Lucene search
K

90 matches found

CNNVD
CNNVD
added 2024/02/09 12:0 a.m.4 views

Emerson Rosemount GC370XA, GC700XA, GC1500XA Command Injection Vulnerabilities

The Emerson Rosemount GC370XA and others are a gas chromatograph from Emerson Electric Emerson. A command injection vulnerability exists in the Emerson Rosemount GC370XA, GC700XA, and GC1500XA. An attacker could use this vulnerability to run arbitrary commands from a remote computer...

9.8CVSS7.8AI score0.00559EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/02/09 12:0 a.m.3 views

Emerson Rosemount GC370XA, GC700XA, GC1500XA Security Breach

Emerson Rosemount GC370XA and others are a gas chromatograph from Emerson Electric USA. A security vulnerability exists in the Emerson Rosemount GC370XA, GC700XA, and GC1500XA. An attacker could exploit the vulnerability to access sensitive information or cause a denial of service...

9.1CVSS6.6AI score0.00471EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/02/07 12:0 a.m.5 views

The vulnerability of the web interface of Emerson Rosemount X-STREAM Enhanced microprogrammable instrumentation systems allows a perpetrator to disclose protected information.

The vulnerability of the web interface of Emerson Rosemount X-STREAM Enhanced microprogrammable logic devices is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to disclose sensitive information...

6.4CVSS6.6AI score0.00699EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/02/06 12:0 a.m.7 views

The vulnerability of microprogrammed software for Rosemount GC370XA, GC700XA, and GC1500XA gas chromatographs lies in the lack of measures taken to neutralize special elements used in the operating system’s command set, allowing attackers to execute arbitrary commands.

The vulnerability of microprogrammed software in Rosemount GC370XA, GC700XA, and GC1500XA gas chromatographs is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow a remote attacker to execute arbitrar...

6.9CVSS8.3AI score0.00559EPSS
Exploits0References5Affected Software3
Positive Technologies
Positive Technologies
added 2024/01/31 12:0 a.m.5 views

PT-2024-1614 · Emerson · Emerson Rosemount Gc700Xa +2

Name of the Vulnerable Software and Affected Versions: Emerson Rosemount GC370XA, GC700XA, and GC1500XA products affected versions not specified Description: The issue is related to weaknesses in the authentication procedure of Emerson Rosemount GC1500XA, GC700XA, and GC370XA products. An...

8.3CVSS8AI score0.00681EPSS
Exploits0References15
BDU FSTEC
BDU FSTEC
added 2024/01/31 12:0 a.m.5 views

The vulnerability of the microprogrammed software of Emerson Rosemount X-STREAM allows a intruder to inject arbitrary HTML code.

The vulnerability of Emerson Rosemount X-STREAM flow analyzers’ microprogramming software is related to improper input cancellation during the generation of web pages. Exploiting this vulnerability allows a remote attacker to inject arbitrary HTML code...

5.3CVSS6.5AI score0.00642EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/01/31 12:0 a.m.5 views

The vulnerability of microprogrammed software in Rosemount GC370XA, GC700XA, and GC1500XA gas chromatographs arises from the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows a perpetrator to execute arbitrary code.

The vulnerability of the microprogrammed software of the Rosemount GC370XA, GC700XA, and GC1500XA gas chromatographs is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute...

10CVSS8.4AI score0.00936EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/01/31 12:0 a.m.23 views

The vulnerability of the microprogrammed software of Emerson Rosemount X-STREAM flow analyzers allows a intruder to disclose protected information.

The vulnerability of Microprogrammed Software in Emerson Rosemount X-STREAM flow analyzers is related to insufficient encryption reliability. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

7.8CVSS7.2AI score0.00452EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.5 views

PT-2024-1735 · Emerson · Emerson Rosemount Gc700Xa +2

Name of the Vulnerable Software and Affected Versions: Emerson Rosemount GC370XA, GC700XA, and GC1500XA products affected versions not specified Description: An unauthenticated user with network access could obtain access to sensitive information or cause a denial-of-service condition due to...

9.4CVSS9AI score0.00471EPSS
Exploits0References18
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.4 views

PT-2024-1482 · Emerson · Emerson Rosemount Gc700Xa +2

Name of the Vulnerable Software and Affected Versions: Emerson Rosemount GC370XA, GC700XA, GC1500XA affected versions not specified Description: The issue is related to the lack of measures to neutralize special elements used in the operating system command. This could allow a remote attacker to...

9.8CVSS9.3AI score0.00559EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2024/01/30 12:0 a.m.5 views

PT-2024-1400 · Emerson · Emerson Rosemount Gc700Xa +2

Name of the Vulnerable Software and Affected Versions: Emerson Rosemount GC370XA, GC700XA, and GC1500XA products affected versions not specified Description: The issue allows an unauthenticated user with network access to execute arbitrary commands in root context from a remote computer. This is...

10CVSS9.8AI score0.00936EPSS
Exploits0References13
BDU FSTEC
BDU FSTEC
added 2023/06/05 12:0 a.m.11 views

The vulnerability of Emerson Rosemount X-STREAM Enhanced flow analyzers’ microprogramming software lies in the possibility of sending a cookie session file, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of Emerson Rosemount X-STREAM Enhanced flow analyzers’ microprogramming software relates to the ability to send a cookie session file. Exploiting this vulnerability could allow an unauthorized actor to gain unauthorized access to protected information...

5.3CVSS5.9AI score0.009EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/06/02 12:0 a.m.6 views

The vulnerability of Emerson Rosemount X-STREAM Enhanced flow gas analyzers’ microprogramming software lies in the lack of name-based path restriction, which allows unauthorized access to protected information by attackers.

The vulnerability of Emerson Rosemount X-STREAM Enhanced flow analyzers’ microprogramming software is related to deficiencies in the name-based path restriction mechanism for access to restricted catalogs. Exploiting this vulnerability could allow an attacker to gain unauthorized access to...

7.8CVSS7.2AI score0.01397EPSS
Exploits0References2
CNVD
CNVD
added 2021/05/21 12:0 a.m.8 views

Emerson Rosemount X-STREAM Gas Analyzer Path Traversal Vulnerability

The Emerson Rosemount X-STREAM Gas Analyzer is an Emerson gas analyzer for industrial environments. The device supports up to five component gas analyzers and features NDIR/UV/VIS photometry, paramagnetic and electrochemical O2, thermal conductivity and humidity sensors. A path traversal...

7.5CVSS6.7AI score0.01397EPSS
Exploits0References1
CNVD
CNVD
added 2021/05/21 12:0 a.m.7 views

Unspecified Vulnerability in Emerson Rosemount X-STREAM Gas Analyzer

The Emerson Rosemount X-STREAM Gas Analyzer is an Emerson gas analyzer for industrial environments. The device supports up to five component gas analyzers and features NDIR/UV/VIS photometry, paramagnetic and electrochemical O2, thermal conductivity and humidity sensors. A security vulnerability...

5.3CVSS6.7AI score0.009EPSS
Exploits0References1
CNVD
CNVD
added 2021/05/21 12:0 a.m.5 views

Unspecified Vulnerability in Emerson Rosemount X-STREAM Gas Analyzer (CNVD-2021-37939)

The Emerson Rosemount X-STREAM Gas Analyzer is an Emerson gas analyzer for industrial environments. The device supports up to five component gas analyzers and features NDIR/UV/VIS photometry, paramagnetic and electrochemical O2, thermal conductivity and humidity sensors. A security vulnerability...

6.1CVSS6.9AI score0.00699EPSS
Exploits0References1
CNVD
CNVD
added 2021/05/21 12:0 a.m.6 views

Emerson Rosemount X-STREAM Gas Analyzer Cross-Site Scripting Vulnerability

The Emerson Rosemount X-STREAM Gas Analyzer is an Emerson gas analyzer for industrial environments. The device supports up to five component gas analyzers and features NDIR/UV/VIS photometry, paramagnetic and electrochemical O2, thermal conductivity and humidity sensors. A cross-site scripting...

6.1CVSS6.1AI score0.00642EPSS
Exploits0References1
CNVD
CNVD
added 2021/05/21 12:0 a.m.7 views

Emerson Rosemount X-STREAM Gas Analyzer Code Issue Vulnerability

The Emerson Rosemount X-STREAM Gas Analyzer is an Emerson gas analyzer for industrial environments. The device supports up to five component gas analyzers and features NDIR/UV/VIS photometry, paramagnetic and electrochemical O2, thermal conductivity and humidity sensors. The Emerson Rosemount...

9.8CVSS7.8AI score0.01752EPSS
Exploits0References1
NVD
NVD
added 2021/05/20 12:15 p.m.11 views

CVE-2021-27465

A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected applications do not validate webpage input, which could allow an attacker to inject arbitrary HTML code into a webpage. This would allow an attacker to modify the page and display incorre...

6.1CVSS0.00642EPSS
Exploits0References1
NVD
NVD
added 2021/05/20 12:15 p.m.13 views

CVE-2021-27461

A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected webserver applications allow access to stored data that can be obtained by using specially crafted URLs...

7.5CVSS0.01397EPSS
Exploits0References1
Rows per page
Query Builder