Lucene search
K

44 matches found

CVE
CVE
added 2022/05/27 12:56 p.m.64 views

CVE-2022-29735

CVE-2022-29735 affects Delta Controls enteliTOUCH, specifically versions 3.40.3935, 3.40.3706, and 3.33.4005. The issue is described as a cross-site request forgery (CSRF) vulnerability in which authenticated users can perform certain actions via crafted HTTP requests without proper validation, p...

8.8CVSS8.9AI score0.00943EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2022/05/27 12:56 p.m.25 views

CVE-2022-29733

Delta Controls enteliTOUCH 3.40.3935, 3.40.3706, and 3.33.4005 was discovered to transmit and store sensitive information in cleartext. This vulnerability allows attackers to intercept HTTP Cookie authentication credentials via a man-in-the-middle attack...

5.8AI score0.00664EPSS
Exploits2References2
CVE
CVE
added 2022/05/27 12:56 p.m.91 views

CVE-2022-29733

CVE-2022-29733 affects Delta Controls enteliTOUCH, versions 3.40.3935, 3.40.3706, and 3.33.4005. The root cause is cleartext transmission/storage of sensitive information in HTTP cookies, enabling a man‑in‑the‑middle attacker to intercept cookie authentication credentials. Multiple sources (NVD e...

5.9CVSS5.6AI score0.00664EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2022/05/27 12:56 p.m.40 views

CVE-2022-29732

Delta Controls enteliTOUCH 3.40.3935, 3.40.3706, and 3.33.4005 was discovered to contain a cross-site scripting XSS vulnerability via the Username parameter. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1AI score0.00725EPSS
Exploits2References2
CVE
CVE
added 2022/05/27 12:56 p.m.66 views

CVE-2022-29732

Delta Controls enteliTOUCH 3.40.3935, 3.40.3706, and 3.33.4005 are affected by a cross-site scripting (XSS) flaw in the Username parameter. An attacker can cause arbitrary web scripts/HTML to run in a user’s browser, via a crafted payload. The available documents do not specify a fix or remediati...

6.1CVSS6AI score0.00725EPSS
Exploits2References2Affected Software1
Exploit DB
Exploit DB
added 2022/04/19 12:0 a.m.263 views

Delta Controls enteliTOUCH 3.40.3935 - Cookie User Password Disclosure

Exploit Title: Delta Controls enteliTOUCH 3.40.3935 - Cookie User Password Disclosure Exploit Author: LiquidWorm Vendor: Delta Controls Inc. Product web page: https://www.deltacontrols.com Affected version: 3.40.3935 3.40.3706 3.33.4005 Summary: enteliTOUCH - Touchscreen Building Controller. Get...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2022/04/19 12:0 a.m.280 views

Delta Controls enteliTOUCH 3.40.3935 - Cross-Site Request Forgery (CSRF)

Exploit Tile: Delta Controls enteliTOUCH 3.40.3935 - Cross-Site Request Forgery CSRF Exploit Author: LiquidWorm enteliTouch CSRF CSRF Add User: form action="http://192.168.0.210/deltaweb/hmiuseredit.asp?formActio...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2022/04/19 12:0 a.m.326 views

Delta Controls enteliTOUCH 3.40.3935 - Cross-Site Scripting (XSS)

Exploit Title: Delta Controls enteliTOUCH 3.40.3935 - Cross-Site Scripting XSS Exploit Author: LiquidWorm enteliTouch XSS input type="hidden" nam...

7AI score
Exploits0
0day.today
0day.today
added 2022/04/14 12:0 a.m.247 views

Delta Controls enteliTOUCH 3.40.3935 Cross Site Scripting Vulnerability

enteliTouch XSS alertdocument.cookie" / input type="hidden" n...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/04/14 12:0 a.m.225 views

Delta Controls enteliTOUCH 3.40.3935 Cookie User Password Disclosure Vulnerability

Delta Controls enteliTOUCH 3.40.3935 Cookie User Password Disclosure Vendor: Delta Controls Inc. Product web page: https://www.deltacontrols.com Affected version: 3.40.3935 3.40.3706 3.33.4005 Summary: enteliTOUCH - Touchscreen Building Controller. Get instant access to the heart of your BAS. The...

