Lucene search
K

14907 matches found

OpenVAS
OpenVAS
added 2021/03/29 12:0 a.m.28 views

rpcbind Detection (Linux/Unix SSH Login)

SSH login-based detection of rpcbind. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it...

7.3AI score
Exploits0References1
Cvelist
Cvelist
added 2021/03/26 5:9 p.m.11 views

CVE-2020-28695

Askey Fiber Router RTF3505VW-N1 BRSVg000R3505VWN1001s327 devices allow Remote Code Execution and retrieval of admin credentials to log into the Dashboard or login via SSH, leading to code execution as root...

9.2AI score0.02301EPSS
Exploits2References1
CVE
CVE
added 2021/03/26 5:9 p.m.82 views

CVE-2020-28695

CVE-2020-28695 affects Askey Fiber Router RTF3505VW-N1, and related models, enabling remote code execution and extraction of admin credentials to log into the Dashboard or SSH as root. The CVE entry describes an unauthenticated path resulting in full device compromise (CVE-2020-28695). Connected ...

8.8CVSS9.1AI score0.02301EPSS
Exploits2References1Affected Software1
OpenVAS
OpenVAS
added 2021/03/26 12:0 a.m.38 views

VMware vCenter Server Detection Consolidation

Consolidation of VMware vCenter Server detections. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc"; ifdescription...

7.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2021/03/26 12:0 a.m.29 views

Dnsmasq Detection (Linux/Unix SSH Login)

SSH login-based detection of Dnsmasq. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it...

0.4AI score
Exploits0
OpenVAS
OpenVAS
added 2021/03/26 12:0 a.m.13 views

Dnsmasq Detection Consolidation

Consolidation of Dnsmasq detections. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it...

7.3AI score
Exploits0References1
NVD
NVD
added 2021/03/25 8:15 p.m.11 views

CVE-2021-27450

SSH server configuration file does not implement some best practices. This could lead to a weakening of the SSH protocol strength, which could lead to additional misconfiguration or be leveraged as part of a larger attack on the MU320E all firmware versions prior to v04A00.1...

7.8CVSS0.00196EPSS
Exploits0References1
OSV
OSV
added 2021/03/25 8:15 p.m.3 views

CVE-2021-27450

SSH server configuration file does not implement some best practices. This could lead to a weakening of the SSH protocol strength, which could lead to additional misconfiguration or be leveraged as part of a larger attack on the MU320E all firmware versions prior to v04A00.1...

7.8CVSS5.8AI score0.00196EPSS
Exploits0References1
Prion
Prion
added 2021/03/25 8:15 p.m.22 views

Design/Logic Flaw

SSH server configuration file does not implement some best practices. This could lead to a weakening of the SSH protocol strength, which could lead to additional misconfiguration or be leveraged as part of a larger attack on the MU320E all firmware versions prior to v04A00.1...

4.6CVSS7.5AI score0.00196EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/03/25 7:30 p.m.10 views

CVE-2021-27450

SSH server configuration file does not implement some best practices. This could lead to a weakening of the SSH protocol strength, which could lead to additional misconfiguration or be leveraged as part of a larger attack on the MU320E all firmware versions prior to v04A00.1...

7.7AI score0.00196EPSS
Exploits0References1
CVE
CVE
added 2021/03/25 7:30 p.m.78 views

CVE-2021-27450

GE MU320E firmware prior to v04A00.1 contains an SSH server configuration weakness (inadequate encryption strength) due to not following best practices in the SSH server config. This could contribute to misconfigurations or enable broader attacks on the device. Affected firmware lines up to v04A0...

7.8CVSS7.5AI score0.00196EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/03/25 12:0 a.m.57 views

SaltStack < 3002.5 Multiple Vulnerabilities

According to its self-reported version number, the instance of SaltStack hosted on the remote server is affected by multiple vulnerabilities: - The Salt-API’s SSH client is vulnerable to a shell injection by including ProxyCommand in an argument, or via sshoptions provided in an API request...

9.8CVSS7.2AI score0.92312EPSS
Exploits8References11
Palo Alto Networks
Palo Alto Networks
added 2021/03/24 8:50 p.m.233 views

PAN-OS: Informational: Impact of the OpenSSH vulnerability CVE-2021-28041

The Palo Alto Networks Product Security Assurance team has evaluated the OpenSSH software CVE-2021-28041 vulnerability. PAN-OS software does not utilize the ssh-agent component or provide access to the agent socket related to this vulnerability. There are no scenarios that enable successful...

7.1CVSS2.6AI score0.03422EPSS
Exploits1References2
CNVD
CNVD
added 2021/03/24 12:0 a.m.8 views

GE MU320E Insufficient Encryption Strength Vulnerability

The MU320E is a process interface unit from GE with integrated analog and digital merge interfaces. An insufficient cryptographic strength vulnerability exists in the firmware prior to GE MU320E 04A00.1. The vulnerability stems from some aspects of the SSH server configuration file not being...

7.8CVSS6.7AI score0.00196EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/03/24 12:0 a.m.58 views

Proxmox Virtual Environment (VE, PVE) Detection Consolidation

Consolidation of Proxmox Virtual Environment VE, PVE detections. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc";...

5.4AI score
Exploits0References1
The Hacker News
The Hacker News
added 2021/03/23 11:24 a.m.223 views

Critical Flaws Affecting GE's Universal Relay Pose Threat to Electric Utilities

The U.S. Cybersecurity and Infrastructure Security Agency CISA has warned of critical security shortcomings in GE's Universal Relay UR family of power management devices. "Successful exploitation of these vulnerabilities could allow an attacker to access sensitive information, reboot the UR, gain...

9.8CVSS1.7AI score0.01163EPSS
Exploits0
CNNVD
CNNVD
added 2021/03/23 12:0 a.m.4 views

Grid Solutions GE MU320E 加密问题漏洞

The MU320E is a process interface unit from GE with integrated analog and digital merge interfaces. An insufficient cryptographic strength vulnerability exists in the firmware prior to GE MU320E 04A00.1. The vulnerability stems from some aspects of the SSH server configuration file not being...

7.8CVSS5.6AI score0.00196EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/03/20 8:53 p.m.36 views

CVE-2017-1000117

A shell command injection flaw related to the handling of "ssh" URLs has been discovered in Git. An attacker could use this flaw to execute shell commands with the privileges of the user running the Git client, for example, when performing a "clone" action on a malicious repository or a legitimat...

8.8CVSS1.3AI score0.77823EPSS
Exploits9References2
Fedora
Fedora
added 2021/03/20 12:20 a.m.24 views

[SECURITY] Fedora 34 Update: ksshaskpass-5.21.3-1.fc34

A ssh-add helper that uses kwallet and kpassworddialog...

7.5CVSS1.5AI score0.01563EPSS
Exploits0
Packet Storm
Packet Storm
added 2021/03/19 12:0 a.m.210 views

KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Hard-Coded Credentails / Shell Access

KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 Hard-coded Credentials Shell Access Vendor: KZ Broadband Technologies, Ltd. | Jaton Technology, Ltd. Product web page: http://www.kzbtech.com | http://www.jatontec.com | https://www.neotel.mk http://www.jatontec.com/products/show.php?itemid=258...

7.4AI score
Exploits0
Rows per page
Query Builder