4 matches found
CVE-2020-25185
creationtimestamp| type| source ---|---|--- 2020-11-21 12:43:39+00:00| seen| https://t.me/cibsecurity/16684...
CVE-2020-25185
Paradox IP150 (LAN module) is affected. CVE-2020-25185 covers five post-authentication buffer overflows in IP150 firmware 5.02.09 that may allow a logged-in attacker to remotely execute arbitrary code. The related CVE-2020-25189 covers three stack-based buffer overflows with a CVSS v3 base score ...
Multiple Industrial Control System Vendors Warn of Critical Bugs
Industrial control system firms Real Time Automation and Paradox both warned of critical vulnerabilities Tuesday that opened systems up to remote attacks by adversaries. Flaws are rated 9.8 out of 10 in severity by the industry standard Common Vulnerability Scoring System. The Real Time Automatio...
Paradox IP150 (Update A)
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Paradox Equipment: IP150 Vulnerabilities: Stack-based Buffer Overflow, Classic Buffer Overflow 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled...