50 matches found
EUVD-2019-2692
Malware in sbrugna...
EUVD-2019-2698
Malware in sbrugna...
EUVD-2016-10145
Malware in sbrugna...
EUVD-2019-2704
Malware in sbrugna...
EUVD-2019-2710
Malware in sbrugna...
EUVD-2022-42519
Malicious code in bioql PyPI...
CVE-2019-10984
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that causes the program to mishandle pointers...
CVE-2019-10978
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that operates outside of the designated memory area...
CVE-2019-10996
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow multiple vulnerabilities to be exploited when a valid user opens a specially crafted, malicious input file that can reference memory after it has been freed...
CVE-2019-10990
Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, uses a hard-coded password to encrypt protected files in transit and at rest, which may allow an attacker to access configuration files...
CVE-2023-42770 Red Lion Controls Sixnet RTU Authentication Bypass Using An Alternative Path Or Channel
Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled UDR-A any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message is received over TCP/IP the RTU will simply accept the message with no authentication challenge...
CVE-2023-40151 Red Lion Controls Sixnet RTU Exposed Dangerous Method Or Function
When user authentication is not enabled the shell can execute commands with the highest privileges. Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled UDR-A any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message comes over TCP/IP t...
Red Lion Controls SixTRAK and VersaTRAK Access Control Error Vulnerability
Red Lion Controls SixTRAK and Red Lion Controls VersaTRAK are the ultimate process controllers with open LINUX software capabilities from Red Lion Controls, Inc. A security vulnerability exists in the Red Lion Controls SixTRAK and VersaTRAK Series RTUs that originated to allow an attacker to bypa...
Red Lion Controls SixTRAK and VersaTRAK Security Vulnerabilities
Red Lion Controls SixTRAK and Red Lion Controls VersaTRAK are the ultimate process controllers with open LINUX software capabilities from Red Lion Controls, Inc. A security vulnerability exists in the Red Lion Controls SixTRAK and VersaTRAK Series RTUs that originated from allowing an...
Red Lion Controls Crimson Security Vulnerability
Red Lion Controls Crimson is a suite of HMI programming software from Red Lion Controls. A security vulnerability exists in the Red Lion Controls Crimson 3.2 Windows-based configuration tool that could allow an attacker with administrative access to define a new password for a user and download a...
CVE-2022-3090
Red Lion Controls Crimson 3.0 versions 707.000 and prior, Crimson 3.1 versions 3126.001 and prior, and Crimson 3.2 versions 3.2.0044.0 and prior are vulnerable to path traversal. When attempting to open a file using a specific path, the user's password hash is sent to an arbitrary host. This coul...
Path traversal
Red Lion Controls Crimson 3.0 versions 707.000 and prior, Crimson 3.1 versions 3126.001 and prior, and Crimson 3.2 versions 3.2.0044.0 and prior are vulnerable to path traversal. When attempting to open a file using a specific path, the user's password hash is sent to an arbitrary host. This coul...
CVE-2022-3090
Red Lion Controls Crimson 3.0 versions 707.000 and prior, Crimson 3.1 versions 3126.001 and prior, and Crimson 3.2 versions 3.2.0044.0 and prior are vulnerable to path traversal. When attempting to open a file using a specific path, the user's password hash is sent to an arbitrary host. This coul...
CVE-2022-3090
Red Lion Controls Crimson 3.0 versions 707.000 and prior, Crimson 3.1 versions 3126.001 and prior, and Crimson 3.2 versions 3.2.0044.0 and prior are vulnerable to path traversal. When attempting to open a file using a specific path, the user's password hash is sent to an arbitrary host. This coul...
CVE-2022-3090
CVE-2022-3090 affects Red Lion Controls Crimson 3.0 (707.000 and prior), Crimson 3.1 (3126.001 and prior), and Crimson 3.2 (3.2.0044.0 and prior). It is a path traversal vulnerability that, when opening a file via a specific path, causes the user’s password hash to be sent to an arbitrary host, e...