Lucene search
K

8 matches found

Microsoft Secure
Microsoft Secure
added 2025/12/17 5:0 p.m.6 views

Access Fabric: A modern approach to identity and network access

Today, most organizations use multiple identity systems and multiple network access solutions from multiple vendors. This happens, either intentionally or organically, when different areas of a company choose different tools, creating a fragmented environment that leaves weaknesses that...

7AI score
Exploits0
CNVD
CNVD
added 2022/05/13 12:0 a.m.93 views

ZTE ZXCDN Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in ZTE ZXCDN, a unified network management platform from ZTE Corporation China. The vulnerability stems from the program's lack of data validation filtering of user-supplied data and output. An attacker can exploit the vulnerability to execute JavaScrip...

6.1CVSS1.6AI score0.00525EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2017/10/27 12:23 p.m.10 views

Rockwell Automation Patches Wireless Access Point against Krack

Rockwell Automation has patched its Stratix wireless access point against the KRACK vulnerability, joining a growing list of vendors in the commercial and industrial controls spaces moving quickly to reduce their exposure. Most major vendors have similarly patched their products, some prior to th...

0.6AI score
Exploits0References3
NVD
NVD
added 2011/04/18 3:0 p.m.17 views

CVE-2011-1653

Multiple SQL injection vulnerabilities in the Unified Network Control UNC Server in CA Total Defense TD r12 before SE2 allow remote attackers to execute arbitrary SQL commands via vectors involving the 1 UnAssignFunctionalRoles, 2 UnassignAdminRoles, 3 DeleteFilter, 4 NonAssignedUserList, 5...

10CVSS8AI score0.88655EPSS
Exploits12References22
NVD
NVD
added 2011/04/18 3:0 p.m.16 views

CVE-2011-1655

The management.asmx module in the Management Web Service in the Unified Network Control UNC Server in CA Total Defense TD r12 before SE2 sends a cleartext response to unspecified getDBConfigSettings requests, which makes it easier for remote attackers to obtain database credentials, and...

7.5CVSS7.2AI score0.11975EPSS
Exploits0References9
Prion
Prion
added 2011/04/18 3:0 p.m.19 views

Code injection

The management.asmx module in the Management Web Service in the Unified Network Control UNC Server in CA Total Defense TD r12 before SE2 sends a cleartext response to unspecified getDBConfigSettings requests, which makes it easier for remote attackers to obtain database credentials, and...

7.5CVSS7.7AI score0.11975EPSS
Exploits0References9Affected Software1
ATTACKERKB
ATTACKERKB
added 2011/04/18 3:0 p.m.2 views

CVE-2011-1655

The management.asmx module in the Management Web Service in the Unified Network Control UNC Server in CA Total Defense TD r12 before SE2 sends a cleartext response to unspecified getDBConfigSettings requests, which makes it easier for remote attackers to obtain database credentials, and...

7.5CVSS6AI score0.11975EPSS
Exploits0References12
CVE
CVE
added 2011/04/15 7:0 p.m.131 views

CVE-2011-1655

CA Total Defense Suite UNCWS getDBConfigSettings vulnerability (CVE-2011-1655) affects UNC Server before SE2; management.asmx responds to SOAP requests and transmits database credentials in plaintext, enabling unauthenticated remote access to credentials and potential arbitrary code execution. Im...

7.5CVSS7.3AI score0.11975EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder