Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

33 matches found

NVD
NVDadded 2025/11/11 9:15 p.m.2 views

CVE-2024-32008

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to a local privilege escalation due to an exposed debug interface on the localhost. This allows any local user to gain code execution as administrative application user...

8.5CVSS0.00014EPSS
Exploits0References1
NVD
NVDadded 2025/11/11 9:15 p.m.2 views

CVE-2024-32009

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to a local privilege escalation due to wrongly set permissions to a binary which allows any local attacker to gain administrative privileges...

8.5CVSS0.00014EPSS
Exploits0References1
CVE
CVEadded 2025/11/11 8:20 p.m.6 views

CVE-2024-32011

CVE-2024-32011 affects Siemens Spectrum Power 4 (all versions

8.8CVSS7AI score0.00091EPSS
Exploits0References1
EUVD
EUVDadded 2025/11/11 8:20 p.m.2 views

EUVD-2024-29849

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to run arbitrary commands via the user interface. This user interface can be used via the network and allows the execution of commands as administrative application use...

8.8CVSS6.9AI score0.00091EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/11/11 8:20 p.m.2 views

CVE-2024-32010

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to extraction of database credentials via a world-readable credential file. This allows an attacker to connect to the database as privileged application user and to run...

8.5CVSS6.7AI score0.00017EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/11/11 8:20 p.m.4 views

CVE-2024-32010

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to extraction of database credentials via a world-readable credential file. This allows an attacker to connect to the database as privileged application user and to run...

8.5CVSS0.00017EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/11/11 8:20 p.m.3 views

CVE-2024-32009

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to a local privilege escalation due to wrongly set permissions to a binary which allows any local attacker to gain administrative privileges...

8.5CVSS6.7AI score0.00014EPSS
Exploits0References1
CVE
CVEadded 2025/11/11 8:20 p.m.5 views

CVE-2024-32009

Summary: CVE-2024-32009 affects Siemens Spectrum Power 4 (all versions

8.5CVSS6.7AI score0.00014EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/11/11 8:20 p.m.3 views

CVE-2024-32009

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to a local privilege escalation due to wrongly set permissions to a binary which allows any local attacker to gain administrative privileges...

8.5CVSS0.00014EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/11/11 8:20 p.m.2 views

CVE-2024-32008

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to a local privilege escalation due to an exposed debug interface on the localhost. This allows any local user to gain code execution as administrative application user...

8.5CVSS0.00014EPSS
Exploits0References1
EUVD
EUVDadded 2025/11/11 8:20 p.m.2 views

EUVD-2024-29846

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to a local privilege escalation due to an exposed debug interface on the localhost. This allows any local user to gain code execution as administrative application user...

8.5CVSS7.3AI score0.00014EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2019-16138

Malware in sbrugna...

9.8CVSS9.2AI score0.01326EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/05/22 4:1 p.m.6 views

CVE-2020-15784

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP8. Insecure storage of sensitive information in the configuration files could allow the retrieval of user names...

5.3CVSS6.4AI score0.00111EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/22 10:19 a.m.5 views

CVE-2019-6579

A vulnerability has been identified in Spectrum Power 4 with Web Office Portal. An attacker with network access to the web server on port 80/TCP or 443/TCP could execute system commands with administrative privileges. The security vulnerability could be exploited by an unauthenticated attacker wi...

9.8CVSS7.4AI score0.01326EPSS
Exploits0References1
NVD
NVDadded 2022/02/09 4:15 p.m.13 views

CVE-2022-23312

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP9 Security Patch 1. The integrated web application "Online Help" in affected product contains a Cross-Site Scripting XSS vulnerability that could be exploited if unsuspecting users are tricked into accessing a malicious...

6.1CVSS0.00317EPSS
Exploits0References1
Prion
Prionadded 2022/02/09 4:15 p.m.10 views

Cross site scripting

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP9 Security Patch 1. The integrated web application "Online Help" in affected product contains a Cross-Site Scripting XSS vulnerability that could be exploited if unsuspecting users are tricked into accessing a malicious...

4.3CVSS5.8AI score0.00317EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2022/02/09 3:17 p.m.11 views

CVE-2022-23312

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP9 Security Patch 1. The integrated web application "Online Help" in affected product contains a Cross-Site Scripting XSS vulnerability that could be exploited if unsuspecting users are tricked into accessing a malicious...

5.9AI score0.00317EPSS
Exploits0References1
CVE
CVEadded 2022/02/09 3:17 p.m.106 views

CVE-2022-23312

Spectrum Power 4 (all versions before v4.70 SP9 Security Patch 1) contains a Cross-Site Scripting (XSS) vulnerability in the integrated web app “Online Help.” The issue could be exploited when users click a malicious link, potentially impacting confidentiality and integrity per available reports....

6.1CVSS5.8AI score0.00317EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2020/09/09 7:15 p.m.1 views

CVE-2020-15790

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP8. If configured in an insecure manner, the web server might be susceptible to a directory listing attack...

5.3CVSS6AI score0.00237EPSS
Exploits0References1
NVD
NVDadded 2020/09/09 7:15 p.m.11 views

CVE-2020-15790

A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP8. If configured in an insecure manner, the web server might be susceptible to a directory listing attack...

5.3CVSS0.00237EPSS
Exploits0References1
Rows per page
Query Builder