Lucene search
+L

477 matches found

Lenovo
Lenovo
added 2020/06/04 4:24 p.m.49 views

Intel SSD Advisory - Lenovo Support US

Lenovo Security Advisory: LEN-30040 Potential Impact: Information disclosure Severity: High Scope of Impact: Industry-wide CVE Identifier: CVE-2020-0527 Summary Description: Intel reported a potential security vulnerability in Intel Solid State Drive SSD products that may allow information...

2.1CVSS2.1AI score0.00331EPSS
Exploits0
Lenovo
Lenovo
added 2020/06/04 4:24 p.m.18 views

Intel SSD Advisory - Lenovo Support US

No description provided...

4.4CVSS4.6AI score0.00331EPSS
Exploits0
0day.today
0day.today
added 2020/05/26 12:0 a.m.111 views

Synology DiskStation Manager - smart.cgi Remote Command Execution Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule \d+&minor=?\d+&build=?\d+ &junior=\d+&unique=synology\w+?^&+/x.freeze def initializeinfo = super updateinfo info, 'Name' = 'Synology DiskStation...

8.8CVSS0.2AI score0.72453EPSS
Exploits5
OSV
OSV
added 2020/02/19 5:15 p.m.3 views

CVE-2020-8959

Western Digital WesternDigitalSSDDashboardSetup.exe before 3.0.2.0 allows DLL Hijacking...

7.8CVSS5.8AI score0.00445EPSS
Exploits0References2
CVE
CVE
added 2020/02/19 4:12 p.m.48 views

CVE-2020-8959

CVE-2020-8959 affects Western Digital WesternDigitalSSDDashboardSetup.exe prior to version 3.0.2.0 and is described as allowing DLL hijacking. The vulnerability arises from the installer’s handling of DLL loading, with impacts stated as high for confidentiality, integrity, and availability, and a...

7.8CVSS7.6AI score0.00445EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2019/09/30 7:15 p.m.22 views

CVE-2019-13467

Description: Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources from the Dashboard web service. This vulnerability may allow an attacker to substitute...

5.9CVSS5.7AI score0.01521EPSS
Exploits0References2
Prion
Prion
added 2019/09/30 7:15 p.m.21 views

Design/Logic Flaw

Description: Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources from the Dashboard web service. This vulnerability may allow an attacker to substitute...

4.3CVSS5.8AI score0.01521EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/09/30 6:30 p.m.71 views

CVE-2019-13467

CVE-2019-13467 affects Western Digital SSD Dashboard and SanDisk SSD Dashboard prior to 2.5.1.0. The issue enables potential man-in-the-middle attacks when the dashboard web service resources are downloaded, allowing an attacker to substitute downloaded resources with arbitrary files. The connect...

5.9CVSS5.7AI score0.01521EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2019/09/30 6:30 p.m.20 views

CVE-2019-13467

Description: Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 applications are potentially vulnerable to man-in-the-middle attacks when the applications download resources from the Dashboard web service. This vulnerability may allow an attacker to substitute...

5.7AI score0.01521EPSS
Exploits0References2
OSV
OSV
added 2019/09/30 6:15 p.m.5 views

CVE-2019-13466

Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 have Incorrect Access Control. The “generate reports” archive is protected with a hard-coded password. An application update that addresses the protection of archive encryption is available...

7.5CVSS7.1AI score0.00661EPSS
Exploits0References2
Prion
Prion
added 2019/09/30 6:15 p.m.19 views

Hardcoded credentials

Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 have Incorrect Access Control. The “generate reports” archive is protected with a hard-coded password. An application update that addresses the protection of archive encryption is available...

5CVSS7.6AI score0.00661EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/09/30 5:52 p.m.76 views

CVE-2019-13466

Concretely affected: Western Digital SSD Dashboard and SanDisk SSD Dashboard prior to version 2.5.1.0. Vulnerability: Incorrect access control where the generate reports archive is protected with a hard-coded password. Root cause: insufficient access restrictions for archive generation. Impact: p...

7.5CVSS7.5AI score0.00661EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2019/09/30 5:52 p.m.30 views

CVE-2019-13466

Western Digital SSD Dashboard before 2.5.1.0 and SanDisk SSD Dashboard before 2.5.1.0 have Incorrect Access Control. The “generate reports” archive is protected with a hard-coded password. An application update that addresses the protection of archive encryption is available...

7.6AI score0.00661EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/09/11 12:0 a.m.2 views

PT-2019-14599

Name of the Vulnerable Software and Affected Versions OpenCV version 4.1.1 Description The issue is related to an out-of-bounds read in the hal baseline::v load function located in core/hal/intrin sse.hpp, which is called from computeSSDMeanNorm in modules/video/src/dis flow.cpp. Recommendations...

5.3CVSS6.1AI score0.01662EPSS
Exploits0References20
Lenovo
Lenovo
added 2019/07/15 7:34 p.m.97 views

Intel SSD DC S4500/S4600 Series Vulnerability - US

Lenovo Security Advisory: LEN-28116 Potential Impact: Privilege escalation Severity: Medium Scope of Impact: Industry-wide CVE Identifier: CVE-2018-18095 Summary Description: Intel has reported a potential security vulnerability in Intel Solid State Drives SSD for Data Centers DC S4500/S4600 Seri...

4.6CVSS3.3AI score0.00515EPSS
Exploits0
Lenovo
Lenovo
added 2019/07/15 7:34 p.m.23 views

Intel SSD DC S4500/S4600 Series Vulnerability - Lenovo Support US

No description provided...

6.8CVSS6.5AI score0.00515EPSS
Exploits0
NVD
NVD
added 2019/07/11 9:15 p.m.15 views

CVE-2018-18095

Improper authentication in firmware for IntelR SSD DC S4500 Series and IntelR SSD DC S4600 Series before SCV10150 may allow an unprivileged user to potentially enable escalation of privilege via physical access...

6.8CVSS6.9AI score0.00515EPSS
Exploits0References5
Prion
Prion
added 2019/07/11 9:15 p.m.25 views

Authentication flaw

Improper authentication in firmware for IntelR SSD DC S4500 Series and IntelR SSD DC S4600 Series before SCV10150 may allow an unprivileged user to potentially enable escalation of privilege via physical access...

4.6CVSS6.8AI score0.00515EPSS
Exploits0References5Affected Software2
CVE
CVE
added 2019/07/11 8:31 p.m.233 views

CVE-2018-18095

CVE-2018-18095 relates to Intel SSD DC S4500/S4600 Series firmware prior to SCV10150, with improper authentication that could let an unprivileged user escalate privileges via physical access. Connected sources (Red Hat, CNVD, CNVD/Lenovo pages, and Lenovo security advisory) corroborate the vulner...

6.8CVSS6.8AI score0.00515EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2019/07/11 8:31 p.m.19 views

CVE-2018-18095

Improper authentication in firmware for IntelR SSD DC S4500 Series and IntelR SSD DC S4600 Series before SCV10150 may allow an unprivileged user to potentially enable escalation of privilege via physical access...

6.9AI score0.00515EPSS
Exploits0References5
Rows per page
Query Builder