Every CVE whose affected-product data names Zingbox Inspector, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2019-1584 — CVSS 9.8 (critical): A security vulnerability exists in Zingbox Inspector version 1.293 and earlier, that allows for remote code execution if the Inspector were…
CVE-2019-15019 — CVSS 9.8 (critical): A security vulnerability exists in the Zingbox Inspector versions 1.294 and earlier, that could allow an attacker to supply an invalid…
CVE-2019-15020 — CVSS 9.8 (critical): A security vulnerability exists in the Zingbox Inspector versions 1.293 and earlier, that could allow an attacker to supply an invalid…
CVE-2019-15014 — CVSS 8.8 (high): A command injection vulnerability exists in the Zingbox Inspector versions 1.286 and earlier, that allows for an authenticated user to…
CVE-2019-15016 — CVSS 8.8 (high): An SQL injection vulnerability exists in the management interface of Zingbox Inspector versions 1.288 and earlier, that allows for…
CVE-2019-15017 — CVSS 8.4 (high): The SSH service is enabled on the Zingbox Inspector versions 1.294 and earlier, exposing SSH to the local network. When combined with…
CVE-2019-15015 — CVSS 8.4 (high): In the Zingbox Inspector, versions 1.294 and earlier, hardcoded credentials for root and inspector user accounts are present in the system…
CVE-2019-15022 — CVSS 7.5 (high): A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that allows for the Inspector to be susceptible to ARP…
CVE-2019-15018 — CVSS 7.5 (high): A security vulnerability exists in the Zingbox Inspector versions 1.280 and earlier, where authentication is not required when binding the…
CVE-2019-15023 — CVSS 7.5 (high): A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that results in passwords for 3rd party integrations being…
CVE-2019-15021 — CVSS 5.3 (medium): A security vulnerability exists in the Zingbox Inspector versions 1.294 and earlier, that can allow an attacker to easily identify…