10 matches found
CVE-2019-18234
Equinox Control Expert all versions, is vulnerable to an SQL injection attack, which may allow an attacker to remotely execute arbitrary code...
EUVD-2019-8034
Malware in sbrugna...
The vulnerability in HMI/SCADA Equinox Control Expert, related to the failure to protect the SQL query structure, allows a intruder to gain unauthorized access to protected information.
The vulnerability in HMI/SCADA Equinox Control Expert relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information by sending specially crafted SQL queries to the database...
CVE-2019-18234
Equinox Control Expert all versions, is vulnerable to an SQL injection attack, which may allow an attacker to remotely execute arbitrary code...
Sql injection
Equinox Control Expert all versions, is vulnerable to an SQL injection attack, which may allow an attacker to remotely execute arbitrary code...
CVE-2019-18234
Equinox Control Expert all versions, is vulnerable to an SQL injection attack, which may allow an attacker to remotely execute arbitrary code...
CVE-2019-18234
CVE-2019-18234 affects Equinox Control Expert (all versions). The Red Hat/NVD/NVD-origin sources confirm an SQL injection vulnerability in Control Expert that can lead to remote arbitrary code execution. CVSS v3 base score is 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Public exploitation details ...
Equinox Control Expert SQL Injection Vulnerability
Equinox Control Expert is a human interface and data acquisition and monitoring system from Equinox Argentina. A SQL injection vulnerability exists in Equinox Control Expert. The vulnerability stems from a lack of validation of externally entered SQL statements in a database-based application. A...
Equinox Control Expert
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Equinox Equipment: Control Expert Vulnerability: Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' 2. RISK EVALUATION Successful exploitation of this vulnerability...
Equinox Control Expert CVE-2019-18234 SQL Injection Vulnerability
Description Equinox Control Expert is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying...