EUVD-1999-0124

Malware in sbrugna...

The vulnerability of the SCADA system MasterSCADA, related to deficiencies in password protection mechanisms, allows unauthorized access to the project by intruders.

The vulnerability of the SCADA system MasterSCADA is related to deficiencies in the password protection mechanism. Exploiting this vulnerability can allow an intruder to gain unauthorized access to the project...

ROS-20241008-08

Intel processor firmware vulnerability is related to information leakage from vector registers. registers. Exploitation of the vulnerability may allow an intruder to gain access to protected information...

The vulnerability of the SCADA system MasterSCADA, related to deficiencies in data protection, allows a intruder to gain access to the project configuration file.

The vulnerability of the SCADA system MasterSCADA is related to deficiencies in data protection. Exploiting this vulnerability can allow an intruder to gain unauthorized access to the project configuration file by rewriting the password hash value...

The vulnerability of the microprogrammed software of the BUFFALO VR-S1000 routers, related to the use of pre-installed user credentials, allows a intruder to obtain access to the password of any user.

The vulnerability of the BUFFALO VR-S1000 router’s microprogramming software is related to the use of pre-set login credentials. Exploiting this vulnerability could allow a hacker to gain access to the password of any user...

The vulnerability of the EisBaer SCADA system, caused by deficiencies in the authentication process, allows a intruder to execute arbitrary commands.

The vulnerability of the SCADA system EisBaer is due to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

Adobe Connect 11.4.5 / 12.1.5 Local File Disclosure Vulnerability

Adobe Connect versions 11.4.5 and below as well as versions 12.1.5 and below suffer from a file disclosure vulnerability. Title: adobe connect - Local File Disclosure / Download security feature bypass vulnerability Author: h4shur CVE: CVE-2023-22232 Vendor Homepage: https://www.adobe.com Softwar...

The vulnerability of the SCADA system “SKADA-NEV” lies in the unencrypted storage of critical information in memory, allowing attackers to gain access to user account data.

The vulnerability of the SCADA system “SKADA-NEV” is related to the unencrypted storage of critical information in memory. Exploiting this vulnerability can allow an intruder to gain access to user account data...

The vulnerability of the Yokogawa CENTUM VP SCADA system, related to errors in the code, allows a intruder to execute arbitrary commands.

The vulnerability of the Yokogawa CENTUM VP SCADA system is related to errors in the code. Exploiting this vulnerability allows an intruder to execute arbitrary code by modifying the project files and injecting their own code into them, which will be executed upon a specified event...

The vulnerability of microprogrammed software in programmable logic controllers like ioLogik, related to deficiencies in access control, allows a intruder to gain access to the device.

The vulnerability of microprogrammed software in programmable logic controllers like ioLogik is related to deficiencies in access control. Exploiting this vulnerability can allow an intruder to gain access to the device...

The vulnerability of the CODESYS Control V2 Linux SysFile software suite for industrial automation systems allows a intruder to trigger a service failure.

The vulnerability of the CODESYS Control V2 Linux SysFile software suite for industrial automation exists due to the reading of data beyond the specified buffer. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of NETGEAR GS808E switch’s microprogramming software, related to the lack of protection for service data, allows a intruder to trigger a maintenance failure.

The vulnerability of NETGEAR GS808E switch microprogramming software is related to the lack of protection for service data. Exploiting this vulnerability could allow an intruder to cause a service failure...

Design/Logic Flaw

IBM Maximo Asset Management 7.6 through 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to the system. This vulnerability is due to an incomplete fix for CVE-2015-4966. IBM X-Force ID: 142116...

CVE-2018-1524

IBM Maximo Asset Management 7.6 through 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to the system. This vulnerability is due to an incomplete fix for CVE-2015-4966. IBM X-Force ID: 142116...

The vulnerability of the RSView32 SCADA system, which allows a intruder to gain access to the SCADA system

The vulnerability of the password encryption algorithm used in SCADA systems like RSView32 is related to errors in the encryption algorithm itself. Exploiting this vulnerability could allow an intruder to gain access to the SCADA system and make unauthorized changes to the controlled technologica...

The vulnerability of the Mac OS X operating system allows a perpetrator to gain access to protected information in the kernel’s memory.

The vulnerability of the SMBClient component in the Mac OS X operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an intruder, operating locally, to gain access to protected information in the kernel memory...

Advisory CA-2001-16

-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2001-16 Oracle 8i contains buffer overflow in TNS listener Original release date: July 03, 2001 Last revised: -- Source: CERT/CC A complete revision history is at the end of this file. Systems Affected Systems running Oracle 8i Overview A...

Microsoft Windows 9x/ME - Share Level Password Bypass (1)

source: https://www.securityfocus.com/bid/1780/info Share level password protection for the File and Print Sharing service in Windows 95/98/ME can be bypassed. Share level access provides peer to peer networking capabilities in the Windows 9x/ME environment. It depends on password protection in...

Hassan Consulting Shopping Cart 1.18 - Directory Traversal

source: https://www.securityfocus.com/bid/1777/info The $page variable in Hassan Consulting Shopping Cart does not properly check for insecure relative paths such as the double dot "..". Therefore, requesting the following URL will display the specified file:...