• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-200

CVE-2018-10729

February 26, 2023 by

All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 1.0 to 1.33 allow reading the configuration file by an unauthenticated user.

CVE-2018-1073

February 26, 2023 by

The web console login form in ovirt-engine before version 4.2.3 returned different errors for non-existent users and invalid passwords, allowing an attacker to discover the names of valid user accounts.

CVE-2018-10732

February 26, 2023 by

The REST API in Dataiku DSS before 4.2.3 allows remote attackers to obtain sensitive information (i.e., determine if a username is valid) because of profile pictures visibility.

CVE-2018-10734

February 26, 2023 by

KONGTOP DVR devices A303, A403, D303, D305, and D403 contain a backdoor that prints the login password via a Print_Password function call in certain circumstances.

CVE-2018-10770

February 26, 2023 by

download.rsp on ShenZhen Anni “5 in 1 XVR” devices allows remote attackers to download the configuration (without a login) to discover the password.

CVE-2018-10652

February 26, 2023 by

There is a Sensitive Data Leakage issue in Citrix XenMobile Server 10.7 before RP3.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 178
  • Go to page 179
  • Go to page 180
  • Go to page 181
  • Go to page 182
  • Interim pages omitted …
  • Go to page 348
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE