CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2024/07/10 12:0 a.m.•5 views

Siemens SIPROTEC 5 devices weak encryption vulnerability

SIPROTEC 5 devices offer a range of integrated protection, control, measurement and automation functions for substations and other applications. A weak cryptography vulnerability exists in Siemens SIPROTEC 5 devices due to affected devices supporting weak cryptography on multiple ports 443/tcp fo...

8.2CVSS6.6AI score0.00105EPSS

Exploits0References1

CVE•added 2024/02/02 3:28 p.m.•36 views

CVE-2024-24760

CVE-2024-24760 affects mailcow, a dockerized mail suite, with exposed dockerized ports. The root issue: containers on a bridged network are reachable from the same subnet even when ports are bound to 127.0.0.1, enabling potential access to exposed ports. Affected versions are prior to 2024-01c. T...

8.8CVSS7AI score0.0405EPSS

Exploits0References2Affected Software1

NVD•added 2022/07/26 10:15 p.m.•9 views

CVE-2022-29951

JTEKT TOYOPUC PLCs through 2022-04-29 mishandle authentication. They utilize the CMPLink/TCP protocol configurable on ports 1024-65534 on either TCP or UDP for a wide variety of engineering purposes such as starting and stopping the PLC, downloading and uploading projects, and changing...

9.1CVSS0.00341EPSS

ThreatPost•added 2022/06/08 1:36 p.m.•36 views

Taming the Digital Asset Tsunami

Internet Protocol IP addresses and the devices, web services and cloud assets behind them are the lifeblood of modern businesses. But too often companies amass thousands of digital assets, creating an unmanageable mess for IT and security teams. Left unchecked, a single forgotten, abandoned or...

6.5AI score

Exploits0References3

OSV•added 2019/04/18 2:29 a.m.•1 views

CVE-2019-1834

A vulnerability in the internal packet processing of Cisco Aironet Series Access Points APs could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected AP if the switch interface where the AP is connected has port security configured. The...

6.5CVSS6.9AI score0.00186EPSS

ThreatPost•added 2014/07/10 12:51 p.m.•10 views

GAO Shipping Port Cybersecurity Report

The U.S. Department of Homeland Security, Coast Guard and Federal Emergency Management Agency FEMA have been taken to the woodshed in a General Accounting Office GAO report on maritime cybersecurity. The GAO said the response to mandates to improve computer security efforts to protect the network...

0.2AI score

Debian CVE•added 2014/05/08 2:0 p.m.•25 views

CVE-2014-0056

The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command...

2.1CVSS6.2AI score0.00216EPSS

UbuntuCve•added 2014/04/01 12:0 a.m.•31 views

CVE-2014-0056

2.1CVSS6AI score0.00216EPSS

The Hacker News•added 2011/09/14 6:35 p.m.•5 views

Book : Backtrack 5 Wireless Penetration Testing by Vivek Ramachandran

Book : Backtrack 5 Wireless Penetration Testing by Vivek Ramachandran This book will provide a highly technical and in-depth treatment of Wi-Fi security. The emphasis will be to provide the readers with a deep understanding of the principles behind various attacks and not just a quick how-to guid...

Saint•added 2010/08/23 12:0 a.m.•20 views

ARP Spoof

Added: 08/23/2010 Background The Address Resolution Protocol ARP is used to resolve IP addresses into the hardware addresses which are used for delivering packets on a local network. Problem It is possible to send a computer a forged ARP reply, which is then stored in that computer's cache. This...

Saint•added 2010/08/23 12:0 a.m.•25 views

ARP Spoof

Saint•added 2010/08/23 12:0 a.m.•38 views

ARP Spoof

Saint•added 2010/08/23 12:0 a.m.•25 views

ARP Spoof

Tenable Nessus•added 2009/11/16 12:0 a.m.•31 views

Lotus Domino Console Detection

The Lotus Domino console is running on this port. A dedicated client software uses this console port to reconfigure the Domino server. Credentials are needed for that operation. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid42818; scriptversion"1.8";...

5.5AI score

Tenable Nessus•added 2009/11/12 12:0 a.m.•54 views

sslh Detection

The remote host appears to be running an sslh daemon. sslh is a multiplexing service that can accept SSH or SSL connections on the same port, such as 443 from inside a corporate firewall. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; i...

5.6AI score

Exploits0References1

myhack58•added 2007/08/31 12:0 a.m.•30 views

Teach you to kill on the server the ICS firewall-vulnerability warning-the black bar safety net

Now more and more servers using the ICS Firewall, with ipsec to manage the remote login and port security Engage in really want a world without black. Many server directly down but not on the 3 3 8 9, carefully complete analysis didn't find what firewall or fresh software, the ipsec service is...

0.1AI score

myhack58•added 2007/01/03 12:0 a.m.•29 views

The reproduction of social engineering-vulnerability warning-the black bar safety net

Article author: withered Ling roseN. C. P. H Information source: evil octal information security teamwww.eviloctal.com to This is my osmosis in the process of a real experience,I would have thought after two days of time to get to the master server,the Master Station program on the Master Station...

7.2AI score