66 matches found
CVE-2025-9160 Rockwell Automation CompactLogix® 5480 Code Execution Vulnerability
A code execution security issue exists in the affected product. An attacker with physical access could abuse the maintenance menu of the controller with a crafted payload. The security issue can result in arbitrary code execution...
CVE-2025-9160 Rockwell Automation CompactLogix® 5480 Code Execution Vulnerability
A code execution security issue exists in the affected product. An attacker with physical access could abuse the maintenance menu of the controller with a crafted payload. The security issue can result in arbitrary code execution...
CVE-2025-9160
CVE-2025-9160 is a code execution vulnerability affecting Rockwell Automation CompactLogix 5480 controllers. The issue allows an attacker with physical access to abuse the controller’s maintenance menu by sending a crafted payload, potentially resulting in arbitrary code execution. Exploitation d...
Rockwell Automation CompactLogix® 5480
RISK EVALUATION Successful exploitation of this vulnerability could result in arbitrary code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control system...
Rockwell Automation CompactLogix 5480 安全漏洞
The Rockwell Automation CompactLogix 5480 is a programmable logic controller from Rockwell Automation USA. A security vulnerability exists in the Rockwell Automation CompactLogix 5480 that originates from physical access to the Abuse Maintenance menu and could lead to the execution of arbitrary...
CVE-2025-5480
Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to explo...
CVE-2025-5480 Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to explo...
CVE-2025-5480
CVE-2025-5480 describes an Uncontrolled Search Path Element Local Privilege Escalation in Action1. The root cause is the product loading an OpenSSL configuration file from an unsecured location, enabling a local attacker who can execute low-privileged code to escalate to SYSTEM and potentially ex...
CVE-2025-5480 Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to explo...
CVE-2025-5480
creationtimestamp| type| source ---|---|--- 2025-06-03 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-323/...
CVE-2013-5480
The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service device reload via a crafted IPv4 DNS TCP stream, aka Bug ID CSCuf28733...
CVE-2024-5480
creationtimestamp| type| source ---|---|--- 2024-06-09 12:23:01+00:00| published-proof-of-concept| https://t.me/HackingInsights/1995 2024-06-10 20:17:20+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/10651...
openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0368-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2023-0322 Updated chromium-browser-stable packages fix bugs and vulnerabilities
The chromium-browser-stable package has been updated to the 119.0.6045.159 release, fixing bugs and 15 vulnerabilities, together with 119.0.6045.123 and 119.0.6045.105; some of them are listed below: High CVE-2023-5480: Inappropriate implementation in Payments. Reported by Vsevolod Kokorin Slonse...
VMware Cloud Director Authentication Bypass (VMSA-2023-0026)
VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass log...
Fedora: Security Advisory for chromium (FEDORA-2023-f29e9560a1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-34060
VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass log...
Authentication flaw
VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 10.5 from an older version. On an upgraded version of VMware Cloud Director Appliance 10.5, a malicious actor with network access to the appliance can bypass log...
Vulnerabilities fixed in Microsoft Edge
Microsoft has fixed vulnerabilities in Edge. A malicious person could exploit the vulnerabilities to impersonate another user, grant himself elevated privileges or execute arbitrary code execute arbitrary code in the context of the browser. Successful exploitation requires the malicious party to...
PT-2023-6954 · Vmware · Vmware Cloud Director Appliance +1
Name of the Vulnerable Software and Affected Versions: VMware Cloud Director Appliance versions 10.5 through 10.5 Description: The issue concerns an authentication bypass vulnerability in VMware Cloud Director Appliance. A malicious actor with network access to the appliance can bypass login...