44 matches found
EUVD-2024-29724
Malicious code in bioql PyPI...
EUVD-2022-41608
Malicious code in bioql PyPI...
EUVD-2021-31896
Malicious code in bioql PyPI...
EUVD-2023-42440
Malicious code in bioql PyPI...
Siemens SICAM TOOLBOX II Trust Management Issue Vulnerability
Siemens SICAM TOOLBOX II is an engineering software from Siemens, Germany. A trust management issue vulnerability exists in Siemens SICAM TOOLBOX II that stems from a failure to check the extended key usage attribute of a device certificate, which could be exploited by an attacker to cause a...
The vulnerability of the SICAM TOOLBOX II engineering software, related to incorrect verification of certificates, allows a perpetrator to execute a “man-in-the-middle” type attack.
The vulnerability of the SICAM TOOLBOX II engineering software is related to improper verification of the TLS certificate. Exploiting this vulnerability could allow a remote attacker to execute a “man-in-the-middle” type attack...
The vulnerability of the SICAM TOOLBOX II engineering software, related to incorrect verification of certificates, allows a perpetrator to execute a “man-in-the-middle” type attack.
The vulnerability of the SICAM TOOLBOX II engineering software is related to improper verification of the TLS certificate. Exploiting this vulnerability could allow a remote attacker to execute a “man-in-the-middle” type attack...
CVE-2024-31853
A vulnerability has been identified in SICAM TOOLBOX II All versions V07.11. During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check the extended key usage attribute of that device's certificate. This could allow an attacker to...
CVE-2024-31854
A vulnerability has been identified in SICAM TOOLBOX II All versions V07.11. During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check device's certificate common name against an expected value. This could allow an attacker to execute...
CVE-2024-31854
A vulnerability has been identified in SICAM TOOLBOX II All versions V07.11. During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check device's certificate common name against an expected value. This could allow an attacker to execute...
CVE-2024-31854
CVE-2024-31854 affects Siemens SICAM TOOLBOX II (all versions
CVE-2024-31854
A vulnerability has been identified in SICAM TOOLBOX II All versions V07.11. During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check device's certificate common name against an expected value. This could allow an attacker to execute...
CVE-2024-31854
A vulnerability has been identified in SICAM TOOLBOX II All versions V07.11. During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check device's certificate common name against an expected value. This could allow an attacker to execute...
CVE-2024-31853
CVE-2024-31853 affects Siemens SICAM TOOLBOX II (all versions
CVE-2024-31853
A vulnerability has been identified in SICAM TOOLBOX II All versions V07.11. During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check the extended key usage attribute of that device's certificate. This could allow an attacker to...
CVE-2024-31853
A vulnerability has been identified in SICAM TOOLBOX II All versions V07.11. During establishment of a https connection to the TLS server of a managed device, the affected application doesn't check the extended key usage attribute of that device's certificate. This could allow an attacker to...
Siemens SICAM TOOLBOX II 信任管理问题漏洞
Siemens SICAM TOOLBOX II is an engineering software from Siemens, Germany. A trust management issue vulnerability exists in Siemens SICAM TOOLBOX II that stems from a failure to check the extended key usage attribute of a device certificate, which could be exploited by an attacker to cause a...
PT-2025-28372 · Siemens · Sicam Toolbox Ii
Name of the Vulnerable Software and Affected Versions: SICAM TOOLBOX II versions prior to V07.11 Description: A issue has been identified in the application where it fails to check the extended key usage attribute of a device's certificate when establishing an HTTPS connection to the TLS server o...
PT-2025-28373 · Siemens · Sicam Toolbox Ii
Name of the Vulnerable Software and Affected Versions: SICAM TOOLBOX II versions prior to V07.11 Description: A issue has been identified in the application where it fails to compare the common name of a device's certificate with an expected value when establishing an HTTPS connection to the TLS...
CVE-2022-39062
A vulnerability has been identified in SICAM TOOLBOX II All versions V07.10. Affected applications do not properly set permissions for product folders. This could allow an authenticated attacker with low privileges to replace DLLs and conduct a privilege escalation...