Lucene search
K
KorelogicMost viewed

105 matches found

KoreLogic Security
KoreLogic Security
•added 2025/07/28 12:0 a.m.•7 views

Xorux LPAR2RRD Read Only User Log Download Exposing Sensitive Information

Vulnerability Details Affected Vendor: Xorux Affected Product: LPAR2RRD Affected Version: 8.04 and prior Platform: Rocky Linux 8.10 CWE Classification: CWE-648: Incorrect Use of Privileged APIs CVE ID: CVE-2025-54768 2. Vulnerability Description An API endpoint that should be limited to web...

5.3CVSS6.1AI score0.03976EPSS
Exploits2Affected Software1
KoreLogic Security
KoreLogic Security
•added 2025/07/09 12:0 a.m.•7 views

Schneider Electric EcoStruxure IT Data Center Expert Root Password Discovery

Vulnerability Details Affected Vendor: Schneider Electric Affected Product: EcoStruxure IT Data Center Expert Affected Version: 8.3 and prior Platform: CentOS CWE Classification: CWE-6311: Insufficient Entropy CVE ID: CVE-2025-50122 2. Vulnerability Description The Data Center Expert "DCE"...

8.9CVSS7.3AI score0.00196EPSS
Exploits1Affected Software1
KoreLogic Security
KoreLogic Security
•added 2025/07/09 12:0 a.m.•7 views

Schneider Electric EcoStruxure IT Data Center Expert Unauthenticated Server-Side Request Forgery

Vulnerability Details Affected Vendor: Schneider Electric Affected Product: EcoStruxure IT Data Center Expert Affected Version: 8.3 and prior Platform: CentOS CWE Classification: CWE-918: Server-Side Request Forgery SSRF CVE ID: CVE-2025-50125 2. Vulnerability Description The Data Center Expert...

6.3CVSS7.8AI score0.00463EPSS
Exploits2Affected Software1
KoreLogic Security
KoreLogic Security
•added 2025/07/28 12:0 a.m.•6 views

Xorux LPAR2RRD Read Only User Denial of Service

Vulnerability Details Affected Vendor: Xorux Affected Product: LPAR2RRD Affected Version: 8.04 and prior Platform: Rocky Linux 8.10 CWE Classification: CWE-648: Incorrect Use of Privileged APIs CVE ID: CVE-2025-54767 2. Vulnerability Description An authenticated, read-only user can kill any...

6.5CVSS6.5AI score0.05296EPSS
Exploits2Affected Software1
KoreLogic Security
KoreLogic Security
•added 2025/07/28 12:0 a.m.•5 views

Xorux XorMon-NG Read Only User Export Device Configuration Exposing Sensitive Information

Vulnerability Details Affected Vendor: Xorux Affected Product: XorMon-NG Affected Version: 1.8 and prior Platform: Debian CWE Classification: CWE-648: Incorrect Use of Privileged APIs CVE ID: CVE-2025-54766 2. Vulnerability Description An API endpoint that should be limited to web application...

5.3CVSS6.3AI score0.06894EPSS
Exploits2Affected Software1
Total number of security vulnerabilities105