Lucene search
+L

15 matches found

CNNVD
CNNVD
added 2026/03/05 12:0 a.m.5 views

Net::NSCA::Client 安全漏洞

Net::NSCA::Client is a Perl library developed by DOUGDUDE’s individual developer. Versions of Net::NSCA::Client 0.009002 and earlier contain security vulnerabilities, which stem from the use of insecure random number generators. This could lead to the prediction of session IDs...

9.1CVSS5.8AI score0.00409EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-12919

Malware in sbrugna...

7.5CVSS7.6AI score0.00814EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-21693

Malicious code in bioql PyPI...

7.3CVSS6.3AI score0.00329EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2023-40432

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00495EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-1773

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to...

8.1CVSS6.3AI score0.01503EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:1 a.m.7 views

CVE-2023-36483

Authorization bypass can be achieved by session ID prediction in MASmobile Classic Android version 1.16.18 and earlier and MASmobile Classic iOS version 1.7.24 and earlier which allows remote attackers to retrieve sensitive data including customer data, security system status, and event history...

6.5CVSS5.5AI score0.00495EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/03/16 5:15 a.m.6 views

CVE-2023-36483

Authorization bypass can be achieved by session ID prediction in MASmobile Classic Android version 1.16.18 and earlier and MASmobile Classic iOS version 1.7.24 and earlier which allows remote attackers to retrieve sensitive data including customer data, security system status, and event history...

6.5CVSS5.8AI score0.00495EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2024/03/16 5:15 a.m.17 views

CVE-2023-36483

Authorization bypass can be achieved by session ID prediction in MASmobile Classic Android version 1.16.18 and earlier and MASmobile Classic iOS version 1.7.24 and earlier which allows remote attackers to retrieve sensitive data including customer data, security system status, and event history...

6.5CVSS6.3AI score0.00495EPSS
Exploits0References1
CVE
CVE
added 2024/03/16 12:0 a.m.87 views

CVE-2023-36483

CVE-2023-36483 involves an authorization bypass in Carrier MASmobile Classic, exploitable via session ID prediction. Affected products are MASmobile Classic for Android (versions 1.16.18 and earlier) and MASmobile Classic for iOS (versions 1.7.24 and earlier). The root cause is an authorization b...

6.5CVSS5.5AI score0.00495EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2024/03/15 12:0 a.m.6 views

PT-2024-12557 · Unknown · Masmobile Classic Ios +1

Name of the Vulnerable Software and Affected Versions: MASmobile Classic Android versions 1.16.18 and earlier MASmobile Classic iOS versions 1.7.24 and earlier Description: An authorization bypass can be achieved by session ID prediction, allowing remote attackers to retrieve sensitive data...

6.5CVSS7.2AI score0.00495EPSS
Exploits0References6
CVE
CVE
added 2021/08/04 1:20 p.m.81 views

CVE-2021-26098

Concrete details from the connected documents describe CVE-2021-26098 as affecting Fortinet FortiSandbox’s RPC API prior to version 4.0.0. The root cause is a small space of random values used for session handling, which could let an attacker who has only a few pieces of state information about t...

7.5CVSS7.3AI score0.00814EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/03/27 1:15 p.m.19 views

CVE-2020-1773

An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to predict other users session IDs, password reset tokens and automatically generated passwords. This issue affects OTRS Community Edition:...

8.1CVSS6.7AI score
Exploits0References5
Cvelist
Cvelist
added 2013/12/17 2:0 a.m.29 views

CVE-2013-6925

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote attackers to hijack web sessions by predicting a session id value...

6.6AI score0.01893EPSS
Exploits0References2
securityvulns
securityvulns
added 2013/02/24 12:0 a.m.82 views

Alt-N MDaemon's WorldClient Predictable Session ID Vulnerability

====================================================================== Alt-N MDaemon's WorldClient Predictable Session ID Vulnerability ====================================================================== Software: Alt-N MDaemon v13.0.3 and prior versions Vendor: http://www.altn.com/ Vuln Type:...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2013/02/21 12:0 a.m.48 views

Alt-N MDaemon WorldClient 13.0.3 - Multiple Vulnerabilities

====================================================================== Alt-N MDaemon's WorldClient Predictable Session ID Vulnerability ====================================================================== Software: Alt-N MDaemon v13.0.3 and prior versions Vendor: http://www.altn.com/ Vuln Type:...

7AI score
Exploits0
Rows per page
Query Builder