PoC_n_Dockerfile_4_PentestFinalProject_Group02

🛡️ PoC & Dockerfiles - Pentest Final Project Group 02 cite...

Siemens SINEC NMS 数据伪造问题漏洞

Siemens SINEC NMS is a network management system developed by Siemens in Germany. This system can be used for round-the-clock centralized monitoring, management, and configuration of industrial networks containing tens of thousands of devices, including those related to security applications...

Belden Hirschmann Industrial HiVision 授权问题漏洞

Belden Hirschmann Industrial HiVision is an industrial network management software platform developed by the American company Belden. Versions of Belden Hirschmann Industrial HiVision prior to 06.0.06 and 07.0.01 contained vulnerabilities related to authorization. These vulnerabilities stemmed fr...

Moxa MXsecurity Series 安全漏洞

Moxa MXsecurity Series is an industrial network security management software platform from Moxa Corporation of Taiwan, China. A security vulnerability exists in Moxa MXsecurity Series that stems from improperly controlled modification of dynamically determined object attributes, which could lead ...

EUVD-2020-24838

Malware in sbrugna...

EUVD-2018-7270

Malware in sbrugna...

EUVD-2019-10418

Malware in sbrugna...

EUVD-2019-10533

Malware in sbrugna...

EUVD-2019-10439

Malware in sbrugna...

EUVD-2019-10438

Malware in sbrugna...

EUVD-2017-15729

Malware in sbrugna...

EUVD-2018-1269

Malware in sbrugna...

EUVD-2019-6867

Malware in sbrugna...

EUVD-2019-10497

Malware in sbrugna...

EUVD-2023-24217

Malicious code in bioql PyPI...

EUVD-2023-24216

Malicious code in bioql PyPI...

Siemens SINEC Traffic Analyzer Multiple Vulnerabilities

SINEC Traffic Analyzer is a network management tool provided by Siemens for network traffic monitoring, performance analysis and troubleshooting. The tool supports the configuration and management of industrial network devices such as SCALANCE and RUGGEDCOM, helping users to optimize network...

Radiflow iSAP Smart Collector 安全漏洞

Radiflow iSAP Smart Collector is a remote traffic collection and forwarding appliance designed for industrial networks from Radiflow USA. A security vulnerability exists in the Radiflow iSAP Smart Collector that stems from an OS command injection in an unauthenticated REST API on the management...

The vulnerability of the PROFINET protocol implementation in the modular security system software SIRIUS 3RK3, as well as the security relay software SIRIUS 3SK2, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the PROFINET protocol implementation in the modular security system SIRIUS 3RK3 and the security relay software SIRIUS 3SK2 is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability could allow an intruder to gain unauthorized...

CVE-2023-20037

A vulnerability in Cisco Industrial Network Director could allow an authenticated, remote attacker to conduct stored cross-site scripting XSS attacks. The vulnerability is due to improper validation of content submitted to the affected application. An attacker could exploit this vulnerability by...