CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

EUVD•added 2025/12/23 12:30 a.m.•2 views

EUVD-2023-60230

Screen SFT DAB 600/C Firmware 1.9.3 contains a session management vulnerability that allows attackers to bypass authentication controls by exploiting IP address session binding. Attackers can reuse the same IP address and issue unauthorized requests to the userManager API to remove user accounts...

9.8CVSS6.5AI score0.00365EPSS

Exploits2References6

OSV•added 2025/12/22 10:16 p.m.•1 views

CVE-2023-53969

Screen SFT DAB 600/C firmware 1.9.3 contains a session management vulnerability that allows attackers to bypass authentication controls by exploiting IP address session binding. Attackers can reuse the same IP address and issue unauthorized requests to the userManager API to change user passwords...

9.3CVSS5.8AI score0.00255EPSS

Exploits2References5

Positive Technologies•added 2025/12/10 12:0 a.m.•2 views

PT-2025-50526

Name of the Vulnerable Software and Affected Versions Screen SFT DAB version 1.9.3 Description Screen SFT DAB 1.9.3 has a flaw in its authentication process, allowing unauthorized modification of user passwords. This is due to weak session management controls, specifically the reuse of IP-bound...

7.1CVSS6.8AI score0.00154EPSS

Exploits1References10

OSV•added 2025/05/05 8:15 p.m.•2 views

CVE-2025-45614

Incorrect access control in the component /api/user/manager of One v1.0 allows attackers to access sensitive information via a crafted payload...

7.5CVSS6.6AI score

Exploits0References1

Rows per page