Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-19650

Malware in sbrugna...

8.8CVSS8.6AI score0.00395EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-19648

Malware in sbrugna...

7.1CVSS6.3AI score0.0058EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 6:46 p.m.8 views

CVE-2021-32927

An attacker may be able to inject client-side JavaScript code on multiple instances within all versions of Uffizio GPS Tracker...

7.1CVSS6.9AI score0.0058EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 6:33 p.m.11 views

CVE-2021-32929

All versions of Uffizio GPS Tracker may allow an attacker to perform unintended actions on behalf of a user...

8.8CVSS6.8AI score0.00395EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:27 p.m.9 views

CVE-2020-17485

A Remote Code Execution vulnerability exist in Uffizio's GPS Tracker all versions. The web server can be compromised by uploading and executing a web/reverse shell. An attacker could then run commands, browse system files, and browse local resources...

9.8CVSS7.4AI score0.01837EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:16 p.m.8 views

CVE-2020-17483

An improper access control vulnerability exists in Uffizio's GPS Tracker all versions that lead to sensitive information disclosure of all the connected devices. By visiting the vulnerable host at port 9000, we see it responds with a JSON body that has all the details about the devices which have...

7.5CVSS6.5AI score0.00843EPSS
Exploits0
Prion
Prion
added 2023/12/16 1:15 a.m.30 views

Improper access control

An improper access control vulnerability exists in Uffizio's GPS Tracker all versions that lead to sensitive information disclosure of all the connected devices. By visiting the vulnerable host at port 9000, we see it responds with a JSON body that has all the details about the devices which have...

5CVSS6.7AI score0.00843EPSS
Exploits0References2
Prion
Prion
added 2023/12/16 1:15 a.m.14 views

Open redirect

An Open Redirection vulnerability exists in Uffizio's GPS Tracker all versions allows an attacker to construct a URL within the application that causes a redirection to an arbitrary external domain...

5.8CVSS7.1AI score0.00489EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/12/16 12:0 a.m.26 views

CVE-2020-17483

An improper access control vulnerability exists in Uffizio's GPS Tracker all versions that lead to sensitive information disclosure of all the connected devices. By visiting the vulnerable host at port 9000, we see it responds with a JSON body that has all the details about the devices which have...

7.4AI score0.00843EPSS
Exploits0References2
CVE
CVE
added 2023/12/16 12:0 a.m.34 views

CVE-2020-17484

CVE-2020-17484 : Uffizio’s GPS Tracker (all versions) has an Open Redirect vulnerability. An attacker can craft a URL within the application to redirect victims to an arbitrary external domain due to insufficient input/URL validation. Impact is described as redirecting to an external site; exploi...

6.1CVSS6.2AI score0.00489EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/16 12:0 a.m.5 views

PT-2023-11481 · Uffizio · Uffizio'S Gps Tracker

Name of the Vulnerable Software and Affected Versions: Uffizio's GPS Tracker all versions Description: An improper access control issue exists, leading to sensitive information disclosure of connected devices. Visiting the vulnerable host at port 9000 returns a JSON body with details about deploy...

7.5CVSS7.3AI score0.00843EPSS
Exploits0References6
NVD
NVD
added 2022/04/22 3:15 p.m.19 views

CVE-2021-32929

All versions of Uffizio GPS Tracker may allow an attacker to perform unintended actions on behalf of a user...

8.8CVSS0.00395EPSS
Exploits0References1
NVD
NVD
added 2022/04/22 3:15 p.m.24 views

CVE-2021-32927

An attacker may be able to inject client-side JavaScript code on multiple instances within all versions of Uffizio GPS Tracker...

7.1CVSS0.0058EPSS
Exploits0References1
Prion
Prion
added 2022/04/22 3:15 p.m.15 views

Code injection

All versions of Uffizio GPS Tracker may allow an attacker to perform unintended actions on behalf of a user...

6.8CVSS8.6AI score0.00395EPSS
Exploits0References1
CVE
CVE
added 2022/04/22 3:1 p.m.51 views

CVE-2021-32927

CVE-2021-32927 affects all versions of Uffizio GPS Tracker and is described as a Cross-Site Scripting vulnerability (CWE-79) caused by improper neutralization of input during web page generation. The issue enables an attacker to inject client-side JavaScript into multiple instances, potentially e...

7.1CVSS6.7AI score0.0058EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/04/22 3:1 p.m.25 views

CVE-2021-32927 Uffizio GPS Tracker Cross-site Scripting

An attacker may be able to inject client-side JavaScript code on multiple instances within all versions of Uffizio GPS Tracker...

7.1CVSS7.1AI score0.0058EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/04/22 3:1 p.m.7 views

CVE-2021-32927 Uffizio GPS Tracker Cross-site Scripting

An attacker may be able to inject client-side JavaScript code on multiple instances within all versions of Uffizio GPS Tracker...

7.1CVSS6.9AI score0.0058EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/04/22 3:0 p.m.7 views

CVE-2021-32929 Uffizio GPS Tracker Cross-site Request Forgery

All versions of Uffizio GPS Tracker may allow an attacker to perform unintended actions on behalf of a user...

4.3CVSS6.8AI score0.00395EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/04/22 3:0 p.m.25 views

CVE-2021-32929 Uffizio GPS Tracker Cross-site Request Forgery

All versions of Uffizio GPS Tracker may allow an attacker to perform unintended actions on behalf of a user...

4.3CVSS8.8AI score0.00395EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/10/14 12:0 a.m.7 views

Uffizio GPS Tracker 跨站脚本漏洞

Uffizio Gps Tracker is a Gps tracker from Uffizio India. Uffizio GPS Tracker suffers from a cross-site scripting vulnerability that can be exploited by an attacker to gain access to the host computer to view sensitive information, obtain code execution, cause a redirect to an arbitrary external...

7.1CVSS6.3AI score0.0058EPSS
Exploits0References5
Rows per page
Query Builder