14899 matches found
CVE-2021-44512
World-writable permissions on the /tmp/tmate/sessions directory in tmate-ssh-server 2.3.0 allow a local attacker to compromise the integrity of session handling, or obtain the read-write session ID from a read-only session symlink in this directory...
CVE-2021-44513
Insecure creation of temporary directories in tmate-ssh-server 2.3.0 allows a local attacker to compromise the integrity of session handling...
UBUNTU-CVE-2021-44513
Insecure creation of temporary directories in tmate-ssh-server 2.3.0 allows a local attacker to compromise the integrity of session handling...
CVE-2021-44513
CVE-2021-44513 affects tmate-ssh-server 2.3.0, where insecure creation of temporary directories can allow a local attacker to compromise the integrity of session handling. The available documents confirm a local-attack vector and session integrity impact, with no explicit exploitation details or ...
CVE-2021-44513
Insecure creation of temporary directories in tmate-ssh-server 2.3.0 allows a local attacker to compromise the integrity of session handling...
CVE-2021-44513
Insecure creation of temporary directories in tmate-ssh-server 2.3.0 allows a local attacker to compromise the integrity of session handling...
CVE-2021-44512
World-writable permissions on the /tmp/tmate/sessions directory in tmate-ssh-server 2.3.0 allow a local attacker to compromise the integrity of session handling, or obtain the read-write session ID from a read-only session symlink in this directory...
CVE-2021-44512
CVE-2021-44512 affects tmate-ssh-server 2.3.0, where world-writable permissions on the /tmp/tmate/sessions directory enable a local attacker to compromise session handling integrity and potentially obtain the read-write session ID from a read-only session symlink. The primary impact described is ...
SUSE: Security Advisory (SUSE-SU-2021:3951-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for remmina (FEDORA-2021-5d227916bc)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for remmina (FEDORA-2021-ac23d9e47f)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-40334
Missing Handler vulnerability in the proprietary management protocol port TCP 5558 of Hitachi Energy FOX61x, XCM20 allows an attacker that exploits the vulnerability by activating SSH on port TCP 5558 to cause disruption to the NMS and NE communication. This issue affects: Hitachi Energy FOX61x...
Improper access control
Missing Handler vulnerability in the proprietary management protocol port TCP 5558 of Hitachi Energy FOX61x, XCM20 allows an attacker that exploits the vulnerability by activating SSH on port TCP 5558 to cause disruption to the NMS and NE communication. This issue affects: Hitachi Energy FOX61x...
CVE-2021-40334
The CVE-2021-40334 entry describes a Missing Handler vulnerability in the proprietary management protocol on TCP port 5558 for Hitachi Energy FOX61x and XCM20 (pre-R15A). The root cause is the handling of SSH activation on port 5558, which can disrupt NMS and NE communications. Affected products:...
CVE-2021-40334 SSH activation problem in the proprietary management protocol (port TCP 5558)
Missing Handler vulnerability in the proprietary management protocol port TCP 5558 of Hitachi Energy FOX61x, XCM20 allows an attacker that exploits the vulnerability by activating SSH on port TCP 5558 to cause disruption to the NMS and NE communication. This issue affects: Hitachi Energy FOX61x...
Victure WR1200 Trust Management Issue Vulnerability (CNVD-2021-95232)
Victure WR1200 is a router. Victure WR1200 1.0.3 and prior versions are vulnerable to trust management issues, which can be exploited by attackers to gain control of the device via SSH...
CVE-2021-43284
An issue was discovered on Victure WR1200 devices through 1.0.3. The root SSH password never gets updated from its default value of admin. This enables an attacker to gain control of the device through SSH regardless of whether the admin password was changed on the web interface...
Design/Logic Flaw
An issue was discovered on Victure WR1200 devices through 1.0.3. The root SSH password never gets updated from its default value of admin. This enables an attacker to gain control of the device through SSH regardless of whether the admin password was changed on the web interface...
CVE-2021-43284
An issue was discovered on Victure WR1200 devices through 1.0.3. The root SSH password never gets updated from its default value of admin. This enables an attacker to gain control of the device through SSH regardless of whether the admin password was changed on the web interface...
CVE-2021-43284
CVE-2021-43284 affects Victure WR1200 devices (version 1.0.3 and earlier). The root SSH password remains the default value, “admin,” allowing an attacker to gain full control of the device via SSH regardless of whether the admin password was changed in the web interface. The connected records con...