Lucene search
K

4 matches found

OSV
OSV
added 2026/02/04 8:46 p.m.29 views

GHSA-3MQ9-XHGQ-R7GJ EVE: SSH as Root Unlockable Without Triggering Measured Boot

Impact On boot, the Pillar container checks for /config/authorizedkeys. If present with a valid public key, it enables SSH on port 22 with root login. The /config partition is not protected by measured boot, is mutable and unencrypted. This enables an attacker with physical access to the device t...

5.9CVSS5.5AI score0.0016EPSS
Exploits0References7
VulnCheck KEV
VulnCheck KEV
added 2021/11/03 12:0 a.m.5 views

VulnCheck KEV: CVE-2020-8599

Trend Micro Apex One and OfficeScan server contain a vulnerable EXE file that could allow a remote attacker to write data to a path on affected installations and bypass root login...

10CVSS7.3AI score0.11576EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/03/18 12:30 a.m.29 views

CVE-2020-8599

Trend Micro Apex One 2019 and OfficeScan XG server contain a vulnerable EXE file that could allow a remote attacker to write arbitrary data to an arbitrary path on affected installations and bypass ROOT login. Authentication is not required to exploit this vulnerability...

9.6AI score0.11576EPSS
Exploits0References2
CVE
CVE
added 2020/03/18 12:30 a.m.938 views

CVE-2020-8599

CVE-2020-8599 affects Trend Micro Apex One (2019) and OfficeScan XG servers. The issue is in a vulnerable EXE on the server that could let an unauthenticated remote attacker write arbitrary data to an arbitrary path and bypass ROOT login. The description indicates no authentication is required to...

10CVSS9.4AI score0.11576EPSS
In wildExploits0References3Affected Software2
Rows per page
Query Builder