Lucene search
K

323 matches found

Cvelist
Cvelist
added 2019/07/09 8:28 p.m.18 views

CVE-2019-13277

TRENDnet TEW-827DRU with firmware up to and including 2.04B03 allows an unauthenticated attacker to execute setup wizard functionality, giving this attacker the ability to change configuration values, potentially leading to a denial of service. The request can be made on the local intranet or...

7.7AI score0.01526EPSS
Exploits1References1
CVE
CVE
added 2019/07/09 8:28 p.m.128 views

CVE-2019-13277

The CVE-2019-13277 entry affects TRENDnet TEW-827DRU devices with firmware up to 2.04B03. An unauthenticated attacker can trigger the setup wizard functionality, enabling changes to configuration values. This can potentially lead to a denial of service. The attack is possible from the local intra...

7.5CVSS7.6AI score0.01526EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/07/08 6:15 p.m.3 views

CVE-2019-2113

In setup wizard there is a bypass of some checks when wifi connection is skipped. This could lead to factory reset protection bypass with no additional privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-122597079...

5.5CVSS6.4AI score0.00134EPSS
Exploits0References1
NVD
NVD
added 2019/07/08 6:15 p.m.16 views

CVE-2019-2113

In setup wizard there is a bypass of some checks when wifi connection is skipped. This could lead to factory reset protection bypass with no additional privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-122597079...

5.5CVSS5.5AI score0.00134EPSS
Exploits0References1
Prion
Prion
added 2019/07/08 6:15 p.m.16 views

Design/Logic Flaw

In setup wizard there is a bypass of some checks when wifi connection is skipped. This could lead to factory reset protection bypass with no additional privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-122597079...

2.1CVSS5.5AI score0.00134EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/07/08 5:39 p.m.24 views

CVE-2019-2113

In setup wizard there is a bypass of some checks when wifi connection is skipped. This could lead to factory reset protection bypass with no additional privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android-9. Android ID: A-122597079...

5.5AI score0.00134EPSS
Exploits0References1
Prion
Prion
added 2019/04/19 8:29 p.m.19 views

Authentication flaw

In updateAssistMenuItems of Editor.java, there is a possible escape from the Setup Wizard due to a missing permission check. This could lead to local escalation of privilege and FRP bypass with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

4.6CVSS7.7AI score0.0015EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/04/19 8:29 p.m.4 views

CVE-2019-2026

In updateAssistMenuItems of Editor.java, there is a possible escape from the Setup Wizard due to a missing permission check. This could lead to local escalation of privilege and FRP bypass with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS5.9AI score
Exploits0References1
NVD
NVD
added 2019/04/19 8:29 p.m.22 views

CVE-2019-2026

In updateAssistMenuItems of Editor.java, there is a possible escape from the Setup Wizard due to a missing permission check. This could lead to local escalation of privilege and FRP bypass with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.8AI score0.0015EPSS
Exploits0References1
CVE
CVE
added 2019/04/19 7:15 p.m.49 views

CVE-2019-2026

CVE-2019-2026 affects Android 8.0 Framework. In Editor.java’s updateAssistMenuItems, a missing permission check could allow local escalation of privilege and FRP bypass with no user interaction. The Android 2019-04-01 bulletin lists CVE-2019-2026 as a Framework EoP (High) issue for 8.0, indicatin...

7.8CVSS7.7AI score0.0015EPSS
Exploits0References1Affected Software1
Citrix
Citrix
added 2018/10/17 12:0 a.m.8 views

Cannot connect to vCenter from PVS Console using stronger SCHANNEL Protocols, such as TLS 1.2

When running the XenDesktop Setup Wizard or the Streamed VM Wizard, and connecting to a vCenter Server that has been configured to only accept connections using TLS 1.1 or higher, the PVS Console could present an error stating that the Connection was closed. The error shown will have a text simil...

7.1AI score
Exploits0
OSV
OSV
added 2018/10/02 7:29 p.m.3 views

CVE-2018-9501

In the SetupWizard, there is a possible Factory Reset Protection bypass due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android-7.0 Android-7.1...

7.8CVSS5.9AI score0.00224EPSS
Exploits0References4
Citrix
Citrix
added 2018/07/13 12:0 a.m.7 views

XenDesktop Setup Wizard fails with error (UUID_INVALID)

When running the XenDesktop Setup Wizard XDSW you might receive the following error when selecting the PVS Accelerator Configuration. The error might also be shown when attempting to change the Accelerator Status of a Target Device or Enabling/Disabling the Accelerator setting on a Host Entry...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2018/06/26 12:0 a.m.30 views

Microsoft Windows: BitLocker-protected removable drives recovery (wizard)

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winrmbitlockerrecoverywizard.nasl 11363 2018-09-12 13:46:05Z emoss $ Check value for Choose how BitLocker-protected removable drives can be recovered: Omit recovery options from the BitLocker setup wizard Authors: Emanuel Mos...

7.3AI score
Exploits0
CNVD
CNVD
added 2018/04/27 12:0 a.m.2 views

Composr CMS Cross-Site Scripting Vulnerability

Composr CMS is an open source content management system CMS developed using HTML, CSS and WCAG technologies. A cross-site scripting vulnerability exists in Composr CMS version 10.0.13. A remote attacker can exploit this vulnerability by sending a page=admin-setupwizard&type=step3 request to...

4.8CVSS6.2AI score0.00796EPSS
Exploits1References1
NVD
NVD
added 2018/04/26 2:29 p.m.17 views

CVE-2018-6518

Composr CMS 10.0.13 has XSS via the sitename parameter in a page=admin-setupwizard&type=step3 request to /adminzone/index.php...

4.8CVSS4.9AI score0.00796EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/04/26 2:0 p.m.19 views

CVE-2018-6518

Composr CMS 10.0.13 has XSS via the sitename parameter in a page=admin-setupwizard&type=step3 request to /adminzone/index.php...

4.9AI score0.00796EPSS
Exploits1References1
Kitploit
Kitploit
added 2018/04/05 1:3 p.m.53 views

Security Onion - Linux Distro For IDS, NSM, And Log Management

Security Onion is a free and open source Linux distribution for intrusion detection, enterprise security monitoring, and log management. It includes Elasticsearch, Logstash, Kibana, Snort, Suricata, Bro, OSSEC, Sguil, Squert, NetworkMiner, and many other security tools. The easy-to-use Setup wiza...

7.3AI score
Exploits0References4
Citrix
Citrix
added 2018/03/12 12:0 a.m.6 views

XenDesktop Setup Wizard fails with error "The xsPvsSiteUuid Field Does not exist"

When running the XenDesktop Setup Wizard XDSW you encounter the following error. "The xsPvsSiteUuid Field Does not exist" At this point the XDSW fails and aborts the process...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2018/01/29 2:19 a.m.22 views

CVE-2017-1000503

A race condition during Jenkins 2.81 through 2.94 inclusive; 2.89.1 startup could result in the wrong order of execution of commands during initialization. This could in rare cases result in failure to initialize the setup wizard on the first startup. This resulted in multiple security-related...

8.8CVSS3.3AI score0.01167EPSS
Exploits0References1
Rows per page
Query Builder