CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-3705 – Information Disclosure Vulnerability in CP-Plus Network Video Recorder
https://notcve.org/view.php?id=CVE-2023-3705
The vulnerability exists in CP-Plus NVR due to an improper input handling at the web-based management interface of the affected product. An unauthenticated remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable device. Successful exploitation of this vulnerability could allow the remote attacker to obtain sensitive information on the targeted device. • https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2023-0239 • CWE-20: Improper Input Validation CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2023-4230 – ioLogik 4000 Series: Server Banner Information Disclosure
https://notcve.org/view.php?id=CVE-2023-4230
A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, which has the potential to facilitate the collection of information on ioLogik 4000 Series devices. This vulnerability may enable attackers to gather information for the purpose of assessing vulnerabilities and potential attack vectors. • https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230310-iologik-4000-series-multiple-web-server-vulnerabilities-and-improper-access-control-vulnerability • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-40496 – LG Simple Editor copyStickerContent Directory Traversal Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-40496
LG Simple Editor copyStickerContent Directory Traversal Information Disclosure Vulnerability. ... LG Simple Editor copyStickerContent Directory Traversal Information Disclosure Vulnerability. • https://www.zerodayinitiative.com/advisories/ZDI-23-1202 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2023-40517 – LG SuperSign Media Editor ContentRestController getObject Directory Traversal Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-40517
LG SuperSign Media Editor ContentRestController getObject Directory Traversal Information Disclosure Vulnerability. • https://www.zerodayinitiative.com/advisories/ZDI-23-1219 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-40495 – LG Simple Editor copyTemplateAll Directory Traversal Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-40495
LG Simple Editor copyTemplateAll Directory Traversal Information Disclosure Vulnerability. ... LG Simple Editor copyTemplateAll Directory Traversal Information Disclosure Vulnerability. • https://www.zerodayinitiative.com/advisories/ZDI-23-1201 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •