Lucene search
+L

37 matches found

Vulnrichment
Vulnrichment
added 2022/10/21 3:38 p.m.12 views

CVE-2022-26423 MISSING AUTHORIZATION CWE-862

Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated attacker who can freely access hashed user credentials...

8.2CVSS8.2AI score0.0069EPSS
Exploits0References1
CVE
CVE
added 2022/10/21 3:38 p.m.60 views

CVE-2022-26423

CVE-2022-26423 affects the Aethon TUG Home Base Server (versions before 24). The vulnerability stems from missing authorization (CWE-862), enabling an unauthenticated attacker to freely access hashed user credentials. Affected product: TUG Home Base Server. Impact described in connected sources i...

8.2CVSS7.8AI score0.0069EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/21 3:38 p.m.8 views

CVE-2022-1066 MISSING AUTHORIZATION CWE-862

Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated attacker who can freely access hashed user credentials...

8.2CVSS8.2AI score0.00651EPSS
Exploits0References1
CVE
CVE
added 2022/10/21 3:38 p.m.80 views

CVE-2022-1066

CVE-2022-1066 affects Aethon TUG Home Base Server (versions prior to 24). Root cause: missing authorization allows an unauthenticated attacker to arbitrarily add new users with administrative privileges and delete/modify existing users; another vulnerability can expose hashed user credentials. Im...

8.2CVSS8.3AI score0.00651EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/18 12:0 a.m.9 views

The vulnerability of the TUG Home Base Server lies in its ability to access a channel from a non-endpoint, allowing attackers to execute a “man-in-the-middle” attack.

The vulnerability of the TUG Home Base Server relates to access to a channel from a point that is not a final destination. Exploiting this vulnerability allows a remote attacker to carry out a “man-in-the-middle” attack...

10CVSS7.8AI score0.00657EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/13 12:0 a.m.6 views

The vulnerability of the “Reports” component of the TUG Home Base Server allows a attacker to perform XSS attacks.

The vulnerability of the “Reports” component of the TUG Home Base Server is related to the lack of measures to sanitize input data. Exploiting this vulnerability allows a remote attacker to carry out XSS attacks...

9CVSS6.2AI score0.00563EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/13 12:0 a.m.12 views

The vulnerability of the TUG Home Base Server, related to deficiencies in the authentication process, allows attackers to add and remove arbitrary users.

The vulnerability of the TUG Home Base Server is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to add and remove arbitrary users remotely...

8.5CVSS7.8AI score0.00651EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.7 views

Aethon TUG Home Base Server 跨站脚本漏洞

Aethon TUG Home Base Server is a robotics server from Aethon, Inc. It is used to control and communicate with autonomous mobile robots. Aethon TUG Home Base Server suffers from a cross-site scripting vulnerability that stems from the vulnerability of the Load tab of the Fleet Management Console t...

8.2CVSS6.2AI score0.00567EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.7 views

Aethon TUG Home Base Server 跨站脚本漏洞

Aethon TUG Home Base Server is a robotics server from Aethon, Inc. It is used to control and communicate with autonomous mobile robots. Aethon TUG Home Base Server has a cross-site scripting vulnerability that originates when creating or editing a new report, the Reports tab of the Fleet Manageme...

8.2CVSS5.7AI score0.00563EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.8 views

PT-2022-3549 · Aethon · Aethon Tug Home Base Server

Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to weaknesses in the authorization procedure of the server. It allows a remote attacker to gain unauthorized access to hashed user credentials...

8.5CVSS7.5AI score0.0069EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.8 views

Aethon TUG Home Base Server 安全漏洞

Aethon TUG Home Base Server is a robotics server from Aethon, Inc. It is used to control and communicate with autonomous mobile robots. Aethon TUG Home Base Server suffers from a security vulnerability that originates from an unauthenticated attacker having free access to hashed user credentials...

8.2CVSS7.6AI score0.0069EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.11 views

PT-2022-3560 · Aethon · Tug Home Base Server

Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to the lack of input data sanitization in the "Reports" component of the TUG Home Base Server, which can allow a remote attacker to conduct a cross-sit...

9CVSS5.4AI score0.00563EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.21 views

PT-2022-3548 · Aethon · Aethon Tug Home Base Server

Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to weaknesses in the authorization procedure of the server. It allows a remote attacker to exploit the weakness, potentially enabling them to add and...

8.5CVSS8.1AI score0.00651EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.7 views

PT-2022-3559 · Aethon · Aethon Tug Home Base Server

Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to the lack of input data sanitization in the "Загрузки" component of the TUG Home Base Server, which can lead to a remote attacker conducting a...

9CVSS6AI score0.00567EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.9 views

PT-2022-3655 · Aethon · Aethon Tug Home Base Server

Name of the Vulnerable Software and Affected Versions: Aethon TUG Home Base Server versions prior to version 24 Description: The issue is related to access to a channel from a non-terminal point, potentially allowing a remote attacker to perform a "man-in-the-middle" attack. An unauthenticated...

10CVSS8AI score0.00657EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.9 views

Aethon TUG Home Base Server 安全漏洞

Aethon TUG Home Base Server is a robotics server from Aethon, Inc. It is used to control and communicate with autonomous mobile robots. Aethon TUG Home Base Server has a security vulnerability that can be exploited by an unauthenticated attacker to arbitrarily add new users with administrative...

8.2CVSS8AI score0.00651EPSS
Exploits0References4
ICS
ICS
added 2022/04/12 12:0 a.m.49 views

Aethon TUG Home Base Server

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Aethon owned by ST Engineering Equipment: TUG Home Base Server Vulnerabilities: Missing Authorization, Channel Accessible by Non-endpoint, Cross-site Scripting 2. RISK EVALUATION Successful exploitation...

8.2CVSS8.3AI score0.0069EPSS
Exploits0References5
Rows per page
Query Builder