Lucene search
K

889 matches found

NVD
NVD
added 2025/12/04 3:15 p.m.9 views

CVE-2025-54304

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. When they are powered on, an X11 display server is started. The display server listens on all network interfaces and is accessible over port 6000. The X11 access control list, by default, allows connections from...

9.8CVSS0.00436EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.7 views

Thermo Fisher Ion Torrent OneTouch 2 安全漏洞

The Thermo Fisher Ion Torrent OneTouch 2 is a fully automated sequencing template preparation instrument from Thermo Fisher, USA. A security vulnerability exists in Thermo Fisher Ion Torrent OneTouch 2 version INS1005527, which stems from the X11 display server listening to all network interfaces...

9.8CVSS6.8AI score0.00436EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/04 12:0 a.m.18 views

CVE-2025-54304

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. When they are powered on, an X11 display server is started. The display server listens on all network interfaces and is accessible over port 6000. The X11 access control list, by default, allows connections from...

0.00436EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/04 12:0 a.m.8 views

EUVD-2025-201179

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. When they are powered on, an X11 display server is started. The display server listens on all network interfaces and is accessible over port 6000. The X11 access control list, by default, allows connections from...

7.1AI score0.00436EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/12/04 12:0 a.m.4 views

CVE-2025-53963

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. They run an SSH server accessible over the default port 22. The root account has a weak default password of ionadmin, and a password change policy for the root account is not enforced. Thus, an attacker with netwo...

7.5AI score0.00403EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/04 12:0 a.m.4 views

EUVD-2025-201181

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. They run an SSH server accessible over the default port 22. The root account has a weak default password of ionadmin, and a password change policy for the root account is not enforced. Thus, an attacker with netwo...

7.3AI score0.00403EPSS
Exploits0References4
CVE
CVE
added 2025/12/04 12:0 a.m.16 views

CVE-2025-53963

CVE-2025-53963 affects Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. An SSH server on port 22 uses a weak default root password (ionadmin) with no enforced password-change policy, allowing a network-connected attacker to achieve root code execution. Notes across sources indicate the vu...

9.8CVSS7.5AI score0.00403EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.11 views

PT-2025-49036

Name of the Vulnerable Software and Affected Versions Thermo Fisher Ion Torrent OneTouch 2 INS1005527 affected versions not specified Description The devices run an SSH server accessible via port 22. The root account has a default password of ionadmin, and a password change policy is not enforced...

9.8CVSS7.5AI score0.00403EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2025/12/04 12:0 a.m.4 views

CVE-2025-54304

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. When they are powered on, an X11 display server is started. The display server listens on all network interfaces and is accessible over port 6000. The X11 access control list, by default, allows connections from...

7.2AI score0.00436EPSS
Exploits0References3
CVE
CVE
added 2025/12/04 12:0 a.m.19 views

CVE-2025-54304

Affected product. Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. When powered on, an X11 display server is started and listens on all network interfaces via port 6000. The default X11 access control list permits connections from 127.0.0.1 and 192.168.2.15. If the device boots and then c...

9.8CVSS7.2AI score0.00436EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.5 views

PT-2025-49041

Name of the Vulnerable Software and Affected Versions Thermo Fisher Ion Torrent OneTouch 2 INS1005527 affected versions not specified Description An issue exists on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices where an X11 display server starts when the device is powered on. This serve...

9.8CVSS7.1AI score0.00436EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/12/04 12:0 a.m.20 views

CVE-2025-53963

An issue was discovered on Thermo Fisher Ion Torrent OneTouch 2 INS1005527 devices. They run an SSH server accessible over the default port 22. The root account has a weak default password of ionadmin, and a password change policy for the root account is not enforced. Thus, an attacker with netwo...

0.00403EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/01 12:0 a.m.9 views

CVE-2024-39148

The service wmp-agent of KerOS prior 5.12 does not properly validate so-called ‘magic URLs’ allowing an unauthenticated remote attacker to execute arbitrary OS commands as root when the service is reachable over network. Typically, the service is protected via local firewall...

0.00452EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2025/11/10 12:0 a.m.180 views

📄 Ilevia EVE X1/X5 Server 4.7.18.0.eden Root Privilege Escalation

Ilevia EVE X1/X5 Server version 4.7.18.0.eden has a misconfiguration in the sudoers file that permits passwordless execution of specific Bash shell scripts via sudo, exposing a critical privilege escalation vulnerability. When such scripts are writable by a web-facing user www-data or accessible...

9.8CVSS8.4AI score0.07285EPSS
Exploits3
Zero Science Lab
Zero Science Lab
added 2025/11/06 12:0 a.m.165 views

Ilevia EVE X1/X5 Server 4.7.18.0.eden Root Privilege Escalation

Summary EVE is a smart home and building automation solution designed for both residential and commercial environments, including malls, hotels, restaurants, bars, gyms, spas, boardrooms, and offices. It enables comprehensive control and monitoring of electrical installations through a highly...

9.8CVSS6AI score0.07285EPSS
Exploits3
CNNVD
CNNVD
added 2025/11/05 12:0 a.m.6 views

PocketVJ CP 安全漏洞

PocketVJ CP is a control panel software by magdesign individual developers. A security vulnerability exists in PocketVJ CP PocketVJ-CP-v3 pvj version 3.9.1, which stems from the submitopacity.php component failing to clean up user input for the capacityValue POST parameter, which could allow a...

9.8CVSS7.5AI score0.01118EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/16 1:41 a.m.15 views

CVE-2017-20204

DBLTek GoIP devices models GoIP 1, 4, 8, 16, and 32 contain an undocumented vendor backdoor in the Telnet administrative interface that allows remote authentication as an undocumented user via a proprietary challenge–response scheme which is fundamentally flawed. Because the challenge response ca...

9.3CVSS7.9AI score0.00847EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/15 1:20 a.m.8 views

EUVD-2017-18921

DBLTek GoIP devices models GoIP 1, 4, 8, 16, and 32 contain an undocumented vendor backdoor in the Telnet administrative interface that allows remote authentication as an undocumented user via a proprietary challenge–response scheme which is fundamentally flawed. Because the challenge response ca...

9.3CVSS7.4AI score0.00847EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-4310

Malware in sbrugna...

10CVSS9.5AI score0.01535EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-4312

Malware in sbrugna...

10CVSS9.5AI score0.01535EPSS
Exploits0References2
Rows per page
Query Builder