CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-1999-0552

Malware in sbrugna...

5CVSS6.4AI score0.00504EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 12:39 a.m.•7 views

CVE-2022-40843

The Tenda AC1200 V-W15Ev2 V15.11.0.101576 router is vulnerable to improper authorization / improper session management that allows the router login page to be bypassed. This leads to authenticated attackers having the ability to read the routers syslog.log file which contains the MD5 password of...

4.9CVSS6.7AI score0.40404EPSS

Exploits1References1

OSV•added 2023/07/11 3:15 a.m.•0 views

CVE-2023-36924

While using a specific function, SAP ERP Defense Forces and Public Security - versions 600, 603, 604, 605, 616, 617, 618, 802, 803, 804, 805, 806, 807, allows an authenticated attacker with admin privileges to write arbitrary data to the syslog file. On successful exploitation, an attacker could...

4.9CVSS5.9AI score0.00139EPSS

Exploits0References2

Cvelist•added 2023/07/11 2:57 a.m.•14 views

CVE-2023-36924 Log Injection vulnerability in SAP ERP Defense Forces and Public Security

4.9CVSS5.4AI score0.00139EPSS

Exploits0References2

CVE•added 2023/07/11 2:57 a.m.•34 views

CVE-2023-36924

CVE-2023-36924 affects SAP ERP Defense Forces and Public Security, versions 600–807. The root cause is improper handling of log output allowing an authenticated admin to write arbitrary data to the syslog file, potentially altering all syslog data and compromising application integrity. Affected ...

4.9CVSS5.1AI score0.00139EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/07/11 2:57 a.m.•13 views

CVE-2023-36924 Log Injection vulnerability in SAP ERP Defense Forces and Public Security

4.9CVSS6.8AI score0.00139EPSS

Exploits0References2

Positive Technologies•added 2023/07/10 12:0 a.m.•3 views

PT-2023-4139 · Sap · Sap Erp Defense Forces/Public Security

Name of the Vulnerable Software and Affected Versions: SAP ERP Defense Forces and Public Security versions 600 through 807 Description: The issue is related to improper handling of log output, which can be exploited by a remote attacker to overwrite arbitrary files. When using a specific function...

6.1CVSS5.1AI score0.00139EPSS

Exploits0References5

OSV•added 2021/07/25 10:15 p.m.•0 views

CVE-2021-37439

NCH FlexiServer v6.00 suffers from a syslog?file=/.. path traversal vulnerability...

6.5CVSS5.8AI score

Exploits0References2

Prion•added 2021/07/25 10:15 p.m.•14 views

Path traversal

NCH FlexiServer v6.00 suffers from a syslog?file=/.. path traversal vulnerability...

4CVSS6.5AI score0.00382EPSS

Exploits1References2Affected Software1

NVD•added 2019/06/20 3:15 a.m.•13 views

CVE-2019-1898

A vulnerability in the web-based management interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to access the syslog file on an affected device. The vulnerability is due to improper authorization of an HTTP request. An attacker could exploit this...

5.3CVSS5.2AI score0.78679EPSS

Exploits1References3

Prion•added 2019/06/20 3:15 a.m.•12 views

Authorization

5CVSS5.2AI score0.78679EPSS

Exploits1References3

CVE•added 2019/06/20 3:5 a.m.•241 views

CVE-2019-1898

CVE-2019-1898 affects Cisco RV110W, RV130W, and RV215W routers. The issue is an information-disclosure vulnerability in the web-based management interface where improper HTTP authorization allows an unauthenticated, remote attacker to access the syslog file, exposing sensitive data. Impact is par...

5.3CVSS5.1AI score0.78679EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2019/06/20 3:5 a.m.•12 views

CVE-2019-1898 Cisco RV110W, RV130W, and RV215W Routers Unauthenticated syslog File Access Vulnerability

5.3CVSS7AI score0.78679EPSS

Exploits1References3