Page 7 of 35 results (0.004 seconds)

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1

CVE-2020-15327

https://notcve.org/view.php?id=CVE-2020-15327

Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 uses ZODB storage without authentication. Zyxel CloudCNM SecuManager 3.1.0 y 3.1.1 usa el almacenamiento ZODB sin autenticación • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-798: Use of Hard-coded Credentials •

CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 1

CVE-2020-15328

https://notcve.org/view.php?id=CVE-2020-15328

Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has weak /opt/axess/var/blobstorage/ permissions. Zyxel CloudCNM SecuManager versiones 3.1.0 y 3.1.1, presenta permisos débiles en /opt/axess/var/blobstorage/ • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-732: Incorrect Permission Assignment for Critical Resource •

CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 1

CVE-2020-15329

https://notcve.org/view.php?id=CVE-2020-15329

Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has weak Data.fs permissions. Zyxel CloudCNM SecuManager versiones 3.1.0 y 3.1.1, presenta permisos débiles en el archivo Data.fs • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-732: Incorrect Permission Assignment for Critical Resource •

CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 1

CVE-2020-15330

https://notcve.org/view.php?id=CVE-2020-15330

Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded APP_KEY in /opt/axess/etc/default/axess. Zyxel CloudCNM SecuManager versiones 3.1.0 y 3.1.1, presenta una APP_KEY embebida en /opt/axess/etc/default/axess • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-311: Missing Encryption of Sensitive Data •

CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1

CVE-2020-15331

https://notcve.org/view.php?id=CVE-2020-15331

Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded OAUTH_SECRET_KEY in /opt/axess/etc/default/axess. Zyxel CloudCNM SecuManager versiones 3.1.0 y 3.1.1, presenta un OAUTH_SECRET_KEY embebido en /opt/axess/etc/default/axess • https://pierrekim.github.io/blog/2020-03-09-zyxel-secumanager-0day-vulnerabilities.html https://www.zyxel.com/support/vulnerabilities-of-CloudCNM-SecuManager.shtml • CWE-311: Missing Encryption of Sensitive Data •