Lucene search
K

87 matches found

Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.1 views

Siemens TeleControl Server Basic UpdateOpcSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00604EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.2 views

Siemens TeleControl Server Basic UpdateUsers SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00648EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic Authenticate SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the Authenticate method. The issue results from t...

9.8CVSS8.1AI score0.00807EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.2 views

Siemens TeleControl Server Basic VerifyUser SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the VerifyUser method. The issue results from the...

9.8CVSS8.1AI score0.00807EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic UpdateSmtpSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00648EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.2 views

Siemens TeleControl Server Basic ImportDatabase SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00648EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.6 views

Siemens TeleControl Server Basic RestoreFromBackup SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8.8CVSS8.2AI score0.00712EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic CreateTrace SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the CreateTrace method. The issue results from th...

9.8CVSS8.1AI score0.00807EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.7 views

Siemens TeleControl Server Basic UpdateConnectionVariables SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00648EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic UpdateProjectConnections SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00648EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.5 views

Siemens TeleControl Server Basic UpdateProject SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00604EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.5 views

Siemens TeleControl Server Basic CreateProject SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00648EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.2 views

Siemens TeleControl Server Basic UpdateTcmSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00648EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.6 views

Siemens TeleControl Server Basic UpdateDatabaseSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00648EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic UpdateGateways SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00604EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.2 views

Siemens TeleControl Server Basic UpdateBufferingSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00648EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.4 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08370)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the CreateLog method, which can be exploited by an attacker to bypass authorization...

8.8CVSS8.2AI score0.00525EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.3 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08365)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that stems from an SQL injection in the GetTraces method, which can be exploited by an attacker to bypass authorization controls a...

8.8CVSS8.1AI score0.00598EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.5 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08362)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method GetActiveProjects, which can be exploited by an attacker to bypass...

8.8CVSS8.1AI score0.00604EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.3 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08359)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method LockProjectUserRights, which can be exploited by an attacker to bypass authorization...

8.8CVSS8.3AI score0.00604EPSS
Exploits0References1
Rows per page
Query Builder