Lucene search
K

79 matches found

Vulnrichment
Vulnrichment
added 2026/06/15 10:3 a.m.8 views

CVE-2026-34025 IP restriction bypass in Wertheim SafeController Software allows logins from unauthorized network locations

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an IP restriction bypass vulnerability in the login process. The application restricts user logins based on the IP address associated with a branch location, but the client IP address is derived from the HTTP...

5.3CVSS5.3AI score0.00283EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/15 10:3 a.m.10 views

EUVD-2026-36708

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an IP restriction bypass vulnerability in the login process. The application restricts user logins based on the IP address associated with a branch location, but the client IP address is derived from the HTTP...

5.3CVSS5.4AI score0.00283EPSS
Exploits1References2
EUVD
EUVD
added 2026/05/12 3:31 p.m.10 views

EUVD-2026-29459

CWE‑331 Insufficient Entropy vulnerability exists that could lead to unauthorized access when an attacker on the network can exploit weaknesses in session‑management protections...

8.7CVSS5.8AI score0.00312EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/12 12:24 p.m.12 views

CVE-2026-4827 Insufficient Entropy vulnerability on Multiple Products

CWE‑331: Insufficient Entropy vulnerability exists that could lead to unauthorized access when an attacker on the network can exploit weaknesses in session‑management protections...

8.7CVSS5.8AI score0.00312EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/10 9:22 a.m.2 views

CVE-2021-47961

A plaintext storage of a password vulnerability in Synology SSL VPN Client before 1.4.5-0684 allows remote attackers to access or influence the user's PIN code due to insecure storage. This may lead to unauthorized VPN configuration and potential interception of subsequent VPN traffic when combin...

8.1CVSS5.9AI score0.00322EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.3 views

Meatmeet Pro BBQ Thermometer 安全漏洞

Meatmeet Pro BBQ Thermometer is an advanced smart thermometer from Meatmeet. A security vulnerability exists in the Meatmeet Pro BBQ Thermometer version v1.0.34.4, which stems from the inclusion of hard-coded Wi-Fi credentials in the firmware, which could lead to unauthorized network access...

9.8CVSS6.7AI score0.00365EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/09 5:55 p.m.15 views

EUVD-2025-202237

User interface ui misrepresentation of critical information in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network...

5.3CVSS6AI score0.00822EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/11/11 8:0 a.m.5 views

Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Microsoft Dynamics 365 on-premises allows an unauthorized attacker to disclose information over a network...

6.5CVSS5AI score0.00865EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2008-5321

Malware in sbrugna...

7.5CVSS7.4AI score0.03426EPSS
Exploits1References39
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2008-5316

Malware in sbrugna...

5CVSS7.4AI score0.03451EPSS
Exploits1References37
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-3819

Malware in sbrugna...

2.1CVSS6.4AI score0.00443EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-35590

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00472EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-24394

Malicious code in bioql PyPI...

5.8CVSS5.6AI score0.00476EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.4 views

ExtremeGuest Essentials 安全漏洞

ExtremeGuest Essentials is a WiFi user access and analytics platform from Extreme. A security vulnerability exists in ExtremeGuest Essentials versions prior to 25.5.0, which stems from a misconfiguration of the mandatory portal and could lead to unauthorized network access...

7.6CVSS6.5AI score0.00319EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/15 8:0 a.m.10 views

CVE-2025-41713 WAGO: Vulnerability in hardware switch circuit

During a short time frame while the device is booting an unauthenticated remote attacker can send traffic to unauthorized networks due to the switch operating in an undefined state until a CPU-induced reset allows proper configuration...

6.5CVSS0.00346EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.2 views

WAGO多款产品 安全漏洞

WAGO Edge Controller and others are products of WAGO, Germany.WAGO Edge Controller is an edge controller.WAGO Series Touch Panel 600 is a touch panel.WAGO CC100 Series is a series of compact controller devices. A security vulnerability exists in several WAGO products. The vulnerability stems from...

6.5CVSS6.6AI score0.00346EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-3319

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: X Plugin. Supported versions that are affected are 5.7.16 and earlier. Difficu...

3.5CVSS5.4AI score0.01346EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-14792

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 7u271, 8u261,...

5.8CVSS6.3AI score0.02203EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/13 11:38 a.m.12 views

CVE-2025-55280 Information Disclosure Vulnerability in ZKTeco WL20

This vulnerability exists in ZKTeco WL20 due to storage of Wi-Fi credentials, configuration data and system data in plaintext within the device firmware. An attacker with physical access could exploit this vulnerability by extracting the firmware and reverse engineer the binary data to access the...

5.2CVSS0.00123EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/08/12 7:0 a.m.11 views

Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability

The ui performs the wrong action in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...

4.3CVSS7AI score0.0046EPSS
Exploits0
Rows per page
Query Builder