Lucene search
K

20 matches found

Vulnrichment
Vulnrichment
added 2026/01/15 1:9 p.m.2 views

CVE-2026-22920

...

5.8AI score0.0002EPSS
Exploits0
CVE
CVE
added 2026/01/15 1:9 p.m.14 views

CVE-2026-22920

This CVE entry is rejected/not used and does not represent an active vulnerability entry.

6.7AI score0.0002EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.8 views

PT-2026-3001

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. affected versions not specified Description The device's passwords have not been adequately salted, making them vulnerable to password extraction attacks. Recommendations At the moment, there is no...

3.7CVSS6.6AI score0.0002EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-2991

Malware in sbrugna...

5.5CVSS5.6AI score0.0026EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-43592

Malicious code in bioql PyPI...

4.9CVSS5.4AI score0.00368EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/02 12:0 a.m.10 views

PT-2025-40401

Name of the Vulnerable Software and Affected Versions Vasion Print formerly PrinterLogic Virtual Appliance Host and Application VA/SaaS deployments affected versions not specified Description The software stores user passwords using unsalted SHA-512 hashes, with a fallback to unsalted SHA-1. The...

8.2CVSS6.8AI score0.00411EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/08/06 12:0 a.m.8 views

4C Strategies Exonaut 安全漏洞

4C Strategies Exonaut is a training, exercise and readiness management platform from the Swedish company 4C Strategies. A security vulnerability exists in 4C Strategies Exonaut version 21.6 that stems from an unsalted hash of passwords stored in the database...

5.3CVSS6.6AI score0.00332EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/04/28 9:15 a.m.5 views

CVE-2025-32471

The device’s passwords have not been adequately salted, making them vulnerable to password extraction attacks...

3.7CVSS5.8AI score0.00315EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/04/28 12:0 a.m.6 views

SICK FLX0-GPNT100和SICK FLX3-CPUC200 安全漏洞

The SICK FLX0-GPNT100 and SICK FLX3-CPUC200 are both products of SICK, Germany.The SICK FLX0-GPNT100 is a photoelectric sensor for precise object detection and localization in industrial automation.The SICK FLX3-CPUC200 is a high-performance photoelectric sensor controller designed for complex SI...

3.7CVSS6.6AI score0.00315EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 6:16 a.m.3 views

SUSE CVE-2006-1058

BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables...

5.5CVSS6.7AI score0.00294EPSS
Exploits0References3
OSV
OSV
added 2022/10/31 9:15 p.m.5 views

CVE-2022-40295

The application was vulnerable to an authenticated information disclosure, allowing administrators to view unsalted user passwords, which could lead to the compromise of plaintext passwords via offline attacks...

4.9CVSS5.8AI score0.00368EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/31 9:15 p.m.3 views

CVE-2022-40295

The application was vulnerable to an authenticated information disclosure, allowing administrators to view unsalted user passwords, which could lead to the compromise of plaintext passwords via offline attacks...

4.9CVSS5.8AI score0.00368EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/10/31 8:8 p.m.65 views

CVE-2022-40295

The CVE-2022-40295 entry concerns PHP Point of Sale v19.0, where an authenticated information disclosure allows administrators to view unsalted user passwords, enabling offline attacks to recover plaintext passwords. The vulnerability is described consistently across NVD/CVE records and related s...

4.9CVSS5.3AI score0.00368EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/31 12:0 a.m.8 views

PT-2022-25331 · Unknown · Application

Name of the Vulnerable Software and Affected Versions: Application affected versions not specified Description: The issue allows authenticated information disclosure, enabling administrators to view unsalted user passwords. This could lead to the compromise of plaintext passwords via offline...

4.9CVSS4.9AI score0.00368EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/03/31 12:0 a.m.53 views

SUSE SLES12 Security Update : zabbix (SUSE-SU-2021:0990-1)

This update for zabbix fixes the following issues : CVE-2021-27927: Fixed an improper CSRF protection mechanism bsc1183014. CVE-2013-7484: Fixed an issue where passwords in the users table were unsalted bsc1158321. Note that Tenable Network Security has extracted the preceding description block...

8.8CVSS7.6AI score0.01472EPSS
Exploits0References7
OSV
OSV
added 2021/03/30 3:59 p.m.8 views

SUSE-SU-2021:0990-1 Security update for zabbix

This update for zabbix fixes the following issues: - CVE-2021-27927: Fixed an improper CSRF protection mechanism bsc1183014. - CVE-2013-7484: Fixed an issue where passwords in the users table were unsalted bsc1158321...

8.8CVSS8.2AI score0.01472EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2019/11/30 2:15 a.m.30 views

CVE-2013-7484

Zabbix before 5.0 represents passwords in the users table with unsalted MD5...

7.5CVSS7.1AI score0.01211EPSS
Exploits0References3
OSV
OSV
added 2019/11/30 2:15 a.m.4 views

UBUNTU-CVE-2013-7484

Zabbix before 5.0 represents passwords in the users table with unsalted MD5...

7.5CVSS5.8AI score0.01211EPSS
Exploits0References4
0day.today
0day.today
added 2012/12/03 12:0 a.m.47 views

Ncentral 8.x Insecure Access / Unsalted Passwords / CSRF Vulnerabilities

Ncentral versions 8.0.x through 8.2.0-1152 suffer from insecure SOAP access that leads to an unprivileged SSH session, poor trust based authentication leading to database compromise, plain text password storage, cross site request forgery, and other vulnerabilities. RA001: Multiple vulnerabilitie...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2006/04/04 12:0 a.m.2 views

PT-2006-2092 · Busybox +1 · Busybox +1

Name of the Vulnerable Software and Affected Versions: BusyBox version 1.1.1 Description: The issue is related to password generation, where a salt is not used, making it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables. Recommendations...

5.5CVSS5.1AI score0.00294EPSS
Exploits0References15
Rows per page
Query Builder