Lucene search
K

497 matches found

Prion
Prion
added 2019/09/13 5:15 p.m.22 views

Design/Logic Flaw

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0 SP1. Some pages that should only be accessible by a privileged user can also be accessed by a non-privileged user. The security vulnerability could be exploited by an attacker with network access and valid...

4CVSS4.8AI score0.00831EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/09/13 4:38 p.m.268 views

CVE-2019-13919

Siemens SINEMA Remote Connect Server (all versions

4.3CVSS5AI score0.00831EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/09/13 4:38 p.m.275 views

CVE-2019-13922

Siemens SINEMA Remote Connect Server (all versions

4CVSS4.5AI score0.00552EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/09/13 4:38 p.m.278 views

CVE-2019-13920

Siemens SINEMA Remote Connect Server, pre-2.0 SP1, has a Cross‑Site Request Forgery (CSRF) vulnerability in the web interface that could allow an attacker to trigger requests from a logged‑in user and switch the connectivity state of a user or device. Root cause: CSRF in the web application (CVE-...

4.3CVSS4.7AI score0.00426EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/09/13 4:38 p.m.26 views

CVE-2019-13920

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0 SP1. Some parts of the web application are not protected against Cross Site Request Forgery CSRF attacks. The security vulnerability could be exploited by an attacker that is able to trigger requests of a...

4.9AI score0.00426EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/09/13 4:38 p.m.26 views

CVE-2019-13918

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0 SP1. The web interface has no means to prevent password guessing attacks. The vulnerability could be exploited by an attacker with network access to the vulnerable software, requiring no privileges and no user...

9.3AI score0.01514EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/11 12:0 a.m.4 views

Siemens SINEMA Remote Connect Server Cross-Site Request Forgery Vulnerability

Siemens SINEMA Remote Connect Server is a server application. SINEMA Remote Connect allows users to access remote equipment or machines so that maintenance can be performed easily and safely. A security vulnerability exists in Siemens SINEMA Remote Connect Server. An attacker could exploit this...

4.3CVSS6.8AI score0.00426EPSS
Exploits0References1
ICS
ICS
added 2019/09/10 12:0 a.m.120 views

ICSA-19-260-02 Siemens SINEMA Remote Connect Server

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: SINEMA Remote Connect Server Vulnerabilities: Improper Restriction of Excessive Authentication Attempts, Information Exposure, Cross-Site Request Forgery, Use of Password Hash with Insufficient...

9.8CVSS6.6AI score0.01514EPSS
Exploits0References9
OSV
OSV
added 2019/07/01 3:15 p.m.3 views

CVE-2019-4386

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 11.1 could allow an authenticated user to execute a function that would cause the server to crash. IBM X-Force ID: 162714...

6.5CVSS7AI score0.0207EPSS
Exploits0References3
OSV
OSV
added 2019/07/01 3:15 p.m.1 views

CVE-2019-4154

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-Force ID: 158519...

7.8CVSS7.7AI score0.00531EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2019/07/01 12:0 a.m.2 views

PT-2019-17054 · Ibm · Ibm Db2

Name of the Vulnerable Software and Affected Versions: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server version 11.1 Description: The issue allows an authenticated user to execute a function that would cause the server to crash. Recommendations: For IBM DB2 for Linux, UNIX and...

6.5CVSS7AI score0.0207EPSS
Exploits0References5
NVD
NVD
added 2019/04/17 2:29 p.m.17 views

CVE-2019-6570

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0. Due to insufficient checking of user permissions, an attacker may access URLs that require special authorization. An attacker must have access to a low privileged account in order to exploit the vulnerability...

9CVSS8.8AI score0.01351EPSS
Exploits0References1
Prion
Prion
added 2019/04/17 2:29 p.m.18 views

Design/Logic Flaw

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0. Due to insufficient checking of user permissions, an attacker may access URLs that require special authorization. An attacker must have access to a low privileged account in order to exploit the vulnerability...

9CVSS8.7AI score0.01351EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/04/17 1:40 p.m.54 views

CVE-2019-6570

CVE-2019-6570 affects Siemens SINEMA Remote Connect Server (all versions prior to 2.0). The root cause is an insufficient checking of user permissions, enabling an attacker with a low-privileged account and network access to reach URLs that require special authorization, impacting confidentiality...

9CVSS8.3AI score0.01351EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/04/17 1:40 p.m.17 views

CVE-2019-6570

A vulnerability has been identified in SINEMA Remote Connect Server All versions V2.0. Due to insufficient checking of user permissions, an attacker may access URLs that require special authorization. An attacker must have access to a low privileged account in order to exploit the vulnerability...

8.4AI score0.01351EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/04 12:0 a.m.2 views

IBM DB2 Buffer Overflow Vulnerability (CNVD-2019-40603)

IBM DB2 is a set of relational database management system from IBM in the United States. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. A buffer overflow vulnerability exists in IBM DB2 including: DB2 Connect Server, which originates from...

8.4CVSS7.4AI score0.00508EPSS
Exploits0References1
CNVD
CNVD
added 2019/03/12 12:0 a.m.6 views

IBM DB2 Buffer Overflow Vulnerability (CNVD-2019-07255)

IBM DB2 is a set of relational database management system from IBM in the United States. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. A buffer overflow vulnerability exists in IBM DB2 including: DB2 Connect Server based on Linux, UNIX a...

8.4CVSS7.8AI score0.00531EPSS
Exploits0References1
CNVD
CNVD
added 2019/03/12 12:0 a.m.4 views

IBM DB2 Buffer Overflow Vulnerability (CNVD-2019-07260)

IBM DB2 is a set of relational database management system from IBM in the United States. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. A buffer overflow vulnerability exists in IBM DB2 including DB2 Connect Server based on Linux, UNIX an...

8.4CVSS7.8AI score0.00539EPSS
Exploits0References1
CNVD
CNVD
added 2019/03/12 12:0 a.m.6 views

IBM DB2 Buffer Overflow Vulnerability (CNVD-2019-07258)

IBM DB2 is a set of relational database management system from IBM in the United States. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. A buffer overflow vulnerability exists in IBM DB2 including: DB2 Connect Server based on Linux, UNIX a...

8.4CVSS7.8AI score0.00532EPSS
Exploits0References1
OSV
OSV
added 2019/03/11 10:29 p.m.2 views

CVE-2018-1923

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 9.7, 10.1, 10.5, and 11.1 is affected by buffer overflow vulnerability that can potentially result in arbitrary code execution. IBM X-Force ID: 152859...

7.8CVSS6.3AI score0.00532EPSS
Exploits0References3
Rows per page
Query Builder