Lucene search
K

711 matches found

CNVD
CNVD
added 2025/04/22 12:0 a.m.6 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-09141)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that stems from the lack of proper filtering of input in the internally used 'DeleteProject' method. An attacker could exploit th...

8.8CVSS7.8AI score0.00604EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.5 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08605)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method LockGeneralSettings, which can be exploited by an attacker to bypass authorization contro...

8.8CVSS8.3AI score0.00604EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.5 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-09148)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method UpdateProjectCrossCommunications that can be exploited by an attacker to bypass...

8.8CVSS8.3AI score0.00604EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.6 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08607)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method, UnlockUser, which can be exploited by an attacker to bypass authorization controls and...

8.8CVSS8.3AI score0.00604EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.5 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08355)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method UpdateProjectConnections, which can be exploited by an attacker to...

8.8CVSS8.1AI score0.00648EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.6 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08366)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the ExportCertificate method, which can be exploited by an attacker to bypass...

8.8CVSS8.3AI score0.00335EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.3 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08619)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method UpdateProjectUserRights, which can be exploited by an attacker to bypass authorization...

8.8CVSS8.3AI score0.00604EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.2 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08352)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method UpdateTcmSettings, which can be exploited by an attacker to bypass...

8.8CVSS8.1AI score0.00648EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.3 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08360)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method ActivateProject, which can be exploited by an attacker to bypass...

8.8CVSS8.1AI score0.00604EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.6 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08368)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the CreateBackup method, which can be exploited by an attacker to bypass authorization...

8.8CVSS8.2AI score0.00525EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.4 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08357)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method RestoreFromBackup, which can be exploited by an attacker to bypass...

8.8CVSS8.1AI score0.00712EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.4 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08613)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method, ImportConnectionVariables, which can be exploited by an attacker to bypass authorization...

8.8CVSS8.3AI score0.00604EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.4 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08364)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that stems from an SQL injection in the ImportCertificate method, which can be exploited by an attacker to bypass authorization...

8.8CVSS8.1AI score0.00335EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/21 12:0 a.m.5 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-09146)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that can be exploited by an attacker to cause remote code execution...

9.8CVSS8.2AI score0.00807EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/21 12:0 a.m.4 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-09147)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that can be exploited by an attacker to cause remote code execution...

9.8CVSS8.2AI score0.00807EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/21 12:0 a.m.3 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-09149)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that can be exploited by an attacker to cause remote code execution...

9.8CVSS8.2AI score0.00807EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/21 12:0 a.m.3 views

Siemens TeleControl Server SQL Injection Vulnerability (CNVD-2025-09150)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that can be exploited by an attacker to bypass authorization controls and execute arbitrary code...

8.8CVSS8.1AI score0.00525EPSS
Exploits0References1
NVD
NVD
added 2025/04/17 11:15 a.m.15 views

CVE-2025-29931

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected product does not properly validate a length field in a serialized message which it uses to determine the amount of memory to be allocated for deserialization. This could allow an unauthenticated...

6.3CVSS0.00356EPSS
Exploits0References1
CVE
CVE
added 2025/04/17 11:5 a.m.54 views

CVE-2025-29931

CVE-2025-29931 affects Siemens TeleControl Server Basic versions prior to 3.1.2.2. The issue arises from insufficient validation of a length field in a serialized message, used to size memory for deserialization, which could allow an unauthenticated remote attacker to force excessive memory alloc...

6.3CVSS6.9AI score0.00356EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/04/17 11:5 a.m.20 views

CVE-2025-29931

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected product does not properly validate a length field in a serialized message which it uses to determine the amount of memory to be allocated for deserialization. This could allow an unauthenticated...

6.3CVSS0.00356EPSS
Exploits0References1
Rows per page
Query Builder