Lucene search
K

137 matches found

Vulnrichment
Vulnrichment
added 2026/01/15 1:2 p.m.2 views

CVE-2026-22910

The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access. This represents a high risk to the integrity of the system...

7.5CVSS6.4AI score0.00436EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.10 views

PT-2026-2991

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. affected versions not specified Description The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access. This represent...

9.1CVSS6.4AI score0.00436EPSS
Exploits0References10
NVD
NVD
added 2025/12/30 11:15 p.m.5 views

CVE-2023-53983

Anevia Flamingo XL/XS 3.6.20 contains a critical vulnerability with weak default administrative credentials that can be easily guessed. Attackers can leverage these hard-coded credentials to gain full remote system control without complex authentication mechanisms...

9.8CVSS0.00577EPSS
Exploits2References6
OSV
OSV
added 2025/12/30 11:15 p.m.5 views

CVE-2023-53983

Anevia Flamingo XL/XS 3.6.20 contains a critical vulnerability with weak default administrative credentials that can be easily guessed. Attackers can leverage these hard-coded credentials to gain full remote system control without complex authentication mechanisms...

9.8CVSS5.9AI score0.00577EPSS
Exploits2References6
RedhatCVE
RedhatCVE
added 2025/12/11 11:4 p.m.4 views

CVE-2025-67513

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. This is the apppassword parameter. Depending on local...

6.9CVSS6.6AI score0.00236EPSS
Exploits0References1
NVD
NVD
added 2025/12/10 11:15 p.m.5 views

CVE-2025-67513

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. This is the apppassword parameter. Depending on local...

6.9CVSS0.00236EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/10 10:43 p.m.4 views

EUVD-2025-202640

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. This is the apppassword parameter. Depending on local...

6.9CVSS6AI score0.00236EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/10 10:43 p.m.4 views

CVE-2025-67513 FreePBX Endpoint Manager's Weak Default Password Allows Unauthenticated Access in Endpoint Module REST API

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. This is the apppassword parameter. Depending on local...

6.9CVSS6.2AI score0.00236EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/12/10 10:43 p.m.5 views

CVE-2025-67513

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. This is the apppassword parameter. Depending on local...

6.9CVSS5.6AI score0.00236EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/12/10 10:43 p.m.23 views

CVE-2025-67513 FreePBX Endpoint Manager's Weak Default Password Allows Unauthenticated Access in Endpoint Module REST API

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. This is the apppassword parameter. Depending on local...

6.9CVSS0.00236EPSS
Exploits0References1
CVE
CVE
added 2025/12/10 10:43 p.m.25 views

CVE-2025-67513

CVE-2025-67513 affects FreePBX Endpoint Manager (module for managing telephony endpoints in FreePBX). Versions prior to 16.0.96 and 17.0.1 through 17.0.9 use a weak default 6‑digit app_password, which can be brute-forced. Depending on local configuration, this password could grant access to the e...

6.9CVSS6.2AI score0.00236EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 9:16 p.m.5 views

CVE-2021-47707

COMMAX CVD-Axx DVR 5.1.4 contains weak default administrative credentials that allow remote password attacks and disclose RTSP stream. Attackers can exploit this by sending a POST request with the 'passkey' parameter set to '1234', allowing them to access the web control panel...

9.3CVSS7.1AI score0.00323EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/10 12:0 a.m.5 views

PT-2025-50554

FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. This is the app password parameter. Depending on local...

6.9CVSS6.5AI score0.00236EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.9 views

FreePBX Endpoint Manager 安全漏洞

FreePBX Endpoint Manager is a centralized IP phone endpoint configuration module from the FreePBX open source. A security vulnerability exists in FreePBX Endpoint Manager versions prior to 16.0.96 and 17.0.1 through 17.0.9, which stems from a weak default password that can be brute-force broken...

6.9CVSS6.8AI score0.00236EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.6 views

PT-2025-50237

Name of the Vulnerable Software and Affected Versions COMMAX CVD-Axx DVR version 5.1.4 Description The COMMAX CVD-Axx DVR contains weak default administrative credentials, enabling remote password attacks and disclosure of RTSP streams. An attacker can exploit this by sending a POST request to an...

9.3CVSS6.7AI score0.00323EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.5 views

Thermo Fisher Torrent Suite Django application 安全漏洞

The Thermo Fisher Torrent Suite Django application is a core software component of Thermo Fisher USA. A security vulnerability exists in Thermo Fisher Torrent Suite Django application version 5.18.1, which stems from the use of weak default credentials and failure to enforce a password change...

9.8CVSS7.1AI score0.00338EPSS
Exploits0References4
CNVD
CNVD
added 2025/10/31 12:0 a.m.5 views

Unspecified Vulnerability in Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 (CNVD-2025-29090)

The Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 are both networked access controllers from Azure Access Technology, USA. A security vulnerability exists in Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 that stems from the use of weak default...

10CVSS7AI score0.0027EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/25 6:30 p.m.7 views

EUVD-2025-35934

Weak Default Credentials.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

10CVSS6.5AI score0.0027EPSS
Exploits0References2
NVD
NVD
added 2025/10/25 4:15 p.m.6 views

CVE-2025-12218

Weak Default Credentials.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

10CVSS0.0027EPSS
Exploits0References1
OSV
OSV
added 2025/10/25 4:15 p.m.4 views

CVE-2025-12218

Weak Default Credentials.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

9.1CVSS5.8AI score0.0027EPSS
Exploits0References1
Rows per page
Query Builder