11 matches found
EUVD-2024-46853
Malicious code in bioql PyPI...
EUVD-2024-46852
Malicious code in bioql PyPI...
EUVD-2023-34047
Malicious code in bioql PyPI...
CVE-2024-5680
CWE-129: Improper Validation of Array Index vulnerability exists that could cause local denial-of-service when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...
CVE-2024-5681
CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...
CVE-2024-5681
CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...
CVE-2024-5681
CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...
CVE-2024-5679
CWE-787: Out-of-Bounds Write vulnerability exists that could cause local denial-of-service, or kernel memory leak when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...
CVE-2024-5681
CVE-2024-5681 involves the Schneider Electric EcoStruxure Foxboro DCS product family, specifically the Foxboro.sys driver used by EcoStruxure Foxboro DCS Core Control Services. The issue arises from insufficient input validation in an IOCTL handling path, enabling a local attacker with user acces...
The vulnerability of the Foxboro.sys driver of the distributed system management software EcoStruxureTM Foxboro DCS Control Core Services allows a attacker to cause a service failure or execute arbitrary code.
The vulnerability of the Foxboro.sys driver, a microprogramming software component of the distributed control system EcoStruxureTM Foxboro DCS Control Core Services, is related to unvalidated array indexing. Exploiting this vulnerability can allow an attacker to cause service failures or execute...
Out-of-bounds
A CWE-787: Out-of-Bounds Write vulnerability exists that could cause local denial-of-service, elevation of privilege, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...