Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-34017

Malicious code in bioql PyPI...

5.8CVSS5AI score0.00243EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:51 a.m.6 views

CVE-2023-2538

A CWE-552 "Files or Directories Accessible to External Parties” in the web interface of the Tyan S5552 BMC version 3.00 allows an unauthenticated remote attacker to retrieve the private key of the TLS certificate in use by the BMC via forced browsing. This can then be abused to perform...

5.8CVSS7.1AI score0.00243EPSS
Exploits0References1
OSV
OSV
added 2023/07/05 1:15 p.m.5 views

CVE-2023-2538

A CWE-552 "Files or Directories Accessible to External Parties” in the web interface of the Tyan S5552 BMC version 3.00 allows an unauthenticated remote attacker to retrieve the private key of the TLS certificate in use by the BMC via forced browsing. This can then be abused to perform...

4.2CVSS5.8AI score0.00243EPSS
Exploits0References1
Prion
Prion
added 2023/07/05 1:15 p.m.17 views

Hardcoded credentials

A CWE-552 "Files or Directories Accessible to External Parties” in the web interface of the Tyan S5552 BMC version 3.00 allows an unauthenticated remote attacker to retrieve the private key of the TLS certificate in use by the BMC via forced browsing. This can then be abused to perform...

4CVSS4.8AI score0.00243EPSS
Exploits0References1Affected Software4
CVE
CVE
added 2023/07/05 12:11 p.m.45 views

CVE-2023-2538

The CVE-2023-2538 entry describes a CWE-552 vulnerability in the TYAN S5552 BMC web interface (v3.00) where an unauthenticated remote attacker can force-browse and retrieve the TLS private key, enabling potential MitM attacks against HTTPS users. The issue affects the Tyan S5552 BMC, with the roo...

5.8CVSS4.9AI score0.00243EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/05 12:11 p.m.25 views

CVE-2023-2538 TLS Private Key Accessible to External Parties

A CWE-552 "Files or Directories Accessible to External Parties” in the web interface of the Tyan S5552 BMC version 3.00 allows an unauthenticated remote attacker to retrieve the private key of the TLS certificate in use by the BMC via forced browsing. This can then be abused to perform...

5.8CVSS6.6AI score0.00243EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/05 12:11 p.m.10 views

CVE-2023-2538 TLS Private Key Accessible to External Parties

A CWE-552 "Files or Directories Accessible to External Parties” in the web interface of the Tyan S5552 BMC version 3.00 allows an unauthenticated remote attacker to retrieve the private key of the TLS certificate in use by the BMC via forced browsing. This can then be abused to perform...

5.8CVSS7.1AI score0.00243EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/07/05 12:0 a.m.6 views

PT-2023-20041 · Tyan · Tyan S5552 Bmc

Name of the Vulnerable Software and Affected Versions: Tyan S5552 BMC version 3.00 Description: A CWE-552 issue in the web interface allows an unauthenticated remote attacker to retrieve the private key of the TLS certificate in use by the BMC via forced browsing. This can be abused to perform...

5.8CVSS7.2AI score0.00243EPSS
Exploits0References3
Rows per page
Query Builder