Lucene search
K

147 matches found

CNNVD
CNNVD
added 2021/11/05 12:0 a.m.5 views

AzeoTech DAQFactory 信息泄露漏洞

DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A plaintext transfer vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability stems from cookie information bein...

5.9CVSS5.6AI score0.0048EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/11/05 12:0 a.m.5 views

AzeoTech DAQFactory 输入验证错误漏洞

DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A security vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability can be exploited by an attacker via a...

7.8CVSS5.9AI score0.00766EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/11/05 12:0 a.m.7 views

AzeoTech DAQFactory 输入验证错误漏洞

DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A man-in-the-middle attack vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability can be exploited by an...

6.3CVSS5.6AI score0.0057EPSS
Exploits0References3
CNVD
CNVD
added 2021/11/05 12:0 a.m.21 views

DAQFactory Deserialization Vulnerability

DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A deserialization vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. An attacker can exploit this vulnerability to corrupt...

7.8CVSS7.6AI score0.00765EPSS
Exploits0References1
ICS
ICS
added 2021/11/04 12:0 a.m.74 views

AzeoTech DAQFactory

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: AzeoTech Equipment: DAQFactory Vulnerabilities: Use of Inherently Dangerous Function, Deserialization of Untrusted Data, Cleartext Transmission of Sensitive Information, Modification of Assumed-Immutable Data MAID 2. RISK...

7.8CVSS7AI score0.00766EPSS
Exploits0References5
OSV
OSV
added 2017/09/09 1:29 a.m.2 views

CVE-2017-12699

An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones...

7.1CVSS5.8AI score0.00324EPSS
Exploits0References2
NVD
NVD
added 2017/09/09 1:29 a.m.15 views

CVE-2017-5147

An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...

5.3CVSS6.1AI score0.00337EPSS
Exploits0References2
OSV
OSV
added 2017/09/09 1:29 a.m.2 views

CVE-2017-5147

An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...

5.3CVSS5.8AI score0.00337EPSS
Exploits0References2
NVD
NVD
added 2017/09/09 1:29 a.m.17 views

CVE-2017-12699

An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones...

7.1CVSS6.8AI score0.00324EPSS
Exploits0References2
Prion
Prion
added 2017/09/09 1:29 a.m.14 views

Default configuration

An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones...

3.6CVSS6.7AI score0.00324EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/09/09 1:29 a.m.13 views

Path traversal

An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...

4.6CVSS6AI score0.00337EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/09/09 1:0 a.m.55 views

CVE-2017-5147

CVE-2017-5147 describes an uncontrolled search path element vulnerability in AzeoTech DAQFactory before version 17.1. The issue allows a local attacker to have the program load a malicious DLL placed in the search path, potentially affecting integrity/availability. ICS-CERT/vulnerability details ...

5.3CVSS5.4AI score0.00337EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/09/09 1:0 a.m.17 views

CVE-2017-5147

An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...

5.5AI score0.00337EPSS
Exploits0References2
CVE
CVE
added 2017/09/09 1:0 a.m.50 views

CVE-2017-12699

CVE-2017-12699 affects AzeoTech DAQFactory prior to 17.1. Two vulnerabilities are described: (1) Incorrect Default Permissions (CWE-276) allowing local, non-administrative users to replace or modify application files with malicious ones; (2) Uncontrolled Search Path Element (CWE-427) that could e...

7.1CVSS6.8AI score0.00324EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/09/09 1:0 a.m.18 views

CVE-2017-12699

An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones...

6.8AI score0.00324EPSS
Exploits0References2
CNVD
CNVD
added 2017/08/30 12:0 a.m.3 views

AzeoTech DAQFactory Unauthorized Modification Vulnerability

AzeoTech DAQFactory is an HMI/SCADA software. An unauthorized modification vulnerability exists in AzeoTech DAQFactory, which can be exploited by a local, unmanaged user to maliciously replace or modify the original application files...

7.1CVSS6.9AI score0.00324EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/30 12:0 a.m.2 views

AzeoTech DAQFactory Uncontrolled Search Path Element Vulnerability

AzeoTech DAQFactory is an HMI/SCADA software. AzeoTech DAQFactory suffers from an uncontrolled search path element vulnerability that can be exploited by an attacker to execute a malicious DLL file that has been placed in the search path...

5.3CVSS5.8AI score0.00337EPSS
Exploits0References1
ICS
ICS
added 2017/08/29 12:0 a.m.41 views

AzeoTech DAQFactory

CVSS v3 7.1 ATTENTION: Local access and user-level privileges are required to exploit these vulnerabilities Vendor: AzeoTech Equipment: DAQFactory Vulnerabilities: Incorrect Default Permissions, Uncontrolled Search Path Element AFFECTED PRODUCTS AzeoTech reports that the vulnerabilities affect th...

7.1CVSS6.8AI score0.00337EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

DAQFactory <= 5.85 build 1853 Stack Overflow

No description provided by source. Luigi Auriemma Application: DAQFactory http://www.azeotech.com/daqfactory.php Versions: = 5.85 build 1853 Platforms: Windows Bug: stack overflow Exploitation: remote Date: 13 Sep 2011 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

DaqFactory HMI NETB Request Overflow

No description provided by source. $Id: daqfactorybof.rb 13750 2011-09-18 02:45:55Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...

7.1AI score
Exploits0
Rows per page
Query Builder