|
222411
|
- |
|
-
|
-
|
ethOS through 1.3.3 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io. NOTE: …
|
-
|
CVE-2019-19755
|
2024-11-21 13:35 |
2024-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222412
|
- |
|
-
|
-
|
HiveOS through 0.6-102@191212 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.…
|
-
|
CVE-2019-19754
|
2024-11-21 13:35 |
2024-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222413
|
- |
|
-
|
-
|
SimpleMiningOS through v1259 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.i…
|
-
|
CVE-2019-19753
|
2024-11-21 13:35 |
2024-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222414
|
- |
|
-
|
-
|
nvOC through 3.2 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io. NOTE: as …
|
-
|
CVE-2019-19752
|
2024-11-21 13:35 |
2024-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222415
|
- |
|
-
|
-
|
easyMINE before 2019-12-05 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io.
|
-
|
CVE-2019-19751
|
2024-11-21 13:35 |
2024-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222416
|
9.8 |
CRITICAL
Network
|
lemonldap-ng
|
lemonldap\
|
In LemonLDAP::NG (aka lemonldap-ng) before 2.0.7, the default Apache HTTP Server configuration does not properly restrict access to SOAP/REST endpoints (when some LemonLDAP::NG setup options are used…
|
NVD-CWE-noinfo
|
CVE-2019-19791
|
2024-11-21 13:35 |
2023-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222417
|
7.8 |
HIGH
Local
|
lenovo
|
ideacentre_510-15ikl_firmware
ideacentre_510s-08ikl_firmware
ideacentre_300s-11ish_firmware
ideacentre_310-15asr_firmware
ideacentre_310-15iap_firmware
ideacentre_310a-15iap_firmware
Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and 20BT before 6.0.8882.1 and 20KH and 20KG before 6.0.8907.1 (and on many other Lenovo and non-Lenovo p…
|
CWE-428
Unquoted Search Path or Element
|
CVE-2019-19705
|
2024-11-21 13:35 |
2022-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
222418
|
10.0 |
CRITICAL
Network
|
eleveo
|
call_recording
|
Zoom Call Recording 6.3.1 from Eleveo is vulnerable to Java Deserialization attacks targeting the inbuilt RMI service. A remote unauthenticated attacker can exploit this vulnerability by sending craf…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2019-19810
|
2024-11-21 13:35 |
2021-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222419
|
7.5 |
HIGH
Network
|
br-automation
|
industrial_automation_aprol
|
An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08. An attacker can get access to historical data from AprolSqlServer by bypassing authentication, a different vulnerability …
|
NVD-CWE-noinfo
|
CVE-2019-19878
|
2024-11-21 13:35 |
2020-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222420
|
5.3 |
MEDIUM
Network
|
br-automation
|
industrial_automation_aprol
|
An issue was discovered in B&R Industrial Automation APROL before R4.2 V7.08. An attacker can get access to sensitive information outside the working directory via Directory Traversal attacks against…
|
CWE-22
Path Traversal
|
CVE-2019-19877
|
2024-11-21 13:35 |
2020-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