0.1AI score
Exploits0
0day.today
0day.today
added 2022/04/14 12:0 a.m.239 views

Delta Controls enteliTOUCH 3.40.3935 Cross Site Request Forgery Vulnerability

enteliTouch CSRF CSRF Add User: input type=...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2022/04/14 12:0 a.m.278 views

Delta Controls enteliTOUCH 3.40.3935 Cross Site Request Forgery

enteliTouch CSRF CSRF Add User: input type="hidden" name="Username" va...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2022/04/14 12:0 a.m.278 views

Delta Controls enteliTOUCH 3.40.3935 Cross Site Scripting

enteliTouch XSS alertdocument.cookie" /...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2022/04/14 12:0 a.m.287 views

Delta Controls enteliTOUCH 3.40.3935 Cookie User Password Disclosure

Delta Controls enteliTOUCH 3.40.3935 Cookie User Password Disclosure Vendor: Delta Controls Inc. Product web page: https://www.deltacontrols.com Affected version: 3.40.3935 3.40.3706 3.33.4005 Summary: enteliTOUCH - Touchscreen Building Controller. Get instant access to the heart of your BAS. The...

0.4AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2022/04/14 12:0 a.m.299 views

Delta Controls enteliTOUCH 3.40.3935 Cross-Site Scripting (XSS)

Summary enteliTOUCH - Touchscreen Building Controller. Get instant access to the heart of your BAS. The enteliTOUCH has a 7-inch, high-resolution display that serves as an interface to your building. Use it as your primary interface for smaller facilities or as an on-the-spot access point for...

6.1CVSS6.7AI score0.00725EPSS
Exploits2
Zero Science Lab
Zero Science Lab
added 2022/04/14 12:0 a.m.312 views

Delta Controls enteliTOUCH 3.40.3935 Cross-Site Request Forgery (CSRF)

Summary enteliTOUCH - Touchscreen Building Controller. Get instant access to the heart of your BAS. The enteliTOUCH has a 7-inch, high-resolution display that serves as an interface to your building. Use it as your primary interface for smaller facilities or as an on-the-spot access point for...

8.8CVSS7.3AI score0.00943EPSS
Exploits2
Zero Science Lab
Zero Science Lab
added 2022/04/14 12:0 a.m.395 views

Delta Controls enteliTOUCH 3.40.3935 Cookie User Password Disclosure

Summary enteliTOUCH - Touchscreen Building Controller. Get instant access to the heart of your BAS. The enteliTOUCH has a 7-inch, high-resolution display that serves as an interface to your building. Use it as your primary interface for smaller facilities or as an on-the-spot access point for...

5.9CVSS6.3AI score0.00664EPSS
Exploits2
ICS
ICS
added 2019/08/27 12:0 a.m.120 views

Delta Controls enteliBUS Controllers

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Delta Controls Equipment: enteliBUS Controllers Vulnerability: Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker on the same network to gain...

9.8CVSS10AI score0.04737EPSS
Exploits1References4
NVD
NVD
added 2019/08/26 8:15 p.m.22 views

CVE-2019-9569

Buffer Overflow in dactetra in Delta Controls enteliBUS Manager V3.40B-571848 allows remote unauthenticated users to execute arbitrary code and possibly cause a denial of service via unspecified vectors...

9.8CVSS9.9AI score0.04737EPSS
Exploits1References2
Prion
Prion
added 2019/08/26 8:15 p.m.12 views

Buffer overflow

Buffer Overflow in dactetra in Delta Controls enteliBUS Manager V3.40B-571848 allows remote unauthenticated users to execute arbitrary code and possibly cause a denial of service via unspecified vectors...

7.5CVSS9.7AI score0.04737EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder