139 matches found
EUVD-2017-4238
Malware in sbrugna...
EUVD-2017-14256
Malware in sbrugna...
CVE-2011-2956
AzeoTech DAQFactory before 5.85 Build 1842 does not perform authentication for certain signals, which allows remote attackers to cause a denial of service system reboot or shutdown via a signal...
CVE-2021-42703 AzeoTech DAQFactory
This vulnerability could allow an attacker to send malicious Javascript code resulting in hijacking of the user’s cookie/session tokens, redirecting the user to a malicious webpage, and performing unintended browser action...
CVE-2021-42706 AzeoTech DAQFactory
This vulnerability could allow an attacker to disclose information and execute arbitrary code on affected installations of WebAccess/MHI Designer...
CVE-2021-42701 AzeoTech DAQFactory
An attacker could prepare a specially crafted project file that, if opened, would attempt to connect to the cloud and trigger a man in the middle MiTM attack. This could allow an attacker to obtain credentials and take over the user’s cloud account...
CVE-2021-42543 AzeoTech DAQFactory
The affected application uses specific functions that could be abused through a crafted project file, which could lead to code execution, system reboot, and system shutdown...
CVE-2021-42699 AzeoTech DAQFactory
The affected product is vulnerable to cookie information being transmitted as cleartext over HTTP. An attacker can capture network traffic, obtain the user’s cookie and take over the account...
Unspecified vulnerability in DAQFactory
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A security vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability can be exploited by an attacker via a...
DAQFactory Deserialization Vulnerability
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A deserialization vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. An attacker can exploit this vulnerability to corrupt...
DAQFactory Plaintext Transfer Vulnerability
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A plaintext transfer vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability stems from cookie information bein...
AzeoTech DAQFactory 代码问题漏洞
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A deserialization vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. An attacker can exploit this vulnerability to corrupt...
AzeoTech DAQFactory 信息泄露漏洞
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A plaintext transfer vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability stems from cookie information bein...
AzeoTech DAQFactory 输入验证错误漏洞
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A man-in-the-middle attack vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability can be exploited by an...
AzeoTech DAQFactory 输入验证错误漏洞
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A security vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability can be exploited by an attacker via a...
DAQFactory Man-in-the-Middle Attack Vulnerability
DAQFactory is a software and application development platform that provides a variety of tools that allow you to easily create HMI/SCADA applications. A man-in-the-middle attack vulnerability exists in DAQFactory 18.1 Build 2347 and earlier versions. The vulnerability can be exploited by an...
AzeoTech DAQFactory
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: AzeoTech Equipment: DAQFactory Vulnerabilities: Use of Inherently Dangerous Function, Deserialization of Untrusted Data, Cleartext Transmission of Sensitive Information, Modification of Assumed-Immutable Data MAID 2. RISK...
CVE-2017-5147
An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...
CVE-2017-12699
An Incorrect Default Permissions issue was discovered in AzeoTech DAQFactory versions prior to 17.1. Local, non-administrative users may be able to replace or modify original application files with malicious ones...
CVE-2017-5147
An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path...