13 matches found
EUVD-2024-49462
Malicious code in bioql PyPI...
EUVD-2024-49459
Malicious code in bioql PyPI...
CVE-2024-8892
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify any configuration value, even if the device has the user/password authentication option enabled, without authentication by sending packets through the UDP protocol and port 2000, deconfiguring the...
CVE-2024-8892 Uncontrolled Resource Consumption vulnerability on CIRCUTOR TCP2RS+
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify any configuration value, even if the device has the user/password authentication option enabled, without authentication by sending packets through the UDP protocol and port 2000, deconfiguring the...
CVE-2024-8892 Uncontrolled Resource Consumption vulnerability on CIRCUTOR TCP2RS+
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify any configuration value, even if the device has the user/password authentication option enabled, without authentication by sending packets through the UDP protocol and port 2000, deconfiguring the...
CVE-2024-8892
CVE-2024-8892 affects CIRCUTOR TCP2RS+ firmware v1.3b. A vulnerability allows an unauthenticated attacker to modify any configuration value by sending packets to UDP port 2000, deconfiguring the device and making it unusable. The device is described as end-of-life. Mitigation from PT-2024-39304 s...
CVE-2024-8889
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify any configuration value, even if the device has the user/password authentication option enabled, without authentication by sending packets through the UDP protocol and port 2000, deconfiguring the...
CVE-2024-8889
CVE-2024-8889 affects CIRCUTOR TCP2RS+ firmware v1.3b. The root cause is improper input validation that lets an attacker modify any configuration value via UDP port 2000 without authentication, even if user/password is enabled, deconfiguring the device and causing it to be unusable. The issue imp...
CVE-2024-8889 Improper Input Validation vulnerability on CIRCUTOR TCP2RS+
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify any configuration value, even if the device has the user/password authentication option enabled, without authentication by sending packets through the UDP protocol and port 2000, deconfiguring the...
CVE-2024-8889 Improper Input Validation vulnerability on CIRCUTOR TCP2RS+
Vulnerability in CIRCUTOR TCP2RS+ firmware version 1.3b, which could allow an attacker to modify any configuration value, even if the device has the user/password authentication option enabled, without authentication by sending packets through the UDP protocol and port 2000, deconfiguring the...
CIRCUTOR TCP2RS+ 安全漏洞
CIRCUTOR TCP2RS+ is an Ethernet converter from CIRCUTOR. A security vulnerability exists in CIRCUTOR TCP2RS+ version 1.3b, which originated from a vulnerability that allows an attacker to modify any configuration value without authentication, resulting in invalidating the device's configuration a...
CIRCUTOR TCP2RS+ 输入验证错误漏洞
CIRCUTOR TCP2RS+ is an Ethernet converter from CIRCUTOR. An input validation error vulnerability exists in CIRCUTOR TCP2RS+ version 1.3b, which originates from a vulnerability that allows an attacker to modify any configuration value without authentication, resulting in invalidating the device's...
PT-2024-39301 · Circutor · Circutor Tcp2Rs+
Name of the Vulnerable Software and Affected Versions: CIRCUTOR TCP2RS+ version 1.3b Description: The issue allows an attacker to modify any configuration value without authentication by sending packets through the UDP protocol and port 2000, deconfiguring the device and thus disabling its use,...