Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hidglobal vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2024-22388
Certain configuration available in the communication channel for encoders could expose sensitive data when reader configuration cards are programmed. This data could include credential and device administration keys.
Hidglobal Iclass Se Cp1000 Encoder Firmware
Hidglobal Iclass Se Readers Firmware
Hidglobal Iclass Se Reader Modules Firmware
Hidglobal Iclass Se Processors Firmware
Hidglobal Omnikey 5427ck Firmware
Hidglobal Omnikey 5127ck Firmware
Hidglobal Omnikey 5023 Firmware
Hidglobal Omnikey 5027 Firmware
8.8
CVSSv3
CVE-2020-36283
HID OMNIKEY 5427 and OMNIKEY 5127 readers are vulnerable to CSRF when using the EEM driver (Ethernet Emulation Mode). By persuading an authenticated user to visit a malicious Web site, a remote attacker could send a malformed HTTP request to upload a configuration file to the dev...
Hidglobal Omnikey 5427 Firmware -
Hidglobal Omnikey 5127 Firmware -
7.3
CVSSv3
CVE-2023-2904
The External Visitor Manager portal of HID’s SAFE versions 5.8.0 up to and including 5.11.3 are vulnerable to manipulation within web fields in the application programmable interface (API). An attacker could log in using account credentials available through a request gener...
Hidglobal Safe
5.3
CVSSv3
CVE-2024-23806
Sensitive data can be extracted from HID iCLASS SE reader configuration cards. This could include credential and device administrator keys.
Hidglobal Omnikey Secure Elements Reader Configuration Cards Firmware -
Hidglobal Iclass Se Reader Configuration Cards Firmware -
5.5
CVSSv3
CVE-2018-17489
EasyLobby Solo could allow a local malicious user to obtain sensitive information, caused by the storing of the social security number in plaintext. By visiting the kiosk and viewing the Visitor table of the database, an attacker could exploit this vulnerability to view stored so...
Hidglobal Easylobby Solo 11.0.4563
7.1
CVSSv3
CVE-2018-17490
EasyLobby Solo is vulnerable to a denial of service. By visiting the kiosk and accessing the task manager, a local attacker could exploit this vulnerability to kill the process or launch new processes at will.
Hidglobal Easylobby Solo 11.0.4563
7.8
CVSSv3
CVE-2018-17492
EasyLobby Solo contains default administrative credentials. An attacker could exploit this vulnerability to gain full access to the application.
Hidglobal Easylobby Solo 11.0.4563
7.8
CVSSv3
CVE-2018-17491
EasyLobby Solo could allow a local malicious user to gain elevated privileges on the system. By visiting the kiosk and typing "esc" to exit the program, an attacker could exploit this vulnerability to perform unauthorized actions on the computer.
Hidglobal Easylobby Solo 11.0.4563
9.8
CVSSv3
CVE-2022-31479
An unauthenticated attacker can update the hostname with a specially crafted name that will allow for shell commands to be executed during the core collection process. This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502,...
Hidglobal Lp1501 Firmware
Hidglobal Lp1502 Firmware
Hidglobal Lp2500 Firmware
Hidglobal Lp4502 Firmware
Hidglobal Ep4502 Firmware
Carrier Lenels2 Lnl-4420 Firmware
Carrier Lenels2 Lnl-x2210 Firmware
Carrier Lenels2 Lnl-x2220 Firmware
Carrier Lenels2 Lnl-x3300 Firmware
Carrier Lenels2 Lnl-x4420 Firmware
Carrier Lenels2 S2-lp-1501 Firmware
Carrier Lenels2 S2-lp-1502 Firmware
Carrier Lenels2 S2-lp-2500 Firmware
Carrier Lenels2 S2-lp-4502 Firmware
7.5
CVSSv3
CVE-2022-31480
An unauthenticated attacker could arbitrarily upload firmware files to the target device, ultimately causing a Denial-of-Service (DoS). This vulnerability impacts products based on HID Mercury Intelligent Controllers LP1501, LP1502, LP2500, LP4502, and EP4502 which contain firmwa...
Hidglobal Lp1501 Firmware
Hidglobal Lp1502 Firmware
Hidglobal Lp2500 Firmware
Hidglobal Lp4502 Firmware
Hidglobal Ep4502 Firmware
Carrier Lenels2 Lnl-4420 Firmware
Carrier Lenels2 Lnl-x2210 Firmware
Carrier Lenels2 Lnl-x2220 Firmware
Carrier Lenels2 Lnl-x3300 Firmware
Carrier Lenels2 Lnl-x4420 Firmware
Carrier Lenels2 S2-lp-1501 Firmware
Carrier Lenels2 S2-lp-1502 Firmware
Carrier Lenels2 S2-lp-2500 Firmware
Carrier Lenels2 S2-lp-4502 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »