Lucene search
+L

13 matches found

Vulnrichment
Vulnrichment
added 4 days ago5 views

CVE-2026-59835

A exposure of resource to wrong sphere vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.2, FortiSandbox 4.4.3 through 4.4.8 may allow an unauthenticated attacker to access the VNC server of VMs performing scanning via network requests...

8.6CVSS6.1AI score0.00421EPSS
Exploits0References1
CVE
CVE
added 4 days ago39 views

CVE-2026-59835

Technical details about CVE-2026-59835 are not publicly available in the provided documents. Monitor for updates from Fortinet/NVD/CVE listings for affected products, vulnerable components, and fixes.

8.6CVSS6.1AI score0.00421EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 4 days ago24 views

CVE-2026-59835

A exposure of resource to wrong sphere vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.2, FortiSandbox 4.4.3 through 4.4.8 may allow an unauthenticated attacker to access the VNC server of VMs performing scanning via network requests...

8.6CVSS0.00421EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:0 a.m.6 views

CVE-2023-43633

On boot, the Pillar eve container checks for the existence and content of “/config/GlobalConfig/global.json”. If the file exists, it overrides the existing configuration on the device on boot. This allows an attacker to change the system’s configuration, which also includes some debug functions...

8.8CVSS6.8AI score0.00159EPSS
Exploits0References1
Pen Test Partners Blog
Pen Test Partners Blog
added 2025/05/29 5:55 a.m.16 views

Fire detection system been pwned? You’re not going to sea

TL;DR Hardcoded SSH and VNC credentials found on Consilium Salwico CS5000 panels SSH access allows OS-level interaction, and VNC access gives UI control It may be possible to disable the fire detection system Attempts to disclose vulnerability to Consilium multiple times since 2022 Consilium...

9.3CVSS9.6AI score0.00716EPSS
Exploits0
OSV
OSV
added 2024/12/20 8:1 p.m.6 views

CVE-2024-56330 Session VNC may be accessed by other sessions on the same host in stardust

Stardust is a platform for streaming isolated desktop containers. With this exploit, inter container communication ICC is not disabled. This would allow users within a container to access another containers agent, therefore compromising access.The problem has been patched in any Stardust build pa...

9.3CVSS6.8AI score0.00481EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/08/04 2:2 p.m.7 views

novnc: XSS vulnerability via the messages propagated to the status field

An XSS vulnerability was discovered in noVNC in which arbitrary HTML could be injected into the noVNC web page. An attacker having access to a VNC server could use target host values in a crafted URL to gain access to secure information such as VM tokens...

6.1CVSS5.9AI score0.0481EPSS
Exploits1References5
Kitploit
Kitploit
added 2019/07/22 9:42 p.m.196 views

Dockernymous - A Script Used To Create A Whonix Like Gateway/Workstation Environment With Docker Containers

Dockernymous is a start script for Docker that runs and configures two individual Linux containers in order act as a anonymisation workstation-gateway set up. It's aimed towards experienced Linux/Docker users, security professionals and penetration testers! The gateway container acts as a...

7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/10/02 12:0 a.m.21 views

openSUSE Security Update : vlc (openSUSE-2017-1100)

This update for vlc fixes several issues. This security issue was fixed : - CVE-2017-9300: Heap corruption allowed remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted FLAC file bsc1041907. These non-security issues were fixed : - Stop depending on...

7.8CVSS7.7AI score0.03284EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2017/10/02 12:0 a.m.29 views

openSUSE Security Update : vlc (openSUSE-2017-1101)

This update for vlc to version 2.2.6 fixes several issues. This security issue was fixed : - CVE-2017-9300: Heap corruption allowed remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted FLAC file bsc1041907. These non-security issues were fixed : -...

7.8CVSS7.7AI score0.03284EPSS
Exploits1References3
OSV
OSV
added 2015/03/18 4:59 p.m.8 views

DEBIAN-CVE-2015-2152

Xen 4.5.x and earlier enables certain default backends when emulating a VGA device for an x86 HVM guest qemu even when the configuration disables them, which allows local guest users to obtain access to the VGA console by 1 setting the DISPLAY environment variable, when compiled with SDL support,...

1.9CVSS8.4AI score0.00419EPSS
Exploits0References1
securityvulns
securityvulns
added 2004/01/19 12:0 a.m.43 views

[Full-Disclosure] SRT2004-01-17-0425 - Ultr@VNC local SYSTEM access.

Secure Network Operations, Inc. http://www.secnetops.com/research Strategic Reconnaissance Team researchatsecnetops.com Team Lead Contact kfatsecnetops.com Spam Contact rm -rf /@snosoft.com Our Mission: Secure Network Operations offers expertise in Networking, Intrusion Detection Systems IDS,...

0.2AI score
Exploits0
NVD
NVD
added 2002/12/31 5:0 a.m.17 views

CVE-2002-2088

The MOSIX Project clump/os 5.4 creates a default VNC account without a password, which allows remote attackers to gain root access...

10CVSS6.9AI score0.0274EPSS
Exploits0References3
Rows per page
Query Builder