37 matches found
CVE-2022-26423 MISSING AUTHORIZATION CWE-862
Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated attacker who can freely access hashed user credentials...
CVE-2022-26423
CVE-2022-26423 affects the Aethon TUG Home Base Server (versions before 24). The vulnerability stems from missing authorization (CWE-862), enabling an unauthenticated attacker to freely access hashed user credentials. Affected product: TUG Home Base Server. Impact described in connected sources i...
CVE-2022-1066 MISSING AUTHORIZATION CWE-862
Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated attacker who can freely access hashed user credentials...
CVE-2022-1066
CVE-2022-1066 affects Aethon TUG Home Base Server (versions prior to 24). Root cause: missing authorization allows an unauthenticated attacker to arbitrarily add new users with administrative privileges and delete/modify existing users; another vulnerability can expose hashed user credentials. Im...
The vulnerability of the TUG Home Base Server lies in its ability to access a channel from a non-endpoint, allowing attackers to execute a “man-in-the-middle” attack.
The vulnerability of the TUG Home Base Server relates to access to a channel from a point that is not a final destination. Exploiting this vulnerability allows a remote attacker to carry out a “man-in-the-middle” attack...
The vulnerability of the “Reports” component of the TUG Home Base Server allows a attacker to perform XSS attacks.
The vulnerability of the “Reports” component of the TUG Home Base Server is related to the lack of measures to sanitize input data. Exploiting this vulnerability allows a remote attacker to carry out XSS attacks...
The vulnerability of the TUG Home Base Server, related to deficiencies in the authentication process, allows attackers to add and remove arbitrary users.
The vulnerability of the TUG Home Base Server is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to add and remove arbitrary users remotely...
Aethon TUG Home Base Server 跨站脚本漏洞
Aethon TUG Home Base Server is a robotics server from Aethon, Inc. It is used to control and communicate with autonomous mobile robots. Aethon TUG Home Base Server suffers from a cross-site scripting vulnerability that stems from the vulnerability of the Load tab of the Fleet Management Console t...
Aethon TUG Home Base Server 跨站脚本漏洞
Aethon TUG Home Base Server is a robotics server from Aethon, Inc. It is used to control and communicate with autonomous mobile robots. Aethon TUG Home Base Server has a cross-site scripting vulnerability that originates when creating or editing a new report, the Reports tab of the Fleet Manageme...
PT-2022-3549 · Aethon · Aethon Tug Home Base Server
Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to weaknesses in the authorization procedure of the server. It allows a remote attacker to gain unauthorized access to hashed user credentials...
Aethon TUG Home Base Server 安全漏洞
Aethon TUG Home Base Server is a robotics server from Aethon, Inc. It is used to control and communicate with autonomous mobile robots. Aethon TUG Home Base Server suffers from a security vulnerability that originates from an unauthenticated attacker having free access to hashed user credentials...
PT-2022-3560 · Aethon · Tug Home Base Server
Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to the lack of input data sanitization in the "Reports" component of the TUG Home Base Server, which can allow a remote attacker to conduct a cross-sit...
PT-2022-3548 · Aethon · Aethon Tug Home Base Server
Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to weaknesses in the authorization procedure of the server. It allows a remote attacker to exploit the weakness, potentially enabling them to add and...
PT-2022-3559 · Aethon · Aethon Tug Home Base Server
Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to the lack of input data sanitization in the "Загрузки" component of the TUG Home Base Server, which can lead to a remote attacker conducting a...
PT-2022-3655 · Aethon · Aethon Tug Home Base Server
Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to access to a channel from a non-terminal point, potentially allowing a remote attacker to perform a "man-in-the-middle" attack. An unauthenticated...
Aethon TUG Home Base Server 安全漏洞
Aethon TUG Home Base Server is a robotics server from Aethon, Inc. It is used to control and communicate with autonomous mobile robots. Aethon TUG Home Base Server has a security vulnerability that can be exploited by an unauthenticated attacker to arbitrarily add new users with administrative...
Aethon TUG Home Base Server
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Aethon owned by ST Engineering Equipment: TUG Home Base Server Vulnerabilities: Missing Authorization, Channel Accessible by Non-endpoint, Cross-site Scripting 2. RISK EVALUATION Successful exploitation...