11 matches found
EUVD-2024-33716
Malicious code in bioql PyPI...
CVE-2024-5421
Missing input validation and OS command integration of the input in the utnserver Pro, utnserver ProMAX, INU-100 web-interface allows authenticated command injection.This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below...
CVE-2024-5420
Missing input validation in the SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 web-interface allows stored Cross-Site Scripting XSS..This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below...
CVE-2024-11304
Missing input validation in the SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 web-interface allows stored Cross-Site Scripting XSS. This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below...
CVE-2024-11304 Multiple Stored Cross-Site Scripting
Missing input validation in the SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 web-interface allows stored Cross-Site Scripting XSS. This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below...
CVE-2024-11304
CVE-2024-11304 affects SEH Computertechnik utnserver Pro, ProMAX and INU-100 web interfaces. The root cause is missing input validation allowing stored Cross-Site Scripting (XSS) on versions 20.1.22 and earlier. Public sources confirm affected devices and show remediation paths: update to a newer...
SEH utnserver Pro/ProMAX / INU-100 20.1.22 XSS / DoS / File Disclosure
CyberDanube Security Research 20240604-0 ------------------------------------------------------------------------------- title| Multiple Vulnerabilities product| SEH utnserver Pro/ProMAX / INU-100 vulnerable version| 20.1.22 fixed version| 20.1.28 CVE number| CVE-2024-5420, CVE-2024-5421,...
CVE-2024-5421
Missing input validation and OS command integration of the input in the utnserver Pro, utnserver ProMAX, INU-100 web-interface allows authenticated command injection.This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below...
CVE-2024-5422 Denial of Service
An uncontrolled resource consumption of file descriptors in SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 allows DoS via HTTP.This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below...
CVE-2024-5422 Denial of Service
An uncontrolled resource consumption of file descriptors in SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 allows DoS via HTTP.This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below...
CVE-2024-5421 Authenticated Command Injection
Missing input validation and OS command integration of the input in the utnserver Pro, utnserver ProMAX, INU-100 web-interface allows authenticated command injection.This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below...