Lucene search
+L

18 matches found

CNNVD
CNNVD
added 2026/05/19 12:0 a.m.14 views

Nozomi Networks Guardian和Nozomi Networks CMC 跨站脚本漏洞

Nozomi Networks Guardian and Nozomi Networks CMC are both products of the American company Nozomi Networks. Nozomi Networks Guardian is an IoT device and software inspection system. Nozomi Networks CMC is an application software that provides centralized OT and IoT security management. Both Nozom...

5.9CVSS5.7AI score0.00194EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/19 12:0 a.m.12 views

Nozomi Networks CMC和Nozomi Networks Guardian 跨站脚本漏洞

Nozomi Networks CMC and Nozomi Networks Guardian are both products of Nozomi Networks, a company based in the United States. Nozomi Networks CMC is a network management platform. Nozomi Networks Guardian is a security software. Both Nozomi Networks CMC and Nozomi Networks Guardian have cross-site...

6.5CVSS5.7AI score0.00186EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/25 12:0 a.m.7 views

Nozomi Networks CMC和Nozomi Networks Guardian 跨站脚本漏洞

Nozomi Networks CMC and Nozomi Networks Guardian are both products of Nozomi Networks, Inc. of the U.S. Nozomi Networks CMC is a network management platform.Nozomi Networks Guardian is a protection software. A cross-site scripting vulnerability exists in Nozomi Networks CMC and Nozomi Networks...

7.9CVSS5.9AI score0.00169EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/07 12:0 a.m.6 views

Nozomi Networks Guardian和Nozomi Networks CMC 路径遍历漏洞

Nozomi Networks Guardian and Nozomi Networks CMC are both products of Nozomi Networks, U.S.A. Nozomi Networks Guardian is an IoT device and software inspection system.Nozomi Networks CMC is a software application. It provides centralized OT and IoT security management. Nozomi Networks Guardian an...

8.1CVSS6.7AI score0.00379EPSS
Exploits0References1
ICS
ICS
added 2023/11/14 12:0 a.m.26 views

Siemens RUGGEDCOM APE1808 Devices

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

9.2CVSS8.4AI score0.00531EPSS
Exploits0References12
ICS
ICS
added 2023/10/10 12:0 a.m.63 views

Siemens RUGGEDCOM APE180

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

8.8CVSS7.6AI score0.00508EPSS
Exploits0References12
OSV
OSV
added 2023/09/19 11:16 a.m.5 views

CVE-2023-32649

A Denial of Service Dos vulnerability in Nozomi Networks Guardian and CMC, due to improper input validation in certain fields used in the Asset Intelligence functionality of our IDS, allows an unauthenticated attacker to crash the IDS module by sending specially crafted malformed network packets...

7.5CVSS5.8AI score0.00531EPSS
Exploits0References1
OSV
OSV
added 2023/09/19 11:16 a.m.4 views

CVE-2023-2567

A SQL Injection vulnerability has been found in Nozomi Networks Guardian and CMC, due to improper input validation in certain parameters used in the Query functionality. Authenticated users may be able to execute arbitrary SQL statements on the DBMS used by the web application...

8.8CVSS6.8AI score0.00504EPSS
Exploits0References1
OSV
OSV
added 2023/09/19 11:16 a.m.3 views

CVE-2023-29245

A SQL Injection vulnerability in Nozomi Networks Guardian and CMC, due to improper input validation in certain fields used in the Asset Intelligence functionality of our IDS, may allow an unauthenticated attacker to execute arbitrary SQL statements on the DBMS used by the web application by sendi...

7.4CVSS6AI score0.00499EPSS
Exploits0References1
OSV
OSV
added 2023/08/09 9:15 a.m.4 views

CVE-2023-23574

A blind SQL Injection vulnerability in Nozomi Networks Guardian and CMC, due to improper input validation in the alertscount component, allows an authenticated attacker to execute arbitrary SQL statements on the DBMS used by the web application. Authenticated users may be able to extract arbitrar...

8.8CVSS6AI score0.00504EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/09 12:0 a.m.5 views

PT-2023-5524 · Nozomi Networks · Nozomi Networks Cmc +1

Name of the Vulnerable Software and Affected Versions: Nozomi Networks Guardian and CMC affected versions not specified Description: A blind SQL Injection issue exists due to improper input validation in the sorting parameter, allowing an authenticated attacker to execute arbitrary SQL statements...

8.8CVSS8.3AI score0.00508EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/05/04 12:0 a.m.8 views

Nozomi Networks Guardian SQL注入漏洞

Nozomi Networks Guardian is an IoT device and software inspection system from US-based Nozomi Networks. A security vulnerability exists in Nozomi Networks Guardian and CMC that stems from improper input validation in the Alerts Controller. An attacker could exploit the vulnerability to execute...

8.8CVSS8.6AI score0.00598EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/03/24 3:15 p.m.8 views

CVE-2022-0551

Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands on the appliance using web server user privileges. This issue affects: Nozomi Networks Guardian...

8.6CVSS7.3AI score0.00868EPSS
Exploits0References2
OSV
OSV
added 2022/03/24 3:15 p.m.4 views

CVE-2022-0551

Improper Input Validation vulnerability in project file upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or import manager roles to execute unattended commands on the appliance using web server user privileges. This issue affects: Nozomi Networks Guardian...

7.2CVSS5.9AI score0.00868EPSS
Exploits0References1
NOZOMI
NOZOMI
added 2022/02/14 12:0 a.m.7 views

Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0

Summary Improper Input Validation vulnerability in custom report logo upload in Nozomi Networks Guardian and CMC allows an authenticated attacker with admin or report manager roles to execute unattended commands on the appliance using web server user privileges. Impact Users with admin or report...

8.6CVSS7.2AI score0.00868EPSS
Exploits0Affected Software2
OSV
OSV
added 2021/02/22 9:15 p.m.3 views

CVE-2021-26725

Path Traversal vulnerability when changing timezone using web GUI of Nozomi Networks Guardian, CMC allows an authenticated administrator to read-protected system files. This issue affects: Nozomi Networks Guardian 20.0.7.3 version 20.0.7.3 and prior versions. Nozomi Networks CMC 20.0.7.3 version...

4.9CVSS5.8AI score0.01059EPSS
Exploits0References1
OSV
OSV
added 2021/02/22 9:15 p.m.4 views

CVE-2021-26724

OS Command Injection vulnerability when changing date settings or hostname using web GUI of Nozomi Networks Guardian and CMC allows authenticated administrators to perform remote code execution. This issue affects: Nozomi Networks Guardian 20.0.7.3 version 20.0.7.3 and prior versions. Nozomi...

7.2CVSS6.1AI score0.03074EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/02/22 12:0 a.m.6 views

PT-2021-17115 · Nozomi Networks · Nozomi Networks Cmc +1

Name of the Vulnerable Software and Affected Versions: Nozomi Networks Guardian versions 20.0.7.3 and prior versions Nozomi Networks CMC versions 20.0.7.3 and prior versions Description: The issue is an OS Command Injection vulnerability that occurs when changing date settings or hostname using t...

9CVSS8.1AI score0.03074EPSS
Exploits0References4
Rows per page
Query Builder