Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knowledge management vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-4074
The Board Management Controller (BMC) in the Serial over LAN (SoL) subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded private key, which allows man-in-the-middle malicious users to obtain sensitive information or modify the data stream by leveraging knowledge...
Cisco Unified Computing System -
NA
CVE-2015-6414
Cisco TelePresence Video Communication Server (VCS) X8.6 uses the same encryption key across different customers' installations, which makes it easier for local users to defeat cryptographic protection mechanisms by leveraging knowledge of a key from another installation, ak...
Cisco Telepresence Video Communication Server Software X8.6
7.8
CVSSv3
CVE-2020-8471
For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus ...
Abb 800xa System 5.1
Abb Compact Hmi 5.1
Abb Control Builder Safe 1.0
Abb Control Builder Safe 1.1
9.8
CVSSv3
CVE-2020-8481
For ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus -S+ Engineering 1.1 to 2.2, Composer Harmony 5....
Abb 800xa System 5.1
9.8
CVSSv3
CVE-2015-5995
Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 and Tenda N3 Wireless N150 devices allow remote malicious users to obtain administrative access via a certain admin substring in an HTTP Cookie header.
Tenda N3 Wireless N150
Mediabridge Medialink Mwn-wapr300n Firmware
1 EDB exploit
2 Github repositories
6.8
CVSSv3
CVE-2015-5994
The web management interface on Mediabridge Medialink MWN-WAPR300N devices with firmware 5.07.50 has a default password of admin for the admin account and a default password of password for the medialink account, which allows remote malicious users to obtain administrative privil...
Mediabridge Medialink Mwn-wapr300n Firmware
9.8
CVSSv3
CVE-2016-5670
Crestron Electronics DM-TXRX-100-STR devices with firmware prior to 1.3039.00040 have a hardcoded password of admin for the admin account, which makes it easier for remote malicious users to obtain access via the web management interface.
Crestron Dm-txrx-100-str Firmware 1.2866.00026
NA
CVE-2015-4259
The Integrated Management Controller on Cisco Unified Computing System (UCS) C servers with software 1.5(3) and 1.6(0.16) has a default SSL certificate, which makes it easier for man-in-the-middle malicious users to bypass cryptographic protection mechanisms by leveraging knowled...
Cisco Unified Computing System 1.5\\(3\\)
Cisco Unified Computing System 1.6\\(0.16\\)
4.3
CVSSv3
CVE-2021-4122
It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An attacker with physical access to the medium, such as a flash disk, could use this flaw to force a user into permanently disabling the encryptio...
Cryptsetup Project Cryptsetup
7.5
CVSSv3
CVE-2020-8475
For the Central Licensing Server component used in ABB products ABB Ability™ System 800xA and related system extensions versions 5.1, 6.0 and 6.1, Compact HMI versions 5.1 and 6.0, Control Builder Safe 1.0, 1.1 and 2.0, Symphony Plus -S+ Operations 3.0 to 3.2 Symphony Plus ...
Abb Control Builder Safe 1.1
Abb Control Builder Safe 1.0
Abb 800xa System 5.1
Abb Control Builder Safe 2.0
Abb Compact Hmi 6.0.1-1
Abb Compact Hmi 6.0.3-2
Abb 800xa System 6.0
Abb 800xa System 6.0.1
Abb 800xa System 6.0.3
Abb 800xa System 6.0.3.3
Abb 800xa System 6.1
Abb Compact Hmi 5.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »