Lucene search
+L

16 matches found

nuclei
nuclei
added 2026/07/01 3:36 a.m.267 views

Primetek Primefaces 5.x - Remote Code Execution

Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution. id: CVE-2017-1000486 info: name: Primetek Primefaces 5.x - Remote Code Execution author: Moritz Nentwig severity: critical description: Primetek Primefaces 5.x is vulnerable to a weak encryption fl...

9.8CVSS7.8AI score0.94104EPSS
Exploits6References5
redhatcve
redhatcve
added 2026/01/09 9:51 a.m.9 views

CVE-2020-10544

An XSS issue was discovered in tooltip/tooltip.js in PrimeTek PrimeFaces 7.0.11. In a web application using PrimeFaces, an attacker can provide JavaScript code in an input field whose data is later used as a tooltip title without any input validation...

6.1CVSS6.1AI score0.00811EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-1068

Malware in sbrugna...

6.1CVSS6.3AI score0.00811EPSS
Exploits0References5
nessus
nessus
added 2022/12/07 12:0 a.m.80 views

PrimeTek PrimeFaces Remote Code Execution (CVE-2017-1000486)

Binary data primetekprimefacescve-2017-1000486.nbin...

9.8CVSS9.6AI score0.94104EPSS
Exploits6References4
cisa_kev
cisa_kev
added 2022/01/10 12:0 a.m.78 views

Primetek Primefaces Remote Code Execution Vulnerability

Primetek Primefaces is vulnerable to a weak encryption flaw resulting in remote code execution...

9.8CVSS4.4AI score0.94104EPSS
In wildExploits6
osv
osv
added 2021/06/03 7:22 p.m.55 views

GHSA-J239-4GQG-5J54 Inadequate Encryption Strength

Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution...

9.8CVSS9.6AI score0.94104EPSS
Exploits6References5
github
github
added 2021/06/03 7:22 p.m.92 views

Inadequate Encryption Strength

Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution...

9.8CVSS4.2AI score0.94104EPSS
Exploits6References6Affected Software1
vulncheck_kev
vulncheck_kev
added 2021/01/05 12:0 a.m.5 views

VulnCheck KEV: CVE-2017-1000486

Primetek Primefaces is vulnerable to a weak encryption flaw resulting in remote code execution...

9.8CVSS8AI score0.94104EPSS
Exploits6References1
prion
prion
added 2020/03/13 3:15 p.m.18 views

Input validation

An XSS issue was discovered in tooltip/tooltip.js in PrimeTek PrimeFaces 7.0.11. In a web application using PrimeFaces, an attacker can provide JavaScript code in an input field whose data is later used as a tooltip title without any input validation...

4.3CVSS5.9AI score0.00811EPSS
Exploits0References1Affected Software1
cve
cve
added 2020/03/13 2:32 p.m.63 views

CVE-2020-10544

PrimeFaces 7.0.11 (PrimeTek) has an XSS vulnerability in tooltip.js where user-supplied data used as a tooltip title can inject JavaScript due to lack of input validation. Affected component: tooltip functionality in PrimeFaces web applications. Root cause: input data used for tooltip titles is n...

6.1CVSS6AI score0.00811EPSS
Exploits0References1Affected Software1
cnvd
cnvd
added 2018/01/04 12:0 a.m.57 views

Primetek Primefaces Remote Code Execution Vulnerability

Primetek Primefaces is an open source use in the Java EE system UI library . A remote code execution vulnerability exists in version 5.x of Primetek Primefaces. A remote attacker could exploit this vulnerability to execute code...

9.8CVSS8.3AI score0.94104EPSS
Exploits6References1
nvd
nvd
added 2018/01/03 8:29 p.m.23 views

CVE-2017-1000486

Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution...

9.8CVSS9.7AI score0.94104EPSS
Exploits6References5
prion
prion
added 2018/01/03 8:29 p.m.38 views

Remote code execution

Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution...

7.5CVSS9.6AI score0.94104EPSS
Exploits6References4Affected Software1
cvelist
cvelist
added 2018/01/03 8:0 p.m.52 views

CVE-2017-1000486

Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution...

9.7AI score0.94104EPSS
Exploits6References4
cve
cve
added 2018/01/03 8:0 p.m.1198 views

CVE-2017-1000486

CVE-2017-1000486 affects Primetek Primefaces 5.x, with a weak encryption flaw enabling remote code execution. Public details describe a padding oracle issue exploited by attackers; Primefaces versions prior to 5.2.21, 5.3.8, or 6.0 are noted as vulnerable, with patches implied for those lines. Pu...

9.8CVSS9.5AI score0.94104EPSS
In wildExploits6References5Affected Software1
attackerkb
attackerkb
added 2018/01/03 12:0 a.m.52 views

CVE-2017-1000486

Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9.8CVSS9.1AI score0.94104EPSS
In wildExploits6References7
Rows per page
Query Builder