12 matches found
EUVD-2022-43907
Malicious code in bioql PyPI...
CVE-2024-47943
The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Processing Unit devices checks if the patch files are signed before executing the containing run.sh script. The signing process is kind of an HMAC with a long string as key which is hard-coded in the...
CVE-2024-47943 Improper signature verification of firmware upgrade files
The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Processing Unit devices checks if the patch files are signed before executing the containing run.sh script. The signing process is kind of an HMAC with a long string as key which is hard-coded in the...
CVE-2024-47943
CVE-2024-47943 affects the Rittal IoT Interface & CMC III Processing Unit. The firmware upgrade feature does not properly verify patch signatures: the signing uses an HMAC-like mechanism with a hard-coded key, which is publicly available, allowing attackers to craft malicious signed .patch files ...
CVE-2024-47943 Improper signature verification of firmware upgrade files
The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Processing Unit devices checks if the patch files are signed before executing the containing run.sh script. The signing process is kind of an HMAC with a long string as key which is hard-coded in the...
PT-2024-32905 · Rittal · Iot Interface & Cmc Iii Processing Unit
Name of the Vulnerable Software and Affected Versions: Rittal IoT Interface & CMC III Processing Unit affected versions not specified Description: The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Processing Unit devices checks if the patch files are...
Rittal IoT Interface & CMC III Processing Unit 安全漏洞
The Rittal IoT Interface & CMC III Processing Unit is a key component of Rittal Germany's Smart Networking of Sensors for monitoring physical environmental conditions. A security vulnerability exists in the Rittal IoT Interface & CMC III Processing Unit prior to version 6.21.00.2, which stems fro...
Rittal IoT Interface & CMC III Processing Unit 安全漏洞
The Rittal IoT Interface & CMC III Processing Unit is a key component of Rittal Germany's Smart Networking of Sensors for monitoring physical environmental conditions. A security vulnerability exists in Rittal IoT Interface & CMC III Processing Unit versions prior to 6.21.00.2, which stems from a...
Rittal CMC III Access systems
1. EXECUTIVE SUMMARY CVSS v3 4.8 Vendor: Rittal Equipment: CMC III Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to open control cabinets secured with Rittal locks. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS Rittal...
Design/Logic Flaw
A malicious actor can clone access cards used to open control cabinets secured with Rittal CMC III locks...
CVE-2022-40633 Rittal CMC III Improper Access Control
A malicious actor can clone access cards used to open control cabinets secured with Rittal CMC III locks...
CVE-2022-40633
CVE-2022-40633 affects Rittal CMC III control cabinet locks. The root issue is Improper Access Control, enabling a malicious actor to clone access cards to open cabinets. Public sources describe the impact as unauthorized physical access to secured cabinets, with CVSSv3 base metrics (AV: Physical...