Fuji Electric V-SFT set_plc_type_default Function Buffer Overflow Vulnerability

Fuji Electric V-SFT is a screen configuration software from Fuji Electric Japan. Fuji Electric V-SFT suffers from a buffer overflow vulnerability that originates from the failure of the setplctypedefault function in VS6MemInIF.dll to properly validate the length of input data, which can be...

CVE-2020-15084

In express-jwt NPM package up and including version 5.3.3, the algorithms entry to be specified in the configuration is not being enforced. When algorithms is not specified in the configuration, with the combination of jwks-rsa, it may lead to authorization bypass. You are affected by this...

Fuji Electric Monitouch V-SFT Buffer Overflow Vulnerability (CNVD-2025-13533)

Fuji Electric Monitouch V-SFT is a screen configuration software from Fuji Electric Japan. A buffer overflow vulnerability exists in Fuji Electric Monitouch V-SFT that stems from a type confusion. An attacker could exploit the vulnerability to execute arbitrary code...

CVE-2023-4601 Stack-based Buffer Overflow in NI System Configuration Software

A stack-based buffer overflow vulnerability exists in NI System Configuration that could result in information disclosure and/or arbitrary code execution. Successful exploitation requires that an attacker can provide a specially crafted response. This affects NI System Configuration 2023 Q3 and a...

Intel Setup and Configuration Software 安全漏洞

Intel Setup and Configuration Software Intel SCS is a modular, cross-platform experience from Intel Corporation USA. Discover, enable, and manage Intel features in your organization securely. A security vulnerability exists in Intel Setup and Configuration Software. An attacker could exploit the...

Schneider Electric Easergy Builder Code Issue Vulnerability

Schneider Electric Easergy Builder is a set of configuration software for Easergy remote terminal units and controllers from Schneider Electric, France. A code issue vulnerability exists in Schneider Electric Easergy Builder version 1.7.23 and earlier, which stems from the presence of an...

Siemens SIMATIC 安全漏洞

Siemens SIMATIC is a configuration software from Siemens. A security vulnerability exists in Siemens SIMATIC that stems from multiple vulnerabilities that allow an attacker to use Independent BIOS Developers via UEFI...

Siemens SIMATIC 安全漏洞

Siemens SIMATIC is a Siemens configuration software. A security vulnerability exists in Siemens SIMATIC that stems from multiple vulnerabilities that allow an attacker to use Independent BIOS Developers via UEFI...

Beijing ACH Technology Development Co., Ltd. has a DLL hijacking vulnerability in kingView

KingView is the first industrial configuration software product launched in China by Beijing Acontrol Technology Development Co. Ltd. has a DLL hijacking vulnerability, which can be exploited by attackers to load malicious DLL files for command execution...

The vulnerability of the software for configuring and diagnosing processes in ToolboxST arises from improper restrictions on XML references to external objects, which allows attackers to disclose sensitive information.

The vulnerability of the software for configuring and diagnosing processes in ToolboxST is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

Intel 多款产品安全漏洞

Intel AMT SDK for Windows and others are products of Intel Corporation.Intel AMT SDK for Windows is a development kit for providing basic development functionality for Active Management Technology AMT.Intel Setup and Configuration Software Intel SCS is a modular, cross-platform experience. Intel...

Schneider Electric SESU

1. EXECUTIVE SUMMARY CVSS v3 3.8 ATTENTION: Low attack complexity Vendor: Schneider Electric Equipment: Schneider Electric Software Update SESU Vulnerability: Insufficient Entropy 2. RISK EVALUATION Successful exploitation of this vulnerability could cause unintended connection from an internal...

How to install custom FreeBSD configuration files on a Netscaler

As a Netscaler is an appliance, the root filesystem which is a RAMDisk is restored from a non-modifiable image during every boot. As such, modifications to any FreeBSD configuration files in /etc will be erased upon reboot. This article shows how to properly install supported modifications to...

CVE-2020-27464

An insecure update feature in the /updater.php component of rConfig 3.9.6 and below allows attackers to execute arbitrary code via a crafted ZIP file...

SoSafe Configurable 代码问题漏洞

SoSafe Configurable is a software application from Schneider-electric, France. A configuration software. A code issue vulnerability exists in SoSafe Configurable that stems from code execution that could result from opening a malicious project file...

Weak password vulnerability in WTScada configuration software

Changzhou Wenting Software Co., Ltd. was established on August 20, 2014, and the company's business scope includes: software development; software sales; computer system integration, etc. WTScada configuration software has a weak password vulnerability, attackers use the weak password to log in t...

Binary vulnerability in Century Star configuration software of Beijing Century Changqiu Technology Co. Ltd (CNVD-2021-39297)

Century Star is a PC-based HMI configuration software developed by Beijing Century Changqiu Technology Co. A binary vulnerability exists in the Century Star configuration software of Beijing Century Changqiu Technology Co., Ltd. that can be exploited by an attacker to send a well-constructed pack...

Memory Corruption Vulnerability in AlarmWebEx.ocx Control of CenturyStar Configuration Software

Century Star Configuration Software is an obstruction software launched by Beijing Century Changqiu Technology Co., Ltd. is a real-time human-machine interface utility program generator, consisting of the CSMaker development system and CSViewer runtime system, the CSMaker development system is th...

Binary Vulnerability in MapWeb.ocx Control of CenturyStar Configuration Software

Century Star Configuration Software is an obstruction software launched by Beijing Century Changqiu Technology Co., Ltd. is a real-time human-machine interface utility program generator, consisting of the CSMaker development system and CSViewer runtime system, the CSMaker development system is th...

Null Pointer Reference Vulnerability in MiniWebBrowser.ocx Control of CenturyStar Configuration Software

Century Star Configuration Software is an obstruction software launched by Beijing Century Changqiu Technology Co., Ltd. is a real-time human-machine interface utility program generator, consisting of the CSMaker development system and CSViewer runtime system, the CSMaker development system is th...