35 matches found
EUVD-2023-59127
Malicious code in bioql PyPI...
EUVD-2023-59126
Malicious code in bioql PyPI...
CVE-2023-6930
EuroTel ETL3100 versions v01c01 and v01x37 suffer from an unauthenticated configuration and log download vulnerability. This enables the attacker to disclose sensitive information and assist in authentication bypass, privilege escalation, and full system access...
CVE-2023-6929
EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization, access the hidden resources on the...
CVE-2023-6928
EuroTel ETL3100 versions v01c01 and v01x37 does not limit the number of attempts to guess administrative credentials in remote password attacks to gain full control of the system...
The vulnerability of Microprogrammed Software in EuroTel ETL3100 and EuroTel ETL3100RT transmission devices lies in the improper limitation on the number of unsuccessful authentication attempts, allowing a perpetrator to gain full access.
The vulnerability of Microprogrammed Software in EuroTel ETL3100 and EuroTel ETL3100RT teleconverters is related to the absence of restrictions on authentication attempts. Exploiting this vulnerability can allow a malicious actor to gain full access through brute-force attacks...
The vulnerability of the microprogramming software of EuroTel ETL3100 and EuroTel ETL3100RT lies in the ability to bypass authentication by using a user-controlled key. This allows unauthorized users to circumvent security restrictions, gain unauthorized access to protected information, and increase their privileges.
The vulnerability of the microprogramming software of EuroTel ETL3100 and EuroTel ETL3100RT lies in the ability to bypass authentication by using a user-controlled key. Exploiting this vulnerability allows an attacker, operating remotely, to circumvent security restrictions, gain unauthorized...
CVE-2023-6928
EuroTel ETL3100 versions v01c01 and v01x37 does not limit the number of attempts to guess administrative credentials in remote password attacks to gain full control of the system...
CVE-2023-6929
EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization, access the hidden resources on the...
CVE-2023-6930
EuroTel ETL3100 versions v01c01 and v01x37 suffer from an unauthenticated configuration and log download vulnerability. This enables the attacker to disclose sensitive information and assist in authentication bypass, privilege escalation, and full system access...
CVE-2023-6930
EuroTel ETL3100 versions v01c01 and v01x37 suffer from an unauthenticated configuration and log download vulnerability. This enables the attacker to disclose sensitive information and assist in authentication bypass, privilege escalation, and full system access...
CVE-2023-6929
EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization, access the hidden resources on the...
CVE-2023-6928
EuroTel ETL3100 versions v01c01 and v01x37 does not limit the number of attempts to guess administrative credentials in remote password attacks to gain full control of the system...
Authorization
EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization, access the hidden resources on the...
Authentication flaw
EuroTel ETL3100 versions v01c01 and v01x37 suffer from an unauthenticated configuration and log download vulnerability. This enables the attacker to disclose sensitive information and assist in authentication bypass, privilege escalation, and full system access...
CVE-2023-6929 Authorization Bypass Through User-Controlled Key in EuroTel ETL3100
EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization, access the hidden resources on the...
CVE-2023-6929 Authorization Bypass Through User-Controlled Key in EuroTel ETL3100
EuroTel ETL3100 versions v01c01 and v01x37 are vulnerable to insecure direct object references that occur when the application provides direct access to objects based on user-supplied input. As a result of this vulnerability, attackers can bypass authorization, access the hidden resources on the...
CVE-2023-6928 Improper Restriction of Excessive Authentication Attempts
EuroTel ETL3100 versions v01c01 and v01x37 does not limit the number of attempts to guess administrative credentials in remote password attacks to gain full control of the system...
EuroTel ETL3100 Security Vulnerability
The EuroTel ETL3100 is a radio transmitter from EuroTel. A security vulnerability exists in the EuroTel ETL3100 v01c01 version and v01x37 version that stems from not limiting too many authentication attempts, which allows an attacker to bypass authorization via a user-controlled key...
EuroTel ETL3100 Security Vulnerability
The EuroTel ETL3100 is a radio transmitter from EuroTel. A security vulnerability exists in the EuroTel ETL3100 version v01c01 and v01x37, which stems from the presence of an Access Control Error vulnerability. An attacker could exploit the vulnerability to disclose sensitive information and bypa...