22 matches found
EUVD-2023-32364
Malicious code in bioql PyPI...
EUVD-2023-32365
Malicious code in bioql PyPI...
CVE-2023-28727
Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers...
CVE-2023-28726
Panasonic AiSEG2 versions 2.80F through 2.93A allows remote attackers to execute arbitrary OS commands...
Multiple vulnerabilities in Panasonic AiSEG2
Overview Panasonic AiSEG2 contains multiple vulnerabilities listed below. OS Command Injection CWE-78 - CVE-2023-28726 Improper Authentication CWE-287 - CVE-2023-28727 Taku Toyama of NEC Corporation reported CVE-2023-28726 and CVE-2023-28727 vulnerabilities to Panasonic and coordinated. Panasonic...
JVN#19748237: Multiple vulnerabilities in Panasonic AiSEG2
Panasonic AiSEG2 contains multiple vulnerabilities listed below. OS Command Injection CWE-78 - CVE-2023-28726 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H| Base Score: 7.5 CVSS v2| AV:N/AC:H/Au:S/C:C/I:C/A:C| Base Score: 7.1 Improper Authentication...
CVE-2023-28727
Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers...
CVE-2023-28727
Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers...
CVE-2023-28726
Panasonic AiSEG2 versions 2.80F through 2.93A allows remote attackers to execute arbitrary OS commands...
CVE-2023-28726
Panasonic AiSEG2 versions 2.80F through 2.93A allows remote attackers to execute arbitrary OS commands...
Authentication flaw
Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers...
Design/Logic Flaw
Panasonic AiSEG2 versions 2.80F through 2.93A allows remote attackers to execute arbitrary OS commands...
CVE-2023-28727
Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers...
CVE-2023-28727
Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers...
CVE-2023-28727
CVE-2023-28727 affects Panasonic AiSEG2 firmware versions 2.00J–2.93A. The issue is an authentication bypass caused by mishandling of the X-Forwarded-For header, enabling adjacent attackers to bypass authentication. Public sources in the connected data confirm the product (AiSEG2) and affected ra...
CVE-2023-28726
Panasonic AiSEG2 versions 2.80F through 2.93A allows remote attackers to execute arbitrary OS commands...
CVE-2023-28726
Panasonic AiSEG2 versions 2.80F through 2.93A allows remote attackers to execute arbitrary OS commands...
CVE-2023-28726
Panasonic AiSEG2 firmware versions 2.80F–2.93A are affected by CVE-2023-28726, an OS command injection vulnerability. The issue allows a remote attacker who can access the device to execute arbitrary operating system commands. Connected sources confirm the affected range and remediation guidance:...
PT-2023-21924 · Panasonic · Panasonic Aiseg2
Name of the Vulnerable Software and Affected Versions: Panasonic AiSEG2 versions 2.00J through 2.93A Description: The issue allows adjacent attackers to bypass authentication due to mishandling of X-Forwarded-For headers. This can be exploited by attackers to gain unauthorized access...
PT-2023-21923 · Panasonic · Panasonic Aiseg2
Name of the Vulnerable Software and Affected Versions: Panasonic AiSEG2 versions 2.80F through 2.93A Description: The issue allows remote attackers to execute arbitrary OS commands. Recommendations: For versions 2.80F through 2.93A, update to a version that contains a fix for this issue. At the...