Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2019/10/29 8:15 p.m.2 views

CVE-2018-18929

The Tightrope Media Carousel Seneca HDn Windows-based appliance 7.0.4.104 is shipped with a default local administrator username and password. This can be found by a limited user account in an "unattend.xml" file left over on the C: drive from the Sysprep process. An attacker with this username a...

8.8CVSS5.8AI score0.00273EPSS
Exploits1References1
Cvelist
Cvelistadded 2019/10/29 7:33 p.m.10 views

CVE-2018-18929

The Tightrope Media Carousel Seneca HDn Windows-based appliance 7.0.4.104 is shipped with a default local administrator username and password. This can be found by a limited user account in an "unattend.xml" file left over on the C: drive from the Sysprep process. An attacker with this username a...

8.7AI score0.00273EPSS
Exploits1References1
CVE
CVEadded 2019/10/29 7:33 p.m.72 views

CVE-2018-18929

The CVE concerns Tightrope Media Carousel Seneca HDn Windows-based appliance 7.0.4.104, where a default local administrator username/password can be found in an unattend.xml left on the C: drive from Sysprep. An attacker with these credentials can gain administrator-level access to the system. Th...

8.8CVSS8.6AI score0.00273EPSS
Exploits1References1Affected Software1
Metasploit
Metasploitadded 2012/07/02 12:23 a.m.50 views

Windows Gather Unattended Answer File Enumeration

This module will check the file system for a copy of unattend.xml and/or autounattend.xml found in Windows Vista, or newer Windows systems. And then extract sensitive information such as usernames and decoded passwords. Also checks for '.vmimport' files that could have been created by the AWS EC2...

7.1AI score
Exploits0
Prion
Prionadded 2011/04/10 2:55 a.m.11 views

Default credentials

The Dell KACE K2000 Systems Deployment Appliance 3.3.36822 and earlier contains a peinst CIFS share, which allows remote attackers to obtain sensitive information by reading the 1 unattend.xml or 2 sysprep.inf file, as demonstrated by reading a password...

5CVSS6.7AI score0.00795EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKBadded 2011/04/10 2:55 a.m.3 views

CVE-2011-1672

The Dell KACE K2000 Systems Deployment Appliance 3.3.36822 and earlier contains a peinst CIFS share, which allows remote attackers to obtain sensitive information by reading the 1 unattend.xml or 2 sysprep.inf file, as demonstrated by reading a password...

5CVSS5.5AI score0.00795EPSS
Exploits0References6
Cvelist
Cvelistadded 2011/04/10 1:29 a.m.14 views

CVE-2011-1672

The Dell KACE K2000 Systems Deployment Appliance 3.3.36822 and earlier contains a peinst CIFS share, which allows remote attackers to obtain sensitive information by reading the 1 unattend.xml or 2 sysprep.inf file, as demonstrated by reading a password...

6.3AI score0.00795EPSS
Exploits0References5
Rows per page
Query Builder