EUVD-2023-24086

Malicious code in bioql PyPI...

CVE-2023-1899

Atlas Copco Power Focus 6000 web server is not a secure connection by default, which could allow an attacker to gain sensitive information by monitoring network traffic between user and controller...

CVE-2023-1899

Atlas Copco Power Focus 6000 web server is not a secure connection by default, which could allow an attacker to gain sensitive information by monitoring network traffic between user and controller...

CVE-2023-1897

Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller...

CVE-2023-1898

Atlas Copco Power Focus 6000 web server uses a small amount of session ID numbers. An attacker could enter a session ID number to retrieve data for an active user’s session...

Design/Logic Flaw

Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller...

Session fixation

Atlas Copco Power Focus 6000 web server uses a small amount of session ID numbers. An attacker could enter a session ID number to retrieve data for an active user’s session...

Code injection

Atlas Copco Power Focus 6000 web server is not a secure connection by default, which could allow an attacker to gain sensitive information by monitoring network traffic between user and controller...

CVE-2023-1897 CVE-2023-1897

Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller...

CVE-2023-1897

Atlas Copco Power Focus 6000 web server is affected by CVE-2023-1897: it does not sanitize login information stored by the authenticated user’s browser, allowing a user‑with‑access‑to‑their‑computer attacker to obtain credentials for the controller. Affected product: Power Focus 6000 web server (...

CVE-2023-1897 CVE-2023-1897

Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller...

CVE-2023-1898 CVE-2023-1898

Atlas Copco Power Focus 6000 web server uses a small amount of session ID numbers. An attacker could enter a session ID number to retrieve data for an active user’s session...

CVE-2023-1898 CVE-2023-1898

Atlas Copco Power Focus 6000 web server uses a small amount of session ID numbers. An attacker could enter a session ID number to retrieve data for an active user’s session...

CVE-2023-1898

CVE-2023-1898 affects Atlas Copco Power Focus 6000 web server. The issue is a small space of session IDs that could allow an attacker to enter a valid session ID and retrieve data for an active user’s session. Reported as a high-severity, remotely exploitable condition with low attack complexity ...

CVE-2023-1899 CVE-2023-1899

Atlas Copco Power Focus 6000 web server is not a secure connection by default, which could allow an attacker to gain sensitive information by monitoring network traffic between user and controller...

CVE-2023-1899 CVE-2023-1899

Atlas Copco Power Focus 6000 web server is not a secure connection by default, which could allow an attacker to gain sensitive information by monitoring network traffic between user and controller...

CVE-2023-1899

Atlas Copco Power Focus 6000 web server is affected by CVE-2023-1899 (cleartext transmission of sensitive information). Public documents confirm that the Power Focus 6000 web interface does not use a secure connection by default, enabling potential interception of credentials or sensitive data ov...

PT-2023-17325 · Atlas Copco · Atlas Copco Power Focus 6000

Name of the Vulnerable Software and Affected Versions: Atlas Copco Power Focus 6000 affected versions not specified Description: The issue concerns the Atlas Copco Power Focus 6000 web server, which does not use a secure connection by default. This could allow an attacker to gain sensitive...

PT-2023-17323 · Atlas Copco · Atlas Copco Power Focus 6000

Name of the Vulnerable Software and Affected Versions: Atlas Copco Power Focus 6000 affected versions not specified Description: The issue concerns the Atlas Copco Power Focus 6000 web server, which fails to sanitize login information stored by the authenticated user's browser. This could allow a...

PT-2023-17324 · Atlas Copco · Atlas Copco Power Focus 6000

Name of the Vulnerable Software and Affected Versions: Atlas Copco Power Focus 6000 affected versions not specified Description: The issue concerns the Atlas Copco Power Focus 6000 web server, which utilizes a limited number of session ID numbers. This could allow an attacker to guess or enter a...