Lucene search
+L

48 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-45067

Malicious code in bioql PyPI...

7.2CVSS6.6AI score0.01042EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-45065

Malicious code in bioql PyPI...

7.2CVSS6.6AI score0.01042EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-45072

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.01485EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 6:49 a.m.9 views

CVE-2024-50367

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...

7.2CVSS7.1AI score0.01042EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2024/12/16 12:0 a.m.6 views

The vulnerability of the “edgserver” service in the microprogramming software for multifunctional wireless access points of Advantech models EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO allows a hacker to execute arbitrary commands with root privileges.

The vulnerability of the “edgserver” service in the microprogramming-based wireless access points of Advantech EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO models exists due to the failure to take measures to neutralize the special elements used in the operating system commands. Exploiting...

10CVSS5.8AI score0.01285EPSS
Exploits0References3Affected Software3
bdu_fstec
bdu_fstec
added 2024/12/16 12:0 a.m.5 views

The vulnerability of the “edgserver” service in the microprogramming software for multifunctional wireless access points of Advantech models EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO allows a hacker to execute arbitrary commands with root privileges.

The vulnerability of the “edgserver” service in the microprogramming-based wireless access points of Advantech EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO models exists due to the failure to take measures to neutralize the special elements used in the operating system commands. Exploiting...

10CVSS5.8AI score0.01285EPSS
Exploits0References3Affected Software3
bdu_fstec
bdu_fstec
added 2024/12/16 12:0 a.m.9 views

The vulnerability of the “scan_ap” application interface of the microprogramming system used in multifunctional wireless access points of Advantech models EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO allows a intruder to execute arbitrary code.

The vulnerability of the “scanap” application interface of the microprogramming system used in multifunctional wireless access points of Advantech models EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO exists due to the failure to take measures to neutralize the special elements used in the...

9CVSS8.4AI score0.01354EPSS
Exploits0References3Affected Software3
osv
osv
added 2024/11/26 11:22 a.m.6 views

CVE-2024-50377

A CWE-798 "Use of Hard-coded Credentials" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability is associated to the backup configuration functionality that by default encrypts the...

6.5CVSS5.8AI score0.00187EPSS
Exploits0References1
osv
osv
added 2024/11/26 11:22 a.m.8 views

CVE-2024-50368

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...

7.2CVSS5.8AI score0.01042EPSS
Exploits0References1
nvd
nvd
added 2024/11/26 11:22 a.m.13 views

CVE-2024-50368

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...

7.2CVSS0.01042EPSS
Exploits0References1
nvd
nvd
added 2024/11/26 11:22 a.m.15 views

CVE-2024-50365

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...

7.2CVSS0.01042EPSS
Exploits0References1
nvd
nvd
added 2024/11/26 11:22 a.m.12 views

CVE-2024-50364

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...

7.2CVSS0.01042EPSS
Exploits0References1
nvd
nvd
added 2024/11/26 11:22 a.m.12 views

CVE-2024-50362

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...

7.2CVSS0.01042EPSS
Exploits0References1
nvd
nvd
added 2024/11/26 11:22 a.m.20 views

CVE-2024-50363

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...

7.2CVSS0.01042EPSS
Exploits0References1
nvd
nvd
added 2024/11/26 11:22 a.m.13 views

CVE-2024-50360

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...

7.2CVSS0.01042EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/11/26 10:57 a.m.15 views

CVE-2024-50377

A CWE-798 "Use of Hard-coded Credentials" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability is associated to the backup configuration functionality that by default encrypts the...

6.5CVSS7.2AI score0.00187EPSS
Exploits0References1
cve
cve
added 2024/11/26 10:57 a.m.57 views

CVE-2024-50377

CVE-2024-50377 affects Advantech EKI-6333AC-2G (≤1.6.3), EKI-6333AC-2GD (≤1.6.3), and EKI-6333AC-1GPO (≤1.2.1). The issue is a CWE-798 “Use of Hard-coded Credentials” in the backup configuration functionality, where archives are encrypted with a static password. This could allow an attacker with ...

6.5CVSS6.7AI score0.00187EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2024/11/26 10:57 a.m.20 views

CVE-2024-50376

A CWE-79 "Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited remotely leveragi...

7.3CVSS0.00453EPSS
Exploits0References1
cvelist
cvelist
added 2024/11/26 10:57 a.m.16 views

CVE-2024-50375

A CWE-306 "Missing Authentication for Critical Function" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote unauthenticated users capable of interacting...

9.8CVSS0.01026EPSS
Exploits0References1
cve
cve
added 2024/11/26 10:57 a.m.65 views

CVE-2024-50375

CVE-2024-50375 concerns Advantech EKI-6333AC devices with a CWE-306 vulnerability: remote unauthenticated access via the default “edgserver” on EKI-6333AC-2G (<=1.6.3), EKI-6333AC-2GD (<=v1.6.3), and EKI-6333AC-1GPO (

9.8CVSS9.8AI score0.01026EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder