Lucene search
+L

424 matches found

NVD
NVD
added 2025/08/12 12:15 p.m.30 views

CVE-2024-41984

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application improperly handles error while accessing an inaccessible resource leading to exposing the system applications...

3.5CVSS0.00162EPSS
Exploits0References1
NVD
NVD
added 2025/08/12 12:15 p.m.6 views

CVE-2024-41980

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application do not encrypt the communication in LDAP interface by default. This could allow an authenticated attacker to gain unauthorized access to sensitive...

5.7CVSS0.00122EPSS
Exploits0References1
OSV
OSV
added 2025/08/12 12:15 p.m.7 views

CVE-2024-41985

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application does not expire the session without logout. This could allow an attacker to get unauthorized access if the session is left idle...

7.3CVSS5.7AI score0.00171EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/12 11:16 a.m.11 views

CVE-2024-41985

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application does not expire the session without logout. This could allow an attacker to get unauthorized access if the session is left idle...

2.6CVSS0.00171EPSS
Exploits0References1
CVE
CVE
added 2025/08/12 11:16 a.m.28 views

CVE-2024-41985

CVE-2024-41985 affects Siemens SmartClient modules Opcenter QL Home, SOA Audit and SOA Cockpit (versions 13.2 through 2505; note 2506+ not affected). The root cause is that the affected application does not expire sessions on user inactivity, potentially allowing an attacker to gain unauthorized ...

7.3CVSS6.9AI score0.00171EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/12 11:16 a.m.5 views

CVE-2024-41984

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application improperly handles error while accessing an inaccessible resource leading to exposing the system applications...

2.6CVSS6.9AI score0.00162EPSS
Exploits0References1
CVE
CVE
added 2025/08/12 11:16 a.m.14 views

CVE-2024-41983

The CVE affects SmartClient modules in Opcenter QL Home, SOA Audit, and SOA Cockpit. Affected versions are SmartClient Opcenter QL Home and related modules from 13.2 up to 2505 (approx.

5.1CVSS7.7AI score0.0019EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/12 11:16 a.m.3 views

CVE-2024-41983

A vulnerability has been identified in SmartClient modules Opcenter QL Home SC All versions = V13.2 = V13.2 = V13.2 V2506. The affected application displays SQL statement in the error messages encountered during the generation of reports using Cockpit tool...

5.1CVSS7.7AI score0.0019EPSS
Exploits0References1
CVE
CVE
added 2025/08/12 11:16 a.m.18 views

CVE-2024-41979

CVE-2024-41979 affects Siemens SmartClient modules Opcenter QL Home, SOA Audit, and SOA Cockpit (versions 13.2 through 2505). Root cause: the server does not enforce mandatory authorization on some functionality levels, allowing an authenticated attacker to gain complete access to the application...

8CVSS7AI score0.00171EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.12 views

PT-2025-32638 · Smartclient · Smartclient Opcenter Ql Home +2

Name of the Vulnerable Software and Affected Versions: SmartClient Opcenter QL Home SC versions 13.2 through 2505 SmartClient SOA Audit versions 13.2 through 2505 SmartClient SOA Cockpit versions 13.2 through 2505 Description: The affected application does not enforce mandatory authorization on...

7.5CVSS6.5AI score0.00171EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.13 views

PT-2025-32641 · Smartclient · Soa Audit +2

Name of the Vulnerable Software and Affected Versions: SmartClient Opcenter QL Home SC versions 13.2 through 2505 SmartClient SOA Audit versions 13.2 through 2505 SmartClient SOA Cockpit versions 13.2 through 2505 Description: The affected application displays SQL statements in error messages...

5.1CVSS6.8AI score0.0019EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 3:18 a.m.5 views

CVE-2023-23520

A race condition was addressed with additional validation. This issue is fixed in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. A user may be able to read arbitrary files as root...

5.9CVSS6.2AI score0.00807EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:18 a.m.5 views

CVE-2023-23496

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.2, watchOS 9.3, iOS 15.7.2 and iPadOS 15.7.2, Safari 16.3, tvOS 16.3, iOS 16.3 and iPadOS 16.3. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS7.2AI score0.0089EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:18 a.m.5 views

CVE-2023-23502

An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3, tvOS 16.3, watchOS 9.3. An app may be able to determine kernel memory layout...

5.5CVSS5.8AI score0.00238EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:18 a.m.2 views

CVE-2023-23501

The issue was addressed with improved memory handling This issue is fixed in macOS Ventura 13.2. An app may be able to disclose kernel memory...

5.5CVSS6AI score0.00222EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:37 a.m.2 views

CVE-2023-23493

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.2, macOS Monterey 12.6.3. An encrypted volume may be unmounted and remounted by a different user without prompting for the password...

3.3CVSS6.2AI score0.00208EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:1 a.m.8 views

CVE-2019-8797

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to execute arbitrary code with system privileges...

9.3CVSS7.1AI score0.01398EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:18 a.m.10 views

CVE-2019-8795

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2. An application may be able to execute arbitrary code with system privileges...

9.3CVSS7.3AI score0.01328EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:55 a.m.10 views

CVE-2019-8804

An inconsistency in Wi-Fi network configuration settings was addressed. This issue is fixed in iOS 13.2 and iPadOS 13.2. An attacker in physical proximity may be able to force a user onto a malicious Wi-Fi network during device setup...

5.7CVSS5.8AI score0.0042EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:55 a.m.6 views

CVE-2019-8798

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to execute arbitrary code with system privileges...

5.5CVSS7.1AI score0.00344EPSS
Exploits0References1
Rows per page
Query Builder