices. A remote attacker can exploit this vulnerability by sending a direct request to the default/index.lsp or default/log.lsp URIs to obtain sensitiv...

7.5CVSS7.5AI score0.00315EPSS

Exploits0References1

NVD•added 2018/06/28 11:29 a.m.•7 views

CVE-2018-12926

Pharos Controls devices allow remote attackers to obtain potentially sensitive information via a direct request for the default/index.lsp or default/log.lsp URI...

7.5CVSS7.4AI score0.00315EPSS

Exploits0References1

Prion•added 2018/06/28 11:29 a.m.•7 views

Information disclosure

Pharos Controls devices allow remote attackers to obtain potentially sensitive information via a direct request for the default/index.lsp or default/log.lsp URI...

5CVSS7.4AI score0.00315EPSS

Exploits0References1

CVE•added 2018/06/28 11:0 a.m.•37 views

CVE-2018-12926

Pharos Controls devices are affected by a remote information-disclosure vulnerability. An attacker can retrieve potentially sensitive data by issuing a direct request to the default/index.lsp or default/log.lsp URIs. The available sources describe this as an information-disclosure issue affecting...

7.5CVSS7.3AI score0.00315EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/06/28 11:0 a.m.•13 views

CVE-2018-12926

Pharos Controls devices allow remote attackers to obtain potentially sensitive information via a direct request for the default/index.lsp or default/log.lsp URI...

7.4AI score0.00315EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by