Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ssh vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2016-2230
OpenELEC and RasPlex devices have a hardcoded password for the root account, which makes it easier for remote malicious users to obtain access via an SSH session.
Openelec Openelec
10
CVSSv2
CVE-2016-1984
The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices prior to 2016-01-20 has a hardcoded password for the 1MB@tMaN account, which makes it easier for remote malicious users to obtain access via a (1) SSH or (2) HTTP session, a different vulnerability than CVE-2015...
Harman Amx Firmware 1.3.100
Harman Amx Firmware 1.2.322
10
CVSSv2
CVE-2015-8362
The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices prior to 2015-10-12 has a hardcoded password for the BlackWidow account, which makes it easier for remote malicious users to obtain access via a (1) SSH or (2) HTTP session, a different vulnerability than CVE-20...
Harman Amx Firmware 1.2.322
Harman Amx Firmware 1.3.100
10
CVSSv2
CVE-2015-6412
Cisco Modular Encoding Platform D9036 Software prior to 02.04.70 has hardcoded (1) root and (2) guest passwords, which makes it easier for remote malicious users to obtain access via an SSH session, aka Bug ID CSCut88070.
Cisco Modular Encoding Platform D9036 Software 02.02.30
Cisco Modular Encoding Platform D9036 Software 02.00.80
Cisco Modular Encoding Platform D9036 Software 02.01.50
Cisco Modular Encoding Platform D9036 Software 02.03.30
10
CVSSv2
CVE-2016-1909
Fortinet FortiAnalyzer prior to 5.0.12 and 5.2.x prior to 5.2.5; FortiSwitch 3.3.x prior to 3.3.3; FortiCache 3.0.x prior to 3.0.8; and FortiOS 4.1.x prior to 4.1.11, 4.2.x prior to 4.2.16, 4.3.x prior to 4.3.17 and 5.0.x prior to 5.0.8 have a hardcoded passphrase for the Fortima...
Fortinet Fortios 5.0.2
Fortinet Fortios 5.0.6
Fortinet Fortios 5.0.7
Fortinet Fortios 5.0
Fortinet Fortios 5.0.1
Fortinet Fortios
Fortinet Fortios 5.0.3
Fortinet Fortios 5.0.4
Fortinet Fortios 5.0.5
Fortinet Fortios 5.0.0
1 EDB exploit
10
CVSSv2
CVE-2015-7755
Juniper ScreenOS 6.2.0r15 up to and including 6.2.0r18, 6.3.0r12 prior to 6.3.0r12b, 6.3.0r13 prior to 6.3.0r13b, 6.3.0r14 prior to 6.3.0r14b, 6.3.0r15 prior to 6.3.0r15b, 6.3.0r16 prior to 6.3.0r16b, 6.3.0r17 prior to 6.3.0r17b, 6.3.0r18 prior to 6.3.0r18b, 6.3.0r19 prior to 6.3...
Juniper Screenos 6.3.0
4 Github repositories
3 Articles
10
CVSSv2
CVE-2015-6476
Advantech EKI-122x-BE devices with firmware prior to 1.65, EKI-132x devices with firmware prior to 1.98, and EKI-136x devices with firmware prior to 1.27 have hardcoded SSH keys, which makes it easier for remote malicious users to obtain access via an SSH session.
Advantech Eki-1322 Series Firmware
Advantech Eki-1321 Series Firmware
Advantech Eki-1361 Series Firmware
Advantech Eki-1362 Series Firmware
Advantech Eki-122x Series Firmware
10
CVSSv2
CVE-2015-2897
Sierra Wireless ALEOS prior to 4.4.2 on AirLink ES, GX, and LS devices has hardcoded root accounts, which makes it easier for remote malicious users to obtain administrative access via a (1) SSH or (2) TELNET session.
Sierrawireless Aleos
10
CVSSv2
CVE-2014-2198
Cisco Unified Communications Domain Manager (CDM) in Unified CDM Platform Software prior to 4.4.2 has a hardcoded SSH private key, which makes it easier for remote malicious users to obtain access to the support and root accounts by extracting this key from a binary file found in...
Cisco Unified Cdm Platform Software
Cisco Unified Communications Domain Manager -
10
CVSSv2
CVE-2014-4152
The av-centerd SOAP service in AlienVault OSSIM prior to 4.8.0 allows remote malicious users to execute arbitrary code via a crafted remote_task request, related to injecting an ssh public key.
Alienvault Open Source Security Information Management 4.6.1
Alienvault Open Source Security Information Management 4.0
Alienvault Open Source Security Information Management 4.6
Alienvault Open Source Security Information Management 4.5
Alienvault Open Source Security Information Management 4.4
Alienvault Open Source Security Information Management 4.3.3
Alienvault Open Source Security Information Management
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »