Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-21759

Malware in sbrugna...

8.4CVSS7.6AI score0.00172EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-15728

Malware in sbrugna...

7.5CVSS7.6AI score0.01384EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/25 4:30 a.m.13 views

CVE-2024-8314 Improper session handling in B&R APROL

An Incorrect Implementation of Authentication Algorithm and Exposure of Data Element to Wrong Ses-sion vulnerability in the session handling used in B&R APROL 4.4-00P5 may allow an authenticated network attacker to take over a currently active user session without login credentials...

5.5CVSS0.0034EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/25 4:30 a.m.6 views

CVE-2024-8314 Improper session handling in B&R APROL

An Incorrect Implementation of Authentication Algorithm and Exposure of Data Element to Wrong Ses-sion vulnerability in the session handling used in B&R APROL 4.4-00P5 may allow an authenticated network attacker to take over a currently active user session without login credentials...

5.5CVSS7AI score0.0034EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/15 12:0 a.m.4 views

PT-2023-28808 · Broadcom · Broadcom Raid Controller

Name of the Vulnerable Software and Affected Versions: Broadcom RAID Controller affected versions not specified Description: The Broadcom RAID Controller web interface is vulnerable to improper session handling of managed servers on Gateway installation. No information is provided about the...

9.8CVSS9.3AI score0.00588EPSS
Exploits0References5
Metasploit
Metasploit
added 2023/06/14 7:50 p.m.296 views

Symmetricom SyncServer Unauthenticated Remote Command Execution

This module exploits an unauthenticated command injection vulnerability in /controller/ping.php. The S100 through S350 End of Life models should be vulnerable to unauthenticated exploitation due to a session handling vulnerability. Later models require authentication which is not provided in this...

9.8CVSS7.8AI score0.92472EPSS
Exploits3
Vulnrichment
Vulnrichment
added 2022/11/22 12:0 a.m.6 views

CVE-2022-36179

Fusiondirectory 1.3 suffers from Improper Session Handling...

9.5AI score0.01117EPSS
Exploits1References3
OSV
OSV
added 2022/05/02 3:48 a.m.5 views

GHSA-M8C5-5G3H-JJFG freeCap CAPTCHA extension for TYPO3 has vulnerability in the session handling feature

Unspecified vulnerability in the session handling feature in freeCap CAPTCHA srfreecap extension 1.2.0 and earlier for TYPO3 has unknown impact and attack vectors...

10CVSS6.8AI score0.01239EPSS
Exploits0References3
Lenovo
Lenovo
added 2019/09/24 11:45 p.m.15 views

ThinkAgile CP-SB (Storage Block) BMC Session Handling Vulnerability - US

Lenovo Security Advisory: LEN-26957 Potential Impact: Unauthorized access Severity: Medium Scope of Impact: Lenovo-specific CVE Identifier: CVE-2019-6161 Summary Description: An internal product security audit discovered a session handling vulnerability in the web interface of ThinkAgile CP-SB...

5CVSS0.7AI score0.01384EPSS
Exploits0
Prion
Prion
added 2015/06/02 2:59 p.m.20 views

Code injection

The Web interface in Sendio before 7.2.4 does not properly handle sessions, which allows remote authenticated users to obtain sensitive information from other users' sessions via a large number of requests...

4CVSS6AI score0.05462EPSS
Exploits5References5Affected Software1
Rows per page
Query Builder