CVE-2020-12142

1. IPSec UDP key material can be retrieved from machine-to-machine interfaces and human-accessible interfaces by a user with admin credentials. Such a user, with the required system knowledge, could use this material to decrypt in-flight communication. 2. The vulnerability requires administrative...

Multiple vulnerabilities in ABB Terra AC Wallbox

Overview Terra AC Wallbox provided by ABB contains the following vulnerability. Heap-based buffer overflow CWE-122 - CVE-2025-10504 Classic buffer overflow CWE-120 - CVE-2025-12142 Stack-based buffer overflow CWE-121 - CVE-2025-12143 Ryo Kato of Panasonic reported this vulnerability to IPA...

CVE-2025-12142

creationtimestamp| type| source ---|---|--- 2025-10-29 14:06:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m4dmln7pbb27 2026-05-21 05:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-141-05 2026-05-24 20:13:40+00:00| seen|...

CVE-2024-12142

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure of restricted web page, modification of web page and denial of service when specific web pages are modified and restricted functions are invoked...

CVE-2024-12142

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure of restricted web page, modification of web page and denial of service when specific web pages are modified and restricted functions are invoked...

CVE-2024-12142

creationtimestamp| type| source ---|---|--- 2025-01-17 10:22:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113843197471243477 2025-01-17 10:57:03+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2119 2025-01-17 11:15:26+00:00| seen|...

CVE-2024-12142

Schneider Electric Modicon M340, BMXNOE0100/0110 and BMXNOR0200H are affected by CVE-2024-12142 (CWE-200: Exposure of Sensitive Information to an Unauthorized Actor). The vulnerability allows information disclosure for restricted web pages, modification of web pages, and denial of service when sp...

CVE-2024-12142

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure of restricted web page, modification of web page and denial of service when specific web pages are modified and restricted functions are invoked...

CVE-2020-12142

CVE-2020-12142 affects the EdgeConnect appliance. An admin user with shell access can retrieve IPSec UDP key material (IPSec seed and nonce) via CLI, REST APIs, or the Linux shell, enabling potential decryption of in-flight traffic. The issue requires administrative access and is described across...

CVE-2020-12142 IPSec UDP key material can be retrieved from EdgeConnect by a user with admin credentials

IPSec UDP key material can be retrieved from machine-to-machine interfaces and human-accessible interfaces by a user with admin credentials. Such a user, with the required system knowledge, could use this material to decrypt in-flight communication. 2. The vulnerability requires administrative...

Fedora 30 : 1:ytnef (2019-7d7083b8be)

ytnef 1.9.3 release, fixing a number of security issues : - CVE-2017-9470 - CVE-2017-9471 - CVE-2017-9474 - CVE-2017-9058 - CVE-2017-12142 - CVE-2017-12141 - CVE-2017-12144 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...

DEBIAN-CVE-2017-12142

In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file...

CVE-2017-12142

CVE-2017-12142 affects ytnef 1.9.2, where an invalid memory read in SwapDWord (ytnef.c) allows a crafted file to cause a denial of service. The issue is documented across multiple sources (OSV, NVD, Nessus/NASL feeds) with Fedora’s update stream indicating ytnef-1.9.3 includes the fix. Remediatio...

SuSE9 Security Update : IBM Java 2 JRE and SDK (YOU Patch Number 12142)

IBM Java 1.4.2 was updated to SR10 to fix various security issues : - A buffer overflow vulnerability in Java Web Start may allow an untrusted Java Web Start application that is downloaded from a website to elevate its privileges. For example, an untrusted Java Web Start application may grant...

CVE-2018-12142

CVE-2018-12142 entry is rejected/not used and does not represent an active vulnerability.