ruppde

2 exploits Active since Jan 2020

CVE-2020-0609 NOMISEC CRITICAL SCANNER

Windows Server 2012, 2016, 2019 - Unauthenticated Remote Code Execution via RD Gateway

A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0610.

41 stars

CVSS 9.8

View Code

CVE-2020-29583 NOMISEC CRITICAL SCANNER

Zyxel USG <4.60 - Privilege Escalation

Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This account can be used by someone to login to the ssh server or web interface with admin privileges.

16 stars

CVSS 9.8

View Code