Lucene search
K

17 matches found

EUVD
EUVD
added 2026/05/22 9:14 a.m.11 views

EUVD-2026-31424

STER uses unencrypted TCP traffic to transmit data over the network. It allows an attacker to conduct a Man-In-The-Middle attack and obtain sensitive data such as passwords, personal data, or authentication tokens. This issue was fixed in version 9.5...

8.7CVSS5.8AI score0.00225EPSS
Exploits0References2
CVE
CVE
added 2026/05/22 9:14 a.m.18 views

CVE-2026-25608

CVE-2026-25608 (STER) : The vulnerability involves unencrypted TCP traffic used by STER to transmit data, enabling a Man-In-The-Middle attacker to obtain sensitive information such as passwords, personal data, or authentication tokens. The underlying risk is data confidentiality loss during netwo...

2.3CVSS5.8AI score0.00208EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/27 6:31 p.m.8 views

EUVD-2026-9041

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 transmit authentication credentials over unencrypted HTTP, allowing attackers to capture credentials. An attacker positioned to observe network traffic between a user and the device can intercept credentials and reuse them to gain...

8.2CVSS6AI score0.00193EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-8077

Malware in sbrugna...

6.5CVSS6.6AI score0.00616EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-22135

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/23 6:24 p.m.11 views

CVE-2025-36062

IBM Cognos Analytics Mobile iOS 1.1.0 through 1.1.22 could be vulnerable to information exposure due to the use of unencrypted network traffic...

7.5CVSS6AI score0.00224EPSS
Exploits0References1
NVD
NVD
added 2025/07/21 7:15 p.m.6 views

CVE-2025-36062

IBM Cognos Analytics Mobile iOS 1.1.0 through 1.1.22 could be vulnerable to information exposure due to the use of unencrypted network traffic...

7.5CVSS0.00224EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/21 6:9 p.m.6 views

CVE-2025-36062 IBM Cognos Analytics Mobile (iOS) information disclosure

IBM Cognos Analytics Mobile iOS 1.1.0 through 1.1.22 could be vulnerable to information exposure due to the use of unencrypted network traffic...

5.9CVSS6.6AI score0.00224EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.5 views

PT-2025-30323 · Ibm · Ibm Cognos Analytics Mobile

Name of the Vulnerable Software and Affected Versions: IBM Cognos Analytics Mobile iOS versions 1.1.0 through 1.1.22 Description: IBM Cognos Analytics Mobile iOS may expose information due to the use of unencrypted network traffic. Recommendations: IBM Cognos Analytics Mobile iOS versions prior t...

7.5CVSS6.1AI score0.00224EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 1:44 p.m.8 views

CVE-2014-9596

Panasonic Arbitrator Back-End Server BES MK 2.0 VPU before 9.3.1 build 4.08.003.0, when USB Wi-Fi or Direct LAN is enabled, and MK 3.0 VPU before 9.3.1 build 5.06.000.0, when Embedded Wi-Fi or Direct LAN is enabled, does not use encryption, which allows remote attackers to obtain sensitive...

4.3CVSS6.7AI score0.00725EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:22 a.m.8 views

CVE-2024-31206

dectalk-tts is a Node package to interact with the aeiou Dectalk web API. In [email protected], network requests to the third-party API are sent over HTTP, which is unencrypted. Unencrypted traffic can be easily intercepted and modified by attackers. Anyone who uses the package could be the victi...

8.2CVSS6.3AI score0.00332EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/10 12:0 a.m.2 views

TP-Link TL-PS310U Elevation of Privilege Vulnerability

The TP-Link TL-PS310U is a single USB 2.0 port MFP and storage server. An elevation of privilege vulnerability exists in versions prior to TP-Link TL-PS310U 2.079.000.t0210, which stems from the ability to discover administrative passwords by sniffing unencrypted UDP traffic, and can be exploited...

8.8CVSS7.2AI score0.0032EPSS
Exploits0References1
NVD
NVD
added 2018/09/18 9:29 p.m.22 views

CVE-2018-16225

The QBee MultiSensor Camera through 4.16.4 accepts unencrypted network traffic from clients such as the QBee Cam application through 1.0.5 for Android and the Swisscom Home application up to 10.7.2 for Android, which results in an attacker being able to reuse cookies to bypass authentication and...

6.5CVSS6.6AI score0.00616EPSS
Exploits1References2
Prion
Prion
added 2018/09/18 9:29 p.m.25 views

Authentication flaw

The QBee MultiSensor Camera through 4.16.4 accepts unencrypted network traffic from clients such as the QBee Cam application through 1.0.5 for Android and the Swisscom Home application up to 10.7.2 for Android, which results in an attacker being able to reuse cookies to bypass authentication and...

6.1CVSS6.5AI score0.00616EPSS
Exploits1References2Affected Software3
Cvelist
Cvelist
added 2018/09/18 9:0 p.m.27 views

CVE-2018-16225

The QBee MultiSensor Camera through 4.16.4 accepts unencrypted network traffic from clients such as the QBee Cam application through 1.0.5 for Android and the Swisscom Home application up to 10.7.2 for Android, which results in an attacker being able to reuse cookies to bypass authentication and...

6.6AI score0.00616EPSS
Exploits1References2
CVE
CVE
added 2018/09/18 9:0 p.m.54 views

CVE-2018-16225

The CVE-2018-16225 entry concerns the QBee MultiSensor Camera (up to firmware 4.16.4). The issue arises from unencrypted network traffic from clients (e.g., QBee Cam app up to Android 1.0.5, Swisscom Home app up to Android 10.7.2), enabling an attacker to reuse cookies to bypass authentication an...

6.5CVSS6.5AI score0.00616EPSS
Exploits1References2Affected Software1
exploitpack
exploitpack
added 2002/07/03 12:0 a.m.23 views

Sun SunPCi II VNC Software 2.3 - Password Disclosure

Sun SunPCi II VNC Software 2.3 - Password Disclosure // source: https://www.securityfocus.com/bid/5146/info The SunPCi II card is a co-processor for a number of Solaris based systems, and provides PC software compatibility, including the ability to run Microsoft Windows. Driver software is...

Exploits0
Rows per page
Query Builder