Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2025/04/25 6:31 p.m.31 views

CVE-2025-30030

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'ImportDatabase' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and...

8.8CVSS7.8AI score0.00648EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 6:12 p.m.7 views

CVE-2025-32854

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'LockOpcSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and...

8.8CVSS7.8AI score0.00525EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 5:55 p.m.7 views

CVE-2025-32843

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'LockUser' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write ...

8.8CVSS7.8AI score0.00604EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 5:49 p.m.6 views

CVE-2025-32870

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'GetTraces' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write...

8.8CVSS7.8AI score0.00598EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 5:23 p.m.7 views

CVE-2025-32840

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'LockGateway' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and wri...

8.8CVSS7.8AI score0.00604EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 4:59 p.m.14 views

CVE-2025-32855

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UnlockOpcSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from a...

8.8CVSS7.8AI score0.0049EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.11 views

CVE-2025-32864

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'GetSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and wri...

8.8CVSS0.00525EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.5 views

CVE-2025-32831

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UpdateProjectUserRights' method. This could allow an authenticated remote attacker to bypass authorization controls, to read...

8.8CVSS0.00604EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.6 views

CVE-2025-31351

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'CreateProject' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and...

8.8CVSS0.00648EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.3 views

CVE-2025-30031

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UpdateUsers' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and wri...

8.7CVSS5.8AI score0.00648EPSS
Exploits0References1
CVE
CVE
added 2025/04/16 5:38 p.m.58 views

CVE-2025-32849

TeleControl Server Basic (All versions

8.8CVSS8.1AI score0.00525EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/04/16 5:38 p.m.10 views

CVE-2025-32848

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'LockSmtpSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from an...

8.8CVSS0.00525EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/16 5:38 p.m.5 views

CVE-2025-32847

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UnlockGeneralSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read fr...

8.8CVSS7.8AI score0.00604EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/16 5:38 p.m.6 views

CVE-2025-32838

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'ImportConnectionVariables' method. This could allow an authenticated remote attacker to bypass authorization controls, to rea...

8.8CVSS7.8AI score0.00604EPSS
Exploits0References1
CVE
CVE
added 2025/04/16 5:38 p.m.53 views

CVE-2025-32838

The affected software is Siemens TeleControl Server Basic (versions before 3.1.2.2). The vulnerability is an SQL injection in the internal ImportConnectionVariables method that could allow an authenticated remote attacker to bypass authorization, read from and write to the database, and execute c...

8.8CVSS8.1AI score0.00604EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/04/16 5:37 p.m.14 views

CVE-2025-31343

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UpdateTcmSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from a...

8.8CVSS0.00648EPSS
Exploits0References1
CVE
CVE
added 2024/01/31 12:51 p.m.62 views

CVE-2023-7043

CVE-2023-7043 describes an unquoted service path vulnerability in ESET Windows products, enabling a dropped program to be placed in a location and launched at boot with NT AUTHORITY\NetworkService permissions. The available documents confirm the affected products are ESET Endpoint Security/Endpoi...

5.5CVSS6.3AI score0.00282EPSS
Exploits0References1Affected Software6
Cvelist
Cvelist
added 2024/01/31 12:51 p.m.25 views

CVE-2023-7043 Unquoted path privilege vulnerability in ESET products for Windows

Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT AUTHORITY\NetworkService permissions...

3.3CVSS6.6AI score0.00282EPSS
Exploits0References1
Rows per page
Query Builder