Lucene search
K

123 matches found

Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.17 views

Mitsubishi IU1 Session Fixation (CVE-2020-5543)

TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier does not properly manage sessions, which allows remote attackers to stop the network functions or execute malware via a specially crafted packet. This plugin only works wit...

9.6AI score0.0215EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.26 views

Mitsubishi Electric MELSEC iQ-R Null Pointer Dereference (CVE-2020-5655)

NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Module First 2 digits of serial number are '01' or before,...

7.5CVSS7.4AI score0.0291EPSS
Exploits0References5
CNVD
CNVD
added 2021/08/12 12:0 a.m.24 views

Palo Alto Networks PAN-OS Operating System Command Injection Vulnerability (CNVD-2021-61953)

PAN-OS is an operating system designed specifically for the security and control of Palo Alto Networks firewalls, with a rich set of firewall, management and network features. An OS command parameter injection vulnerability exists in the web interface of PAN-OS. An attacker could exploit this...

4.9CVSS5.4AI score0.0079EPSS
Exploits0References1
CNVD
CNVD
added 2021/07/21 12:0 a.m.19 views

Xuperchain has an unspecified vulnerability

Xuperchain is an application. It provides a blockchain infrastructure to build compliant blockchain network functions. version 3.6.0 of Xuperchain contains a security vulnerability that could be exploited by an attacker to obtain partial signatures in order to recover the private key of an...

7.5CVSS4.8AI score0.00827EPSS
Exploits1References1
CNVD
CNVD
added 2021/06/18 12:0 a.m.14 views

Huawei eCNS280_TD Resource Management Error Vulnerability

Huawei eCNS280TD is the core network equipment of Huawei's wireless broadband trunking system in China. Based on Network Functions Virtualization NFV and cloud-based architecture design, it provides network functions of traditional core networks, but also provides capacity configurations for each...

7.5CVSS0.7AI score0.00677EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2021/03/26 8:57 a.m.217 views

New 5G Flaw Exposes Priority Networks to Location Tracking and Other Attacks

New research into 5G architecture has uncovered a security flaw in its network slicing and virtualized network functions that could be exploited to allow data access and denial of service attacks between different network slices on a mobile operator's 5G network. AdaptiveMobile shared its finding...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/03/26 8:57 a.m.4 views

New 5G Flaw Exposes Priority Networks to Location Tracking and Other Attacks

New research into 5G architecture has uncovered a security flaw in its network slicing and virtualized network functions that could be exploited to allow data access and denial of service attacks between different network slices on a mobile operator's 5G network. AdaptiveMobile shared its finding...

5.8AI score
Exploits0
NVD
NVD
added 2020/11/06 3:15 a.m.18 views

CVE-2020-5645

Session fixation vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS...

7.5CVSS7.9AI score0.0383EPSS
Exploits0References4
NVD
NVD
added 2020/11/06 3:15 a.m.11 views

CVE-2020-5647

Improper access control vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QMBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QLBDE CoreOS version ’05.65.00.BD’ and earlier, GT1455HS-QTBDE...

9.8CVSS9.5AI score0.04155EPSS
Exploits0References4
NVD
NVD
added 2020/11/06 3:15 a.m.29 views

CVE-2020-5644

Buffer overflow vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS...

9.8CVSS9.6AI score0.04489EPSS
Exploits0References4
OSV
OSV
added 2020/11/06 3:15 a.m.2 views

CVE-2020-5645

Session fixation vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS...

7.5CVSS7.2AI score
Exploits0References4
Prion
Prion
added 2020/11/06 3:15 a.m.12 views

Buffer overflow

Buffer overflow vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS...

7.5CVSS9.5AI score0.04489EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2020/11/06 3:15 a.m.14 views

Improper access control

Improper access control vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QMBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QLBDE CoreOS version ’05.65.00.BD’ and earlier, GT1455HS-QTBDE...

7.5CVSS9.4AI score0.04155EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2020/11/06 3:15 a.m.13 views

Null pointer dereference

NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE...

5CVSS7.8AI score0.04122EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2020/11/06 3:15 a.m.14 views

Design/Logic Flaw

Resource management error vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE...

5CVSS7.8AI score0.04087EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2020/11/06 3:15 a.m.17 views

Session fixation

Session fixation vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE CoreOS...

5CVSS7.8AI score0.0383EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2020/11/06 2:6 a.m.29 views

CVE-2020-5649

Resource management error vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE...

7.5AI score0.04087EPSS
Exploits0References4
CVE
CVE
added 2020/11/06 2:6 a.m.67 views

CVE-2020-5647

CVE-2020-5647 corresponds to an improper access control vulnerability in the TCP/IP function of Mitsubishi Electric GOT1000 GT14 Series firmware. Affected models (CoreOS 05.65.00.BD and earlier) include GT1455-QTBDE, GT1450-QMBDE, GT1450-QLBDE, GT1455HS-QTBDE, and GT1450HS-QMBDE. The issue allows...

9.8CVSS9.3AI score0.04155EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2020/11/06 2:6 a.m.26 views

CVE-2020-5647

Improper access control vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QMBDE CoreOS version ’05.65.00.BD’ and earlier, GT1450-QLBDE CoreOS version ’05.65.00.BD’ and earlier, GT1455HS-QTBDE...

9.4AI score0.04155EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/11/06 2:6 a.m.29 views

CVE-2020-5646

NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of GT14 Model of GOT 1000 series GT1455-QTBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QMBDE CoreOS version "05.65.00.BD" and earlier, GT1450-QLBDE CoreOS version "05.65.00.BD" and earlier, GT1455HS-QTBDE...

7.5AI score0.04122EPSS
Exploits0References4
Rows per page
Query Builder