Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

johannes kruchem vulnerabilities and exploits

(subscribe to this query)
6
CVSSv3
CVE-2023-6253
A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows a local malicious user to retrieve the uninstall key and remove the software by extracting the uninstaller key from the memory of the uninstaller file.
Fortra Digital Guardian Agent
9.8
CVSSv3
CVE-2022-26479
An issue exists in Poly EagleEye Director II prior to 2.2.2.1. Existence of a certain file (which can be created via an rsync backdoor) causes all API calls to execute as admin without authentication.
Poly Eagleeye Director Ii Firmware
8.8
CVSSv3
CVE-2022-26481
An issue exists in Poly Studio prior to 3.7.0. Command Injection can occur via the CN field of a Create Certificate Signing Request (CSR) action.
Poly Studio X30 FirmwarePoly Studio X70 FirmwarePoly G7500 FirmwarePoly Studio X50 Firmware
7.2
CVSSv3
CVE-2022-26482
An issue exists in Poly EagleEye Director II prior to 2.2.2.1. os.system command injection can be achieved by an admin.
Poly Eagleeye Director Ii Firmware
7.3
CVSSv3
CVE-2022-22521
In Miele Benchmark Programming Tool with versions before 1.2.71, executable files manipulated by attackers are unknowingly executed with users privileges. An attacker with low privileges may trick a user with administrative privileges to execute these binaries as admin.
Miele Benchmark Programming Tool
8.8
CVSSv3
CVE-2020-11953
An issue exists on Rittal PDU-3C002DEC up to and including 5.15.40 and CMCIII-PU-9333E0FB up to and including 3.15.70_4 devices. Attackers can execute code.
Rittal Cmciii-pu-9333e0fb FirmwareRittal Pdu-3c002dec FirmwareRittal Cmc Iii Pu 7030.000 FirmwareRittal Lcp-cw FirmwareRittal Iot Interface 3124.300
8.8
CVSSv3
CVE-2020-11955
An issue exists on Rittal PDU-3C002DEC up to and including 5.15.70 and CMCIII-PU-9333E0FB up to and including 3.15.70 devices. There are insecure permissions.
Rittal Cmciii-pu-9333e0fb FirmwareRittal Pdu-3c002dec FirmwareRittal Cmc Iii Pu 7030.000 FirmwareRittal Lcp-cw FirmwareRittal Iot Interface 3124.300
9.8
CVSSv3
CVE-2020-11956
An issue exists on Rittal PDU-3C002DEC up to and including 5.17.10 and CMCIII-PU-9333E0FB up to and including 3.17.10 devices. There is a least privilege violation.
Rittal Cmciii-pu-9333e0fb FirmwareRittal Pdu-3c002dec FirmwareRittal Cmc Iii Pu 7030.000 FirmwareRittal Lcp-cw FirmwareRittal Iot Interface 3124.300
9.8
CVSSv3
CVE-2020-11951
An issue exists on Rittal PDU-3C002DEC up to and including 5.17.10 and CMCIII-PU-9333E0FB up to and including 3.17.10 devices. There is a Backdoor root account.
Rittal Cmciii-pu-9333e0fb FirmwareRittal Pdu-3c002dec FirmwareRittal Cmc Iii Pu 7030.000 FirmwareRittal Lcp-cw FirmwareRittal Iot Interface 3124.300
6.2
CVSSv3
CVE-2020-11952
An issue exists on Rittal PDU-3C002DEC up to and including 5.17.10 and CMCIII-PU-9333E0FB up to and including 3.17.10 devices. Attackers can bypass the CLI menu.
Rittal Cmciii-pu-9333e0fb FirmwareRittal Pdu-3c002dec FirmwareRittal Cmc Iii Pu 7030.000 FirmwareRittal Lcp-cw FirmwareRittal Iot Interface 3124.300
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook