CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2020-30290

Malware in sbrugna...

8.5CVSS7.4AI score0.00462EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-8220

Malware in sbrugna...

10CVSS9.2AI score0.00398EPSS

Exploits1References3

RedhatCVE•added 2025/05/22 3:15 p.m.•6 views

CVE-2020-16259

Winston 1.5.4 devices have an SSH user account with access from bastion hosts. This is undocumented in device documents and is not announced to the user...

10CVSS7AI score0.00398EPSS

Exploits1

RedhatCVE•added 2025/02/05 2:13 p.m.•8 views

CVE-2020-11847

SSH authenticated user when access the PAM server can execute an OS command to gain the full system access using bash. This issue affects Privileged Access Manager before 3.7.0.1...

8.2CVSS7.2AI score0.00175EPSS

Exploits0References1

GithubExploit•added 2023/03/09 3:23 p.m.•73 views

Exploit for Race Condition in Openbsd Openssh

SSH-User-Enum-Python3-CVE-2018-15473 SSH User Enumerator in P...

5.3CVSS9.3AI score0.90356EPSS

Exploits23

CVE•added 2020/10/28 5:20 p.m.•36 views

CVE-2020-16259

Affected product: Winston 1.5.4 devices. Issue: an SSH user account is accessible from bastion hosts, described as undocumented and not announced to users. This root cause enables full compromises of confidentiality, integrity, and availability per CVSS 3.1/5.0? (from the CVE data: attacker could...

10CVSS9.3AI score0.00398EPSS

Exploits1References2Affected Software1

Kitploit•added 2020/09/06 8:30 p.m.•55 views

Autovpn - Create On Demand Disposable OpenVPN Endpoints On AWS

Script that allows the easy creation of OpenVPN endpoints in any AWS region. To create a VPN endpoint is done with a single command takes 3 minutes. It will create the proper security groups. It spins up a tagged ec2 instance and configures OpenVPN software. Once instance is configured an OpenVPN...

7.4AI score

Exploits0References1

Tenable Nessus•added 2019/12/20 12:0 a.m.•45 views

Amazon Linux AMI : rssh (ALAS-2019-1328)

Insufficient sanitation of environment variables passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulting in the execution of arbitrary shell commands. CVE-2019-3464 Insufficient sanitation of arguments...

9.8CVSS8.4AI score0.0564EPSS

Exploits5References4

NVD•added 2019/02/04 9:29 p.m.•17 views

CVE-2019-1000018

rssh version 2.3.4 contains a CWE-77: Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in allowscp permission that can result in Local command execution. This attack appear to be exploitable via An authorized SSH user with the allowscp permission...

7.8CVSS7.8AI score0.00211EPSS

Exploits5References13

Prion•added 2019/02/04 9:29 p.m.•18 views

Command injection

4.6CVSS7.7AI score0.00211EPSS

Exploits5References9Affected Software4

Cvelist•added 2019/02/04 9:0 p.m.•16 views

CVE-2019-1000018

8.7AI score0.00211EPSS

Exploits5References10

Debian CVE•added 2019/02/04 9:0 p.m.•22 views

CVE-2019-1000018

Removed by vendor...

7.8CVSS7.8AI score0.00211EPSS

Exploits5

AlpineLinux•added 2019/02/04 9:0 p.m.•26 views

CVE-2019-1000018

7.8CVSS8.9AI score0.00211EPSS

Exploits5

UbuntuCve•added 2019/02/04 12:0 a.m.•18 views

CVE-2019-1000018

7.8CVSS7.1AI score0.00211EPSS

Exploits5References5

OSV•added 2019/02/04 12:0 a.m.•0 views

UBUNTU-CVE-2019-1000018

7.8CVSS7.1AI score0.00211EPSS

Exploits5References6

Prion•added 2018/05/02 10:29 p.m.•20 views

Default configuration

A vulnerability in the assignment and management of default user accounts for Secure Shell SSH access to Cisco Aironet 1800, 2800, and 3800 Series Access Points that are running Cisco Mobility Express Software could allow an authenticated, remote attacker to gain elevated privileges on an affecte...

6CVSS7.8AI score0.01278EPSS

Exploits0References3Affected Software1

Tenable Nessus•added 2016/10/28 12:0 a.m.•71 views

Default Password 'meinsm' for 'Administrator' Account

The account 'Administrator' on the remote host has the default password 'meinsm'. A remote attacker can exploit this issue to gain administrative access to the affected system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "Administrator"; password = "meinsm";...

7.5CVSS8.2AI score0.37089EPSS

Exploits41References1

n0where•added 2016/08/06 1:23 p.m.•33 views

AWS OpenVPN Deployment Tool: AutoVPN

AWS OpenVPN Deployment Tool Dependencies: boto and paramiko python packages and aws .credentials file on system 1. Clone repo to system. 2. Execute autovpn with -C -k and -r options to deploy to AWS ./autovpn -C -r us-east-1 -k macbook 3. OpenVPN config files are downloaded to current working...

0.5AI score

Exploits0References2

Tenable Nessus•added 2008/10/15 12:0 a.m.•48 views

Default Password (testpass123) for 'root' Account

The account 'root' on the remote host has the password 'testpass123'. An attacker may leverage this to gain total control of the affected system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "root"; password = "testpass123"; include'deprecatednasllevel.inc'; include'compat.inc';...

7.5CVSS8.2AI score0.37089EPSS

Exploits41References1

Tenable Nessus•added 2008/04/11 12:0 a.m.•38 views

Default Password (dottie) for 'root' Account

The account 'root' has the password 'dottie'. An attacker may use this to gain further privileges on this system %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "root"; password = "dottie"; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid31800;...

10CVSS8.2AI score0.37089EPSS

Exploits41References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by