Lucene search
K

102 matches found

CVE
CVE
added 2022/07/25 5:38 a.m.63 views

CVE-2022-36444

Affected products: Atos Unify OpenScape SBC (versions 9–10 before 10R2.2.1), OpenScape Branch (versions 9–10 before 10R2.1.1), and OpenScape BCF 10 before 10R9.12.1. Root cause/impact: a remote code execution vulnerability allows an unauthenticated attacker with network access to the admin interf...

9.8CVSS9.7AI score0.00857EPSS
Exploits0References1Affected Software3
CNNVD
CNNVD
added 2022/07/25 12:0 a.m.6 views

Atos Unify OpenScape 安全漏洞

Atos Unify OpenScape SBC and others are products of Atos France.Atos Unify OpenScape SBC is a datacenter-ready virtualized security application.Atos Unify OpenScape Branch is a virtual appliance or standard server application.Atos Unify OpenScape BCF is a unified communications and collaboration...

9.8CVSS8.8AI score0.00857EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2022/05/17 7:33 a.m.18 views

new packages: sbc

An update is available for sbc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Enterprise...

2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/03/07 8:54 a.m.12 views

sbc-baabe.de Improper Access Control vulnerability OBB-2413001

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

0.1AI score
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2021/07/10 12:0 a.m.40 views

Security update for wireshark (important)

openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2021:2125-1 Rating: important References: 1179930 1179931 1179932 1179933 1180102 1180232 1181598 1181599 1183353 1184110 1185128 Cross-References: CVE-2020-26418 CVE-2020-26419 CVE-2020-26420 CVE-2020-26421...

7.5CVSS7.5AI score0.04668EPSS
Exploits7References11
Tenable Nessus
Tenable Nessus
added 2021/06/28 12:0 a.m.31 views

openSUSE 15 Security Update : wireshark, libvirt, sbc, libqt5-qtmultimedia (openSUSE-SU-2021:0909-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:0909-1 advisory. - Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted...

8.8CVSS7.2AI score0.04668EPSS
Exploits7References30
OpenVAS
OpenVAS
added 2021/06/25 12:0 a.m.21 views

openSUSE: Security Advisory for wireshark, (openSUSE-SU-2021:0909-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.2AI score0.04668EPSS
Exploits7References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/06/24 12:0 a.m.58 views

Security update for wireshark, libvirt, sbc, libqt5-qtmultimedia (important)

openSUSE Security Update: Security update for wireshark, libvirt, sbc, libqt5-qtmultimedia Announcement ID: openSUSE-SU-2021:0909-1 Rating: important References: 1179930 1179931 1179932 1179933 1180102 1180232 1181598 1181599 1183353 1184110 1185128 Cross-References: CVE-2020-26418 CVE-2020-26419...

7.5CVSS7.5AI score0.04668EPSS
Exploits7References11
Prion
Prion
added 2021/04/23 9:15 p.m.25 views

Command injection

A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands with the affected system privileges. Affected versions of Avaya Session Border Controller for...

9CVSS9.1AI score0.02367EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/04/23 8:15 p.m.48 views

CVE-2020-7034

The CVE-2020-7034 entry describes a command injection vulnerability in Avaya Session Border Controller for Enterprise (SBCE). An authenticated, remote attacker could send specially crafted messages to execute arbitrary commands with the affected system’s privileges. Affected versions are SBCE 7.x...

9CVSS8.4AI score0.02367EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/10/22 4:15 p.m.29 views

CVE-2019-12148

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to an authentication bypass via an argument injection vulnerability involving special characters in the username field. Upon successful exploitation, a remote unauthenticated user can login into the device's admin...

9.8CVSS9.8AI score0.03502EPSS
Exploits3References2
Prion
Prion
added 2019/10/22 4:15 p.m.20 views

Design/Logic Flaw

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field. Upon successful exploitation, a remote unauthenticated user can create a local system user with sudo privileges, and use that user to login to th...

5CVSS9.4AI score0.02604EPSS
Exploits3References3Affected Software1
CVE
CVE
added 2019/10/22 3:47 p.m.81 views

CVE-2019-12147

CVE-2019-12147 affects Sangoma SBC 2.3.23-119 GA web interface. The issue is Argument Injection via special characters in the username field, enabling a remote unauthenticated user to create a local privileged user (sudo) and subsequently access the system via web or SSH to compromise the device....

9.8CVSS9.2AI score0.02604EPSS
Exploits3References3Affected Software1
Cvelist
Cvelist
added 2019/10/22 3:20 p.m.32 views

CVE-2019-12148

The Sangoma Session Border Controller SBC 2.3.23-119 GA web interface is vulnerable to an authentication bypass via an argument injection vulnerability involving special characters in the username field. Upon successful exploitation, a remote unauthenticated user can login into the device's admin...

9.8AI score0.03502EPSS
Exploits3References2
CVE
CVE
added 2019/10/22 3:20 p.m.85 views

CVE-2019-12148

The CVE-2019-12148 issue affects Sangoma SBC 2.3.23-119 GA web interface, where an authentication bypass is triggered by an argument-injection flaw in the username field. Exploitation allows a remote unauthenticated attacker to log into the device’s admin web portal without credentials, affecting...

9.8CVSS9.6AI score0.03502EPSS
Exploits3References2Affected Software1
0day.today
0day.today
added 2019/10/22 12:0 a.m.130 views

Sangoma SBC 2.3.23-119-GA Authentication Bypass Vulnerability

A remotely exploitable vulnerability exists in the 2.3.23-119-GA version of Sangoma SBC that would allow an unauthenticated user to bypass authentication and login as a non-existent user but with complete access to the dashboard including additional privileged user creation capabilities...

7.5CVSS0.7AI score0.03502EPSS
Exploits3
0day.today
0day.today
added 2019/10/22 12:0 a.m.156 views

Sangoma SBC 2.3.23-119-GA Unauthenticated User Creation Vulnerability

A remotely exploitable vulnerability exists in the 2.3.23-119-GA version of Sangoma SBC that would allow an unauthenticated user to create a privileged user on the system using the web application login interface. Description A remotely exploitable vulnerability exists in the 2.3.23-119-GA versio...

5CVSS9.1AI score0.02604EPSS
Exploits3
Packet Storm
Packet Storm
added 2019/10/18 12:0 a.m.296 views

Sangoma SBC 2.3.23-119-GA Unauthenticated User Creation

Introduction Description A remotely exploitable vulnerability exists in the 2.3.23-119-GA version of Sangoma SBC that would allow an unauthenticated user to create a privileged user on the system using the web application login interface. Vulnerability Type - Argument Injection or Modification...

0.2AI score0.02604EPSS
Exploits3
Packet Storm
Packet Storm
added 2019/10/18 12:0 a.m.251 views

Sangoma SBC 2.3.23-119-GA Authentication Bypass

Introduction Description A remotely exploitable vulnerability exists in the 2.3.23-119-GA version of Sangoma SBC that would allow an unauthenticated user to bypass authentication and login as a non-existen user but with complete access to the dashboard including additional privileged user creatio...

0.3AI score0.03502EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.8 views

Acromag XVME-6510 Single Board Computer Detection

Binary data 762423.prm...

7.3AI score
Exploits0
Rows per page
Query Builder