Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
digit vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-1520
Xircom REX 6000 allows local users to obtain the 10 digit PIN by starting a serial monitor, connecting to the personal digital assistant (PDA) via Rextools, and capturing the cleartext PIN.
Intel Xircom Rex 6000
Intel Xircom Rex 6000 1
4.4
CVSSv3
CVE-2019-1588
A vulnerability in the Cisco Nexus 9000 Series Fabric Switches running in Application-Centric Infrastructure (ACI) mode could allow an authenticated, local malicious user to read arbitrary files on an affected device. The vulnerability is due to a lack of proper input and validat...
Cisco Nx-os
7.8
CVSSv3
CVE-2019-1585
A vulnerability in the controller authorization functionality of Cisco Nexus 9000 Series ACI Mode Switch Software could allow an authenticated, local malicious user to escalate standard users with root privilege on an affected device. The vulnerability is due to a misconfiguratio...
Cisco Nx-os 8.3\\(0\\)sk\\(0.39\\)
Cisco Application Policy Infrastructure Controller Software
NA
CVE-2024-25730
Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy (only about one million possibilities).
9.8
CVSSv3
CVE-2018-16550
TeamViewer 10.x up to and including 13.x allows remote malicious users to bypass the brute-force authentication protection mechanism by skipping the "Cancel" step, which makes it easier to determine the correct value of the default 4-digit PIN.
Teamviewer Teamviewer
8.8
CVSSv3
CVE-2023-40038
Arris DG860A and DG1670A devices have predictable default WPA2 PSKs that could lead to unauthorized remote access. (They use the first 6 characters of the SSID and the last 6 characters of the BSSID, decrementing the last digit.)
Arris Dg860a Firmware -
Arris Dg1670a Firmware Ts0901203b6 020420 16xx.gw Pc20 Tw
8.8
CVSSv3
CVE-2022-34772
Tabit - password enumeration. Description: Tabit - password enumeration. The passwords for the Tabit system is a 4 digit OTP. One can resend OTP and try logging in indefinitely. Once again, this is an example of OWASP: API4 - Rate limiting.
Tabit Tabit
NA
CVE-2024-4601
An incorrect authentication vulnerability has been found in Socomec Net Vision affecting version 7.20. This vulnerability allows an malicious user to perform a brute force attack on the application and recover a valid session, because the application uses a five-digit integer val...
NA
CVE-2007-4310
The finger daemon (in.fingerd) in Sun Solaris 7 through 9 allows remote malicious users to list all accounts that have certain nonstandard GECOS fields via a request composed of a single digit, as demonstrated by a "finger 9@host" command, a different vulnerability than...
Sun Sunos 5.9
Sun Sunos 5.7
Sun Sunos 5.8
7.5
CVSSv3
CVE-2020-16170
Use of Hard-coded Credentials in temi Robox OS before 120, temi Android app up to 1.3.7931 allows remote malicious users to listen in on any ongoing calls between temi robots and their users if they can brute-force/guess a six-digit value via unspecified vectors.
Robotemi Temi
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »