This page lists publicly disclosed CVE vulnerabilities affecting esesix thintune_l (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2004-2050 | eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allow local users to gain privileges by pressing CTRL-SHIFT-ALT-DEL and entering the "maertsJ" password, which is hard-coded into lshell. | [email protected] | 4.6 | 0.15% | 2004-12-31 | 2026-04-16 |
| CVE-2004-2049 | eSeSIX Thintune thin clients running firmware 2.4.38 and earlier store sensitive usernames and passwords in cleartext in configuration files for the keeper library, which allows attackers to gain access. | [email protected] | 4.6 | 0.07% | 2004-12-31 | 2026-04-16 |
| CVE-2004-2048 | radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default "jstwo" password, which allows remote attackers to gain access. | [email protected] | 10.0 | 3.20% | 2004-12-31 | 2026-04-16 |
| CVE-2004-2051 | The Phoenix browser in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allows local users to read arbitrary files via a file:/// URL. | [email protected] | 5.0 | 0.51% | 2004-07-24 | 2026-04-16 |