Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
applied-risk.com vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-7266
Linear eMerge 50P/5000P devices allow Authentication Bypass.
Nortekcontrol Linear Emerge 50p Firmware
Nortekcontrol Linear Emerge 5000p Firmware
10
CVSSv2
CVE-2019-7268
Linear eMerge 50P/5000P devices allow Unauthenticated File Upload.
Nortekcontrol Linear Emerge 50p Firmware
Nortekcontrol Linear Emerge 5000p Firmware
5
CVSSv2
CVE-2019-7272
Optergy Proton/Enterprise devices allow Username Disclosure.
Optergy Enterprise
Optergy Proton
1 EDB exploit
9
CVSSv2
CVE-2019-10854
Computrols CBAS 18.0.0 allows Authenticated Command Injection.
Computrols Computrols Building Automation Software
9
CVSSv2
CVE-2019-9189
Prima Systems FlexAir, Versions 2.4.9api3 and prior. The application allows the upload of arbitrary Python scripts when configuring the main central controller. These scripts can be immediately executed because of root code execution, not as a web server user, allowing an authent...
Primasystems Flexair
1 EDB exploit
3.5
CVSSv2
CVE-2019-7671
Prima Systems FlexAir, Versions 2.3.38 and prior. Parameters sent to scripts are not properly sanitized before being returned to the user, which may allow an malicious user to execute arbitrary code in a user’s browser session in context of an affected site.
Primasystems Flexair
1 EDB exploit
5
CVSSv2
CVE-2019-10848
Computrols CBAS 18.0.0 allows Username Enumeration.
Computrols Computrols Building Automation Software
1 EDB exploit
5
CVSSv2
CVE-2019-10849
Computrols CBAS 18.0.0 allows unprotected Subversion (SVN) directory / source code disclosure.
Computrols Computrols Building Automation Software
1 EDB exploit
8.3
CVSSv2
CVE-2019-10853
Computrols CBAS 18.0.0 allows Authentication Bypass.
Computrols Computrols Building Automation Software
6.5
CVSSv2
CVE-2019-7666
Prima Systems FlexAir, Versions 2.3.38 and prior. The application allows improper authentication using the MD5 hash value of the password, which may allow an attacker with access to the database to login as admin without decrypting the password.
Primasystems Flexair
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »