Lucene search
+L

152 matches found

Packet Storm
Packet Storm
added 2024/08/23 12:0 a.m.263 views

DiCal-RED 4009 Missing Authentication

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-035 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Versions: Unknown Tested Versions: 4009 Vulnerability Type: Missing Authentication for Critical Function CWE-306 Risk Level: High Solution Status: Open...

9.8CVSS7.1AI score0.00977EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/08/23 12:0 a.m.214 views

DiCal-RED 4009 Missing Authentication

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-036 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Versions: Unknown Tested Versions: 4009 Vulnerability Type: Missing Authentication for Critical Function CWE-306 Risk Level: High Solution Status: Open...

7.6CVSS7.1AI score0.0061EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/08/23 12:0 a.m.222 views

DiCal-RED 4009 Cryptography Failure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-038 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Versions: Unknown Tested Versions: 4009 Vulnerability Type: Use of Password Hash Instead of Password for Authentication CWE-836 Risk Level: Medium Solution...

9.4CVSS7.1AI score0.0088EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/08/23 12:0 a.m.411 views

DiCal-RED 4009 Weak Hashing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-037 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Versions: Unknown Tested Versions: 4009 Vulnerability Type: Use of Password Hash With Insufficient Computational Effort CWE-916 Risk Level: Medium Solution...

6.8CVSS7.1AI score0.00292EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/08/23 12:0 a.m.259 views

DiCal-RED 4009 Log Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-040 Product: DiCal-RED Manufacturer: Swissphone Wireless AG Affected Versions: Unknown Tested Versions: 4009 Vulnerability Type: Improper Authentication CWE-287 Risk Level: High Solution Status: Open Manufacturer Notification:...

7.1AI score0.00514EPSS
Exploits1
Packet Storm
Packet Storm
added 2024/08/19 12:0 a.m.339 views

Ewon Cosy+ Hardcoded Key

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-032 Product: Ewon Cosy+ Manufacturer: HMS Industrial Networks AB Affected Versions: Firmware Versions: 21.2s10 and 22.1s3 Tested Versions: Firmware Version: 21.2s7 Vulnerability Type: Use of Hard-coded Cryptographic Key CWE-32...

7.1AI score0.00715EPSS
Exploits6
Packet Storm
Packet Storm
added 2024/08/19 12:0 a.m.505 views

Ewon Cosy+ Password Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-017 Product: Ewon Cosy+ Manufacturer: HMS Industrial Networks AB Affected Versions: Firmware Versions: 21.2s10 and 22.1s3 Tested Versions: Firmware Version: 21.2s7 Vulnerability Type: Cleartext Storage of Sensitive Information...

8.5CVSS7.4AI score0.03249EPSS
Exploits7
0day.today
0day.today
added 2023/11/28 12:0 a.m.365 views

SmartNode SN200 3.21.2-23021 OS Command Injection Vulnerability

Product: SmartNode SN200 Analog Telephone Adapter ATA & VoIP Gateway Manufacturer: Patton LLC Affected Versions: = 3.21.2-23021 Tested Versions: 2.21.1-22041, 3.21.2-23021, 3.22.0-23083 Vulnerability Type: OS Command Injection CWE-78 Vulnerability Type: Improper Access Control CWE-284 Risk Level:...

9.8CVSS9.7AI score0.64113EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/01/27 12:0 a.m.426 views

Razer Synapse 3.7.0731.072516 Local Privilege Escalation

Advisory ID: SYSS-2022-047 Product: Razer Synapse Manufacturer: Razer Inc. Affected Versions: Versions before 3.7.0830.081906 Tested Versions: 3.7.0731.072516 Vulnerability Type: Improper Certificate Validation CWE-295 Risk Level: High Solution Status: Open Manufacturer Notification: 2022-08-02...

7.3CVSS0.4AI score0.00889EPSS
Exploits6
Packet Storm
Packet Storm
added 2022/06/20 12:0 a.m.325 views

Lepin EP-KP001 KP001_V19 Authentication Bypass

Advisory ID: SYSS-2022-024 Product: EP-KP001 Manufacturer: Lepin Affected Versions: KP001V19 Tested Versions: KP001V19 Vulnerability Type: Violation of Secure Design Principles CWE-657 Risk Level: High Solution Status: Open Manufacturer Notification: 2022-04-12 Solution Date: - Public Disclosure:...

4.6CVSS0.2AI score0.00506EPSS
Exploits3
Packet Storm
Packet Storm
added 2022/03/28 12:0 a.m.315 views

Razer Synapse 3.6.x DLL Hijacking

Advisory ID: SYSS-2021-058 Product: Razer Synapse Manufacturer: Razer Inc. Affected Versions: Versions prior to 3.7.0228.022817 Tested Versions: 3.6.0920.091710, 3.6.1010.101113, 3.6.1018.101823, 3.6.1130.111217, 3.6.1201.111814, 3.7.0131.011810 Vulnerability Type: Improper Privilege Management...

0.3AI score0.00889EPSS
Exploits5
0day.today
0day.today
added 2021/12/13 12:0 a.m.200 views

Oracle Database Weak NNE Integrity Key Derivation Vulnerability

NNE's integrity protection mechanism deliberately weakens the key used for computing per-packet message authentication codes MACs. Oracle Database versions 19c, 12.2.0.1, and 12.1.0.2 are affected. Product: Database Manufacturer: Oracle Affected Versions: 12.1.0.2, 12.2.0.1, 19c Tested Versions:...

8.3CVSS8.4AI score0.025EPSS
Exploits5
0day.today
0day.today
added 2021/11/06 12:0 a.m.205 views

PHP Event Calendar Lite Edition SQL Injection Vulnerability

Product: PHP Event Calendar Manufacturer: Kayson Group Ltd. Affected Versions: PHP Event Calendar Lite edition Tested Versions: PHP Event Calendar Lite edition Vulnerability Type: SQL injection CWE-89 Risk Level: High Solution Status: Closed Manufacturer Notification: 2021-08-09 Solution Date:...

10CVSS9.2AI score0.02433EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/11/05 12:0 a.m.547 views

PHP Event Calendar Lite Edition SQL Injection

Advisory ID: SYSS-2021-048 Product: PHP Event Calendar Manufacturer: Kayson Group Ltd. Affected Versions: PHP Event Calendar Lite edition Tested Versions: PHP Event Calendar Lite edition Vulnerability Type: SQL injection CWE-89 Risk Level: High Solution Status: Closed Manufacturer Notification:...

9.2AI score0.02433EPSS
Exploits3
Packet Storm
Packet Storm
added 2021/08/14 12:0 a.m.287 views

Tiny Java Web Server 1.115 Cross Site Scripting

Advisory ID: SYSS-2021-042 Product: Tiny Java Web Server and Servlet Container TJWS Manufacturer: D. Rogatkin Affected Versions: = 1.115 Tested Versions: 1.107, 1.114 Vulnerability Type: Cross-Site Scripting CWE-79 Risk Level: Medium Solution Status: Fixed Manufacturer Notification: 2021-07-21...

6.4AI score0.03398EPSS
Exploits2
Packet Storm
Packet Storm
added 2021/06/22 12:0 a.m.285 views

WordPress Admin Columns Cross Site Scripting

Advisory ID: SYSS-2021-032 Product: Admin Columns WordPress Plug-In Manufacturer: Codepress Affected Versions: 5.5.2 Pro version, 4.3.2 Free version Tested Versions: 5.5.1 Pro version, 4.3 Free version Vulnerability Type: Cross-Site Scripting CWE-79 Risk Level: High Solution Status: Fixed...

0.00932EPSS
Exploits4
0day.today
0day.today
added 2021/06/22 12:0 a.m.149 views

WordPress Admin Columns Plugin Cross Site Scripting Vulnerability

Product: Admin Columns WordPress Plug-In Manufacturer: Codepress Affected Versions: 5.5.2 Pro version, 4.3.2 Free version Tested Versions: 5.5.1 Pro version, 4.3 Free version Vulnerability Type: Cross-Site Scripting CWE-79 Risk Level: High Solution Status: Fixed Manufacturer Notification:...

5.4CVSS0.00932EPSS
Exploits4
0day.today
0day.today
added 2021/03/22 12:0 a.m.77 views

Zoom 5.4.3 (54779.1115) / 5.5.4 (13142.0301) Information Disclosure Vulnerability

Manufacturer: Zoom Video Communications, Inc. Affected Versions: 5.4.3 54779.1115 5.5.4 13142.0301 Tested Versions: 5.4.3 54779.1115 5.5.4 13142.0301 Vulnerability Type: Exposure of Resource to Wrong Sphere CWE-668 Risk Level: Medium Solution Status: Open Manufacturer Notification: 2020-12-02...

4.3CVSS4.8AI score0.16289EPSS
Exploits2
Packet Storm
Packet Storm
added 2020/12/27 12:0 a.m.493 views

URVE Software Build 24.03.2020 Information Disclosure

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2020-042 Product: URVE Software Manufacturer: Eveo Sp. z o.o. Affected Versions: Build "24.03.2020" Tested Versions: Build "24.03.2020" Vulnerability Type: Cleartext Storage of Sensitive Information CWE-312 Exposure of Sensitive...

5CVSS7.7AI score0.01421EPSS
Exploits2
Packet Storm
Packet Storm
added 2020/12/26 12:0 a.m.351 views

URVE Software Build 24.03.2020 Missing Authorization

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2020-041 Product: URVE Software Manufacturer: Eveo Sp. z o.o. Affected Versions: Build "24.03.2020" Tested Versions: Build "24.03.2020" Vulnerability Type: Missing Authorization CWE-862 Risk Level: High Solution Status: Open...

8.5CVSS0.02834EPSS
Exploits2
Rows per page
Query Builder