Lucene search
K

711 matches found

Positive Technologies
Positive Technologies
added 2025/04/17 12:0 a.m.5 views

PT-2025-16947 · Unknown · Telecontrol Server Basic

Name of the Vulnerable Software and Affected Versions: TeleControl Server Basic versions prior to 3.1.2.2 Description: A vulnerability has been identified in the product where it does not properly validate a length field in a serialized message, which is used to determine the amount of memory to ...

6.3CVSS6.6AI score0.00356EPSS
Exploits0References5
NVD
NVD
added 2025/04/16 6:16 p.m.22 views

CVE-2025-32872

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'GetOverview' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and wri...

8.8CVSS0.00525EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.3 views

CVE-2025-32872

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'GetOverview' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and wri...

8.7CVSS5.8AI score0.00525EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.12 views

CVE-2025-32867

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'CreateBackup' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and...

8.8CVSS0.00525EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.10 views

CVE-2025-32866

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'GetLogs' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write t...

8.8CVSS0.00525EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.11 views

CVE-2025-32869

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'ImportCertificate' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from a...

8.8CVSS0.00335EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.17 views

CVE-2025-32871

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'MigrateDatabase' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and...

8.8CVSS0.00525EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.12 views

CVE-2025-32870

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'GetTraces' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write...

8.8CVSS0.00598EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.17 views

CVE-2025-32868

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'ExportCertificate' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from a...

8.8CVSS0.00335EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.3 views

CVE-2025-32869

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'ImportCertificate' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from a...

8.7CVSS5.8AI score0.00335EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.2 views

CVE-2025-32867

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'CreateBackup' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and...

8.7CVSS5.8AI score0.00525EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.5 views

CVE-2025-32871

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'MigrateDatabase' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and...

8.7CVSS5.8AI score0.00525EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.3 views

CVE-2025-32866

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'GetLogs' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write t...

8.7CVSS5.8AI score0.00525EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.4 views

CVE-2025-32870

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'GetTraces' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write...

8.7CVSS5.8AI score0.00598EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.4 views

CVE-2025-32868

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'ExportCertificate' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from a...

8.7CVSS5.8AI score0.00335EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.16 views

CVE-2025-32865

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'CreateLog' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and write...

8.8CVSS0.00525EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.4 views

CVE-2025-32862

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'LockTraceLevelSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read...

8.7CVSS5.8AI score0.0049EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.12 views

CVE-2025-32863

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UnlockTraceLevelSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read...

8.8CVSS0.0049EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 6:16 p.m.10 views

CVE-2025-32860

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UnlockWebServerGatewaySettings' method. This could allow an authenticated remote attacker to bypass authorization controls, t...

8.8CVSS0.0049EPSS
Exploits0References1
OSV
OSV
added 2025/04/16 6:16 p.m.3 views

CVE-2025-32863

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UnlockTraceLevelSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read...

8.7CVSS5.8AI score0.0049EPSS
Exploits0References1
Rows per page
Query Builder