Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-53855

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00664EPSS
Exploits0References2
OSV
OSV
added 2024/02/26 4:27 p.m.3 views

CVE-2023-49960

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint...

7.5CVSS5.9AI score0.00664EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/02/26 4:27 p.m.2 views

CVE-2023-49959

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...

9.8CVSS6.2AI score0.01379EPSS
Exploits0References3
Prion
Prion
added 2024/02/26 4:27 p.m.14 views

Command injection

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...

8.4AI score0.01379EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/02/26 12:0 a.m.15 views

CVE-2023-49960

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint...

7.1AI score0.00664EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/26 12:0 a.m.11 views

CVE-2023-49959

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...

8.4AI score0.01379EPSS
Exploits0References2
CVE
CVE
added 2024/02/26 12:0 a.m.3440 views

CVE-2023-49960

CVE-2023-49960 affects Indo-Sol PROFINET-INspektor NT up to version 2.4.0. A path-traversal in the firmware’s httpuploadd service allows remote attackers to write arbitrary files via a crafted filename parameter in requests to the /upload endpoint. Connected sources confirm the details and indica...

7.5CVSS7.1AI score0.00664EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/02/26 12:0 a.m.4194 views

CVE-2023-49959

Summary of CVE-2023-49959 : A command injection in the firmware’s gedtupdater service affects Indo-Sol PROFINET-INspektor NT up to version 2.4.0. An attacker can send a crafted filename in a POST to the path /api/updater/ctrl/start_update to execute arbitrary commands with root privileges. Exploi...

9.8CVSS8.4AI score0.01379EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/26 12:0 a.m.12 views

CVE-2023-49960

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint...

7.4AI score0.00664EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/02/26 12:0 a.m.5 views

PT-2024-13842 · Indo Sol · Indo-Sol Profinet-Inspektor Nt

Name of the Vulnerable Software and Affected Versions: Indo-Sol PROFINET-INspektor NT versions 2.4.0 and earlier Description: A path traversal issue in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the...

7.5CVSS7.6AI score0.00664EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/02/26 12:0 a.m.13 views

CVE-2023-49959

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...

8.3AI score0.01379EPSS
Exploits0References2
Rows per page
Query Builder