Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2025/08/17 3:15 a.m.4 views

CVE-2025-9091

A security flaw has been discovered in Tenda AC20 16.03.08.12. Affected by this vulnerability is an unknown functionality of the file /etcro/shadow. The manipulation leads to hard-coded credentials. It is possible to launch the attack on the local host. The complexity of an attack is rather high...

7.8CVSS0.00026EPSS
Exploits1References7
CVE
CVEadded 2025/08/17 2:32 a.m.21 views

CVE-2025-9091

Summary: CVE-2025-9091 affects Tenda AC20, specifically the file /etc_ro/shadow. The root cause is hard-coded credentials in that file, enabling a local attack with high impact on confidentiality, integrity, and availability. Exploitation requires local access and is described as difficult, with ...

7.8CVSS3.7AI score0.00026EPSS
Exploits1References7Affected Software1
CNNVD
CNNVDadded 2025/07/14 12:0 a.m.1 views

LB-LINK BL-AC3600 安全漏洞

LB-LINK BL-AC3600 is a dual-band Gigabit wireless router from China Bilink LB-LINK that supports 2.4GHz and 5GHz bands for home and small office networks. A security vulnerability exists in LB-LINK BL-AC3600 version 1.0.22, which originates from hard-coded credentials in the file /etc/shadow...

8.5CVSS7.7AI score0.00083EPSS
Exploits1References5
OSV
OSVadded 2024/08/16 6:15 p.m.1 views

CVE-2024-42637

H3C R3010 v100R002L02 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root...

9.8CVSS5.8AI score0.00158EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2024/08/16 12:0 a.m.4 views

PT-2024-30087 · H3C · H3C R3010

Name of the Vulnerable Software and Affected Versions: H3C R3010 version v100R002L02 Description: A hardcoded password vulnerability was discovered in /etc/shadow, allowing attackers to log in as root. This issue affects the H3C R3010 device, potentially allowing unauthorized access...

9.8CVSS7.4AI score0.00158EPSS
Exploits1References7
securityvulns
securityvulnsadded 2000/04/27 12:0 a.m.31 views

fingerd

I am new on the list so i dont know if you knew that. On Irix 6.4 with all patches installed the fingerd seems to like to display the shadow file to all users. ln -s /etc/shadow /path/user/.plan finger [email protected] This feature was found by a student -Zanikolas Serafim- while he was...

1.9AI score
Exploits0
Packet Storm
Packet Stormadded 1999/08/17 12:0 a.m.29 views

pam_unix_passwd.so.txt

Date: Wed, 23 Dec 1998 13:12:45 +0100 From: Michal Zalewski Reply-To: Bugtraq List To: [email protected] Subject: Linux PAM up to 0.64-2 local root compromise As someone said, "Never make any mistaeks." Latest release of Linux Pluggable Authentication Modules pam-0.64-2, as well as previous...

7.4AI score
Exploits0
Rows per page
Query Builder