Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
applied-risk.com vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2019-7266
Linear eMerge 50P/5000P devices allow Authentication Bypass.
Nortekcontrol Linear Emerge 50p Firmware
Nortekcontrol Linear Emerge 5000p Firmware
890
VMScore
CVE-2019-7268
Linear eMerge 50P/5000P devices allow Unauthenticated File Upload.
Nortekcontrol Linear Emerge 50p Firmware
Nortekcontrol Linear Emerge 5000p Firmware
505
VMScore
CVE-2019-7272
Optergy Proton/Enterprise devices allow Username Disclosure.
Optergy Enterprise
Optergy Proton
1 EDB exploit
801
VMScore
CVE-2019-10854
Computrols CBAS 18.0.0 allows Authenticated Command Injection.
Computrols Computrols Building Automation Software
905
VMScore
CVE-2019-9189
Prima Systems FlexAir, Versions 2.4.9api3 and prior. The application allows the upload of arbitrary Python scripts when configuring the main central controller. These scripts can be immediately executed because of root code execution, not as a web server user, allowing an authent...
Primasystems Flexair
1 EDB exploit
355
VMScore
CVE-2019-7671
Prima Systems FlexAir, Versions 2.3.38 and prior. Parameters sent to scripts are not properly sanitized before being returned to the user, which may allow an malicious user to execute arbitrary code in a user’s browser session in context of an affected site.
Primasystems Flexair
1 EDB exploit
505
VMScore
CVE-2019-10848
Computrols CBAS 18.0.0 allows Username Enumeration.
Computrols Computrols Building Automation Software
1 EDB exploit
505
VMScore
CVE-2019-10849
Computrols CBAS 18.0.0 allows unprotected Subversion (SVN) directory / source code disclosure.
Computrols Computrols Building Automation Software
1 EDB exploit
739
VMScore
CVE-2019-10853
Computrols CBAS 18.0.0 allows Authentication Bypass.
Computrols Computrols Building Automation Software
655
VMScore
CVE-2019-7666
Prima Systems FlexAir, Versions 2.3.38 and prior. The application allows improper authentication using the MD5 hash value of the password, which may allow an attacker with access to the database to login as admin without decrypting the password.
Primasystems Flexair
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »