Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2020-2968

Malware in sbrugna...

10CVSS9.2AI score0.00991EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/05/23 3:51 a.m.4 views

CVE-2023-33243

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

8.1CVSS7.1AI score0.13351EPSS
Exploits4References1
RedhatCVE
RedhatCVEadded 2025/05/22 4:6 p.m.4 views

CVE-2020-10515

STARFACE UCC Client before 6.7.1.204 on WIndows allows binary planting to execute code with System rights, aka usd-2020-0006...

10CVSS7.4AI score0.00991EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2023/06/15 8:15 p.m.1 views

CVE-2023-33243

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

8.1CVSS7.2AI score0.13351EPSS
Exploits4References3
OSV
OSVadded 2023/06/15 8:15 p.m.1 views

CVE-2023-33243

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

8.1CVSS5.8AI score0.13351EPSS
Exploits4References2
Prion
Prionadded 2023/06/15 8:15 p.m.13 views

Design/Logic Flaw

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

5.1CVSS8.2AI score0.13351EPSS
Exploits4References2Affected Software1
CVE
CVEadded 2023/06/15 12:0 a.m.61 views

CVE-2023-33243

Summary: CVE-2023-33243 affects STARFACE web interface and REST API, where authentication is possible using the SHA-512 password hash instead of the cleartext password. The issue originates from allowing hash-based authentication rather than requiring the actual password, enabling potential accou...

8.1CVSS8.2AI score0.13351EPSS
Exploits4References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/06/15 12:0 a.m.18 views

CVE-2023-33243

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

7.1AI score0.13351EPSS
Exploits4References2
CNNVD
CNNVDadded 2023/06/04 12:0 a.m.18 views

STARFACE 安全漏洞

STARFACE is an IP telephony system for digital communications from STARFACE, Inc. A security vulnerability exists in STARFACE version 7.3.0.10 and prior versions that originates from allowing authentication using password hashes...

8.1CVSS7.7AI score0.13351EPSS
Exploits4References4
Exploit DB
Exploit DBadded 2023/06/04 12:0 a.m.326 views

STARFACE 7.3.0.10 - Authentication with Password Hash Possible

Exploit Title: STARFACE 7.3.0.10 - Authentication with Password Hash Possible Affected Versions: 7.3.0.10 and earlier versions Fixed Versions: - Vulnerability Type: Broken Authentication Security Risk: low Vendor URL: https://www.starface.de Vendor Status: notified Advisory URL:...

8.1CVSS8.2AI score0.13351EPSS
Exploits4
0day.today
0day.todayadded 2023/06/01 12:0 a.m.344 views

STARFACE 7.3.0.10 Broken Authentication Exploit

RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext passwords in an application's database generally has become be...

8.1CVSS7.3AI score0.13351EPSS
Exploits4
Packet Storm
Packet Stormadded 2023/06/01 12:0 a.m.374 views

STARFACE 7.3.0.10 Broken Authentication

Advisory: STARFACE: Authentication with Password Hash Possible RedTeam Pentesting discovered that the web interface of STARFACE as well as its REST API allows authentication using the SHA512 hash of the password instead of the cleartext password. While storing password hashes instead of cleartext...

7.1AI score0.13351EPSS
Exploits4
Positive Technologies
Positive Technologiesadded 2023/06/01 12:0 a.m.3 views

PT-2023-24239 · Starface · Starface

Name of the Vulnerable Software and Affected Versions: STARFACE affected versions not specified Description: The web interface and REST API of STARFACE allow authentication using the SHA512 hash of the password instead of the cleartext password. This practice renders the protection of storing...

8.1CVSS7.4AI score0.13351EPSS
Exploits4References7
CNVD
CNVDadded 2020/04/03 12:0 a.m.1 views

STARFACE UCC Client Code Issue Vulnerability

STARFACE UCC Client is a desktop client application for telephone systems from the German company STARFACE. A security vulnerability exists in STARFACE UCC Client versions prior to 6.7.1.204 WIndows. An attacker can exploit the vulnerability to execute code with System privileges...

10CVSS7.3AI score0.00991EPSS
Exploits0References1
OSV
OSVadded 2020/04/02 10:15 p.m.1 views

CVE-2020-10515

STARFACE UCC Client before 6.7.1.204 on WIndows allows binary planting to execute code with System rights, aka usd-2020-0006...

9.8CVSS7.5AI score
Exploits0References3
NVD
NVDadded 2020/04/02 10:15 p.m.11 views

CVE-2020-10515

STARFACE UCC Client before 6.7.1.204 on WIndows allows binary planting to execute code with System rights, aka usd-2020-0006...

10CVSS9.6AI score0.00991EPSS
Exploits0References3
Prion
Prionadded 2020/04/02 10:15 p.m.9 views

Code injection

STARFACE UCC Client before 6.7.1.204 on WIndows allows binary planting to execute code with System rights, aka usd-2020-0006...

10CVSS9.5AI score0.00991EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2020/04/02 9:30 p.m.60 views

CVE-2020-10515

STARFACE UCC Client for Windows is vulnerable before 6.7.1.204 to binary planting that allows code execution with SYSTEM privileges. Affected product: STARFACE UCC Client (Windows). Root cause: binary planting in the installer/loader path as described in CVE-2020-10515. Impact: remote code execut...

10CVSS9.5AI score0.00991EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2020/04/02 9:30 p.m.12 views

CVE-2020-10515

STARFACE UCC Client before 6.7.1.204 on WIndows allows binary planting to execute code with System rights, aka usd-2020-0006...

9.6AI score0.00991EPSS
Exploits0References3
Rows per page
Query Builder