CVE-2022-41261

SAP Solution Manager Diagnostic Agent - version 7.20, allows an authenticated attacker on Windows system to access a file containing sensitive data which can be used to access a configuration file which contains credentials to access other system files. Successful exploitation can make the attack...

Horner Automation Remote Compact Controller 加密问题漏洞

The Horner Automation Remote Compact Controller Horner Automation RCC is a compact controller from Horner Automation, USA. A vulnerability exists in Horner Automation Remote Compact Controller 972 firmware version 15.40 due to an encryption issue in the configuration file using weak XOR encryptio...

PT-2022-26183 · Unknown · Super-Xray

Name of the Vulnerable Software and Affected Versions: super-xray versions prior to 0.7 Description: The issue concerns a web vulnerability scanning tool that assumed trusted input for the program config stored in a yaml file. An attacker with local access to the file could exploit this and...

CVE-2022-40976

A path traversal vulnerability was discovered in multiple Pilz products. An unauthenticated local attacker could use a zipped, malicious configuration file to trigger arbitrary file writes 'zip-slip'. File writes do not affect confidentiality or availability...

Path traversal

A path traversal vulnerability was discovered in multiple Pilz products. An unauthenticated local attacker could use a zipped, malicious configuration file to trigger arbitrary file writes 'zip-slip'. File writes do not affect confidentiality or availability...

CVE-2022-40977 PILZ: PASvisu and PMI affected by ZipSlip

A path traversal vulnerability was discovered in Pilz PASvisu Server before 1.12.0. An unauthenticated remote attacker could use a zipped, malicious configuration file to trigger arbitrary file writes 'zip-slip'. File writes do not affect confidentiality or availability...

CVE-2022-41952 Uncontrolled Resource Consumption in Matrix Synapse

Synapse before 1.52.0 with URL preview functionality enabled will attempt to generate URL previews for media stream URLs without properly limiting connection time. Connections will only be terminated after maxspidersize default: 10M bytes have been downloaded, which can in some cases lead to...

CVE-2022-31608

CVE-2022-31608 affects the NVIDIA GPU Display Driver for Linux. The vulnerability lies in an optional D-Bus configuration file, where a local user with basic capabilities can impact protected D-Bus endpoints, potentially enabling code execution, denial of service, privilege escalation, informatio...

CVE-2022-44725

OPC Foundation Local Discovery Server LDS through 1.04.403.478 uses a hard-coded file path to a configuration file. This allows a normal user to create a malicious file that is loaded by LDS running as a high-privilege user...

Design/Logic Flaw

OPC Foundation Local Discovery Server LDS through 1.04.403.478 uses a hard-coded file path to a configuration file. This allows a normal user to create a malicious file that is loaded by LDS running as a high-privilege user...

CVE-2022-44725

OPC Foundation Local Discovery Server LDS through 1.04.403.478 uses a hard-coded file path to a configuration file. This allows a normal user to create a malicious file that is loaded by LDS running as a high-privilege user...

CVE-2022-44725

Summary (CVE-2022-44725): OPC Foundation Local Discovery Server (LDS) vulnerability affecting Siemens/OpenPCS/Siemens SIMATIC components (e.g., OpenPCS 7 V9.1, SIMATIC NET PC Software V14–V18, SIMATIC WinCC Runtime Professional/Unified PC Runtime, TeleControl Server Basic V3, etc.). Root cause: L...

CVE-2022-44725

OPC Foundation Local Discovery Server LDS through 1.04.403.478 uses a hard-coded file path to a configuration file. This allows a normal user to create a malicious file that is loaded by LDS running as a high-privilege user...

Plaintext Storage of a Password in Jenkins NS-ND Integration Performance Publisher Plugin

NS-ND Integration Performance Publisher Plugin 4.8.0.143 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller as part of its configuration. These passwords can be viewed by attackers with Item/Extended Read permission or access to the Jenkins controller file...

Jenkins Plugin Reverse Proxy Auth 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

CVE-2022-38121

UPSMON PRO configuration file stores user password in plaintext under public user directory. A remote attacker with general user privilege can access all users‘ and administrators' account names and passwords via this unprotected configuration file...

Design/Logic Flaw

UPSMON PRO configuration file stores user password in plaintext under public user directory. A remote attacker with general user privilege can access all users‘ and administrators' account names and passwords via this unprotected configuration file...

CVE-2022-41742

A vulnerability was found in NGINX’s module, ngxhttpmp4module. This flaw allows a local attacker to cause a worker process crash or might result in worker process memory disclosure by using a specially crafted audio or video file. The issue affects only NGINX products built with ngxhttpmp4module...

CVE-2022-38121

CVE-2022-38121 affects POWERCOM UPSMON PRO. A vulnerability in the UPSMON PRO configuration file stores user passwords in plaintext under a public user directory, enabling a remote attacker with general user privileges to read credentials. The confirmed impact is exposure of usernames and passwor...

CVE-2022-38121 POWERCOM CO., LTD. UPSMON PRO - Insufficiently Protected Credentials

UPSMON PRO configuration file stores user password in plaintext under public user directory. A remote attacker with general user privilege can access all users‘ and administrators' account names and passwords via this unprotected configuration file...