EUVD-2023-32760

Malicious code in bioql PyPI...

EUVD-2023-36902

Malicious code in bioql PyPI...

CVE-2024-28042 SUBNET PowerSYSTEM Center Reliance on Insufficiently Trustworthy Component

SUBNET Solutions Inc. has identified vulnerabilities in third-party components used in PowerSYSTEM Center...

SUBNET PowerSYSTEM Center 安全漏洞

SUBNET PowerSYSTEM Center is SUBNET's infrastructure for secure, centralized management of the many different intelligent electronic devices meters, relays, RTUs, etc. deployed throughout the transmission and distribution system. A security vulnerability exists in SUBNET PowerSYSTEM Center versio...

SUBNET PowerSYSTEM Center Code Issue Vulnerability

SUBNET PowerSYSTEM Center is SUBNET's infrastructure for securely and centrally managing the many different intelligent electronic devices meters, relays, RTUs, etc. deployed throughout the transmission and distribution system. A security vulnerability exists in SUBNET PowerSYSTEM Center 2020...

CVE-2023-32659

SUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could propagate out of the system and reach users who are subscribed to email notifications...

CVE-2023-29158

SUBNET PowerSYSTEM Center versions 2020 U10 and prior are vulnerable to replay attacks which may result in a denial-of-service condition or a loss of data integrity...

Cross site scripting

SUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could propagate out of the system and reach users who are subscribed to email notifications...

Race condition

SUBNET PowerSYSTEM Center versions 2020 U10 and prior are vulnerable to replay attacks which may result in a denial-of-service condition or a loss of data integrity...

CVE-2023-32659 SUBNET PowerSYSTEM Center Cross-site Scripting

SUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could propagate out of the system and reach users who are subscribed to email notifications...

CVE-2023-32659

SUBNET PowerSYSTEM Center (PowerSYSTEM Center) versions 2020 U10 and prior are affected by CVE-2023-32659, a cross-site scripting (CWE-79) vulnerability in report header graphic file handling. The issue arises from improper input neutralization during web page generation, enabling an attacker to ...

CVE-2023-29158 SUBNET PowerSYSTEM Center Authentication Bypass by Capture-replay

SUBNET PowerSYSTEM Center versions 2020 U10 and prior are vulnerable to replay attacks which may result in a denial-of-service condition or a loss of data integrity...

CVE-2023-29158

SUBNET PowerSYSTEM Center (PS Center) versions 2020 U10 and earlier are affected by CVE-2023-29158, a replay-capable authentication bypass flaw (capture-replay) that may lead to denial of service or loss of data integrity. Impacted component: PS Center authentication flow; root cause: replay atta...

PT-2023-23938 · Subnet · Subnet Powersystem Center

Name of the Vulnerable Software and Affected Versions: SUBNET PowerSYSTEM Center versions 2020 U10 and prior Description: The issue allows an attacker to inject malicious code into report header graphic files, which could propagate out of the system and reach users who are subscribed to email...

PT-2023-22176 · Subnet · Subnet Powersystem Center

Name of the Vulnerable Software and Affected Versions: SUBNET PowerSYSTEM Center versions 2020 U10 and prior Description: The issue concerns replay attacks, which may lead to a denial-of-service condition or a loss of data integrity. Recommendations: For SUBNET PowerSYSTEM Center versions 2020 U1...

SUBNET PowerSYSTEM Center 跨站脚本漏洞

SUBNET PowerSYSTEM Center is SUBNET's infrastructure for secure, centralized management of the many different intelligent electronic devices meters, relays, RTUs, etc. deployed throughout the transmission and distribution system. A cross-site scripting vulnerability exists in SUBNET PowerSYSTEM...