CVE-2026-45222

Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates the daemon configuration directory and file with default filesystem permissions that may be world-readable on Unix-like systems, allowing local attackers to read bearer tokens and API credentials stored in /.summarize/daemon.json...

CVE-2026-45222 Summarize Insecure Daemon Configuration File Permissions

Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates the daemon configuration directory and file with default filesystem permissions that may be world-readable on Unix-like systems, allowing local attackers to read bearer tokens and API credentials stored in /.summarize/daemon.json...

Westermo Lynx 206-F2G Improper Neutralization of Input During Web Page Generation (CVE-2023-45222)

An attacker with access to the Westermo Lynx web application that has the vulnerable software could introduce arbitrary JavaScript by injecting a cross-site scripting payload into the 'autorefresh' parameter. This plugin only works with Tenable.ot. Please visit...

CVE-2023-45222

creationtimestamp| type| source ---|---|--- 2024-02-06 23:31:28+00:00| seen| https://t.me/ctinow/180399 2024-02-17 12:41:37+00:00| seen| https://t.me/ctinow/186900...

CVE-2023-45222 Westermo Lynx Cross-site Scripting

An attacker with access to the web application that has the vulnerable software could introduce arbitrary JavaScript by injecting a cross-site scripting payload into the "autorefresh" parameter...

CVE-2023-45222

CVE-2023-45222 affects the Westermo Lynx 206-F2G web interface (WeOS) where an attacker with access to the web app can inject arbitrary JavaScript via the autorefresh parameter (Cross-Site Scripting, CWE-79). Public disclosures (NVD/NIST, Tenable OT plugin, CNVD, PRION, CVE list) describe identic...

Siemens SINEMA Remote Connect Server has an unspecified vulnerability (CNVD-2022-45222)

SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunnel connections VPNs between headquarters, service technicians, and installed machines or plants.A security vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from a system image...

CVE-2021-45222

creationtimestamp| type| source ---|---|--- 2022-01-24 22:17:55+00:00| seen| https://t.me/cibsecurity/36162...

CVE-2021-45222

An issue was discovered in COINS Construction Cloud 11.12. Due to logical flaws in the human ressources interface, it is vulnerable to privilege escalation by HR personnel...

CVE-2021-45222

CVE-2021-45222 affects COINS Construction Cloud 11.12. The connected PT-Security entry confirms a vulnerability caused by logical flaws in the human resources interface that allows privilege escalation by HR personnel. No exploit details are provided in the documents. Recommendation from PT-Secur...