Lucene search
+L

50 matches found

Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.11 views

PT-2025-20904 · Unknown · Cp-Xr-De21-S

Name of the Vulnerable Software and Affected Versions: CP-XR-DE21-S -4G Router Firmware version 1.031.022 Description: The issue concerns insecure protections for the UART console, allowing local attackers to connect via a serial connection, read the boot sequence, and reveal internal system...

5.1CVSS5.7AI score0.00196EPSS
Exploits1References4
CVE
CVE
added 2025/05/13 12:0 a.m.53 views

CVE-2025-44039

CVE-2025-44039 affects the CP-XR-DE21-S 4G router: firmware version 1.031.022 has insecure protections on the UART console. The issue allows a local attacker with serial access to connect to the UART port, view the boot sequence, and reveal internal system details and sensitive information withou...

5.1CVSS6.8AI score0.00196EPSS
Exploits1References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.9 views

The vulnerability of the imx_uart_console_write() function in the Linux kernel’s serial component allows a hacker to trigger a service failure.

The vulnerability of the imxuartconsolewrite function in the Linux kernel’s serial component is related to improper locking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00222EPSS
Exploits0References14Affected Software7
OSV
OSV
added 2023/09/16 12:15 a.m.7 views

CVE-2023-36160

An issue was discovered in Qubo Smart Plug10A version HSP02010114SYSTEM-10 A, allows local attackers to gain sensitive information and other unspecified impact via UART console...

5.5CVSS5.8AI score0.00163EPSS
Exploits0References1
NVD
NVD
added 2023/09/16 12:15 a.m.18 views

CVE-2023-36160

An issue was discovered in Qubo Smart Plug10A version HSP02010114SYSTEM-10 A, allows local attackers to gain sensitive information and other unspecified impact via UART console...

5.5CVSS5.6AI score0.00163EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/09/16 12:15 a.m.5 views

CVE-2023-36160

An issue was discovered in Qubo Smart Plug10A version HSP02010114SYSTEM-10 A, allows local attackers to gain sensitive information and other unspecified impact via UART console...

5.5CVSS5.8AI score0.00163EPSS
Exploits0References2
Prion
Prion
added 2023/09/16 12:15 a.m.22 views

Code injection

An issue was discovered in Qubo Smart Plug10A version HSP02010114SYSTEM-10 A, allows local attackers to gain sensitive information and other unspecified impact via UART console...

1.7CVSS5.5AI score0.00163EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/15 12:0 a.m.7 views

PT-2023-25460 · Unknown · Qubo Smart Plug 10A

Name of the Vulnerable Software and Affected Versions: Qubo Smart Plug10A version HSP02 01 01 14 SYSTEM-10 A Description: An issue was discovered in Qubo Smart Plug10A, allowing local attackers to gain sensitive information and other unspecified impact via UART console. Recommendations: For Qubo...

5.5CVSS5.6AI score0.00163EPSS
Exploits0References5
CVE
CVE
added 2023/09/15 12:0 a.m.37 views

CVE-2023-36160

CVE-2023-36160 affects Qubo Smart Plug10A, specifically version HSP02_01_01_14_SYSTEM-10 A. The issue permits local attackers to access sensitive information via the UART console, with the exposed impact limited to confidentiality (as per the CVSS and vendor notes) and without other confirmed exp...

5.5CVSS5.5AI score0.00163EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/15 12:0 a.m.19 views

CVE-2023-36160

An issue was discovered in Qubo Smart Plug10A version HSP02010114SYSTEM-10 A, allows local attackers to gain sensitive information and other unspecified impact via UART console...

5.9AI score0.00163EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/09/15 12:0 a.m.5 views

Qubo Smart Plug Security Vulnerability

Qubo Smart Plug is a smart plug from Qubo. It effectively manages and tracks the energy consumption of devices through real-time power monitoring. A security vulnerability exists in Qubo Smart Plug version 10A HSP02010114SYSTEM-10 A. The vulnerability stems from a vulnerability that allows an...

5.5CVSS6.7AI score0.00163EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/09/15 12:0 a.m.12 views

CVE-2023-36160

An issue was discovered in Qubo Smart Plug10A version HSP02010114SYSTEM-10 A, allows local attackers to gain sensitive information and other unspecified impact via UART console...

6.7AI score0.00163EPSS
Exploits0References1
CNVD
CNVD
added 2023/06/14 12:0 a.m.25 views

Siemens SICAM A8000 Devices CPCI85 Firmware Hardcoded Credentials Vulnerability

The SICAM A8000 RTUs Remote Terminal Units series is a modular device family for remote control and automation applications in all areas of energy supply. A hard-coded credentials vulnerability exists in the Siemens SICAM A8000 Devices CPCI85 Firmware, which can be exploited by an attacker to log...

6.8CVSS6.8AI score0.00364EPSS
Exploits1References1
NVD
NVD
added 2023/06/13 9:15 a.m.24 views

CVE-2023-33921

A vulnerability has been identified in CP-8031 MASTER MODULE All versions CPCI85 V05, CP-8050 MASTER MODULE All versions CPCI85 V05. The affected devices contain an exposed UART console login interface. An attacker with direct physical access could try to bruteforce or crack the root password to...

6.8CVSS6.6AI score0.00394EPSS
Exploits1References3
NVD
NVD
added 2023/06/13 9:15 a.m.33 views

CVE-2023-33920

A vulnerability has been identified in CP-8031 MASTER MODULE All versions CPCI85 V05, CP-8050 MASTER MODULE All versions CPCI85 V05. The affected devices contain the hash of the root password in a hard-coded form, which could be exploited for UART console login to the device. An attacker with...

6.8CVSS6.6AI score0.00364EPSS
Exploits1References3
CVE
CVE
added 2023/06/13 8:17 a.m.60 views

CVE-2023-33920

Siemens SICAM A8000 CP-8031/CP-8050 Master Modules (versions older than CPCI85 V05) are affected by CVE-2023-33920 due to hard-coded root-password credentials. The vulnerability enables login via the UART console when an attacker has direct physical access, jeopardizing device integrity and contr...

6.8CVSS6.7AI score0.00364EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/13 8:17 a.m.7 views

CVE-2023-33920

A vulnerability has been identified in CP-8031 MASTER MODULE All versions CPCI85 V05, CP-8050 MASTER MODULE All versions CPCI85 V05. The affected devices contain the hash of the root password in a hard-coded form, which could be exploited for UART console login to the device. An attacker with...

6.8CVSS6.6AI score0.00364EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/06/13 8:17 a.m.35 views

CVE-2023-33920

A vulnerability has been identified in CP-8031 MASTER MODULE All versions CPCI85 V05, CP-8050 MASTER MODULE All versions CPCI85 V05. The affected devices contain the hash of the root password in a hard-coded form, which could be exploited for UART console login to the device. An attacker with...

6.8CVSS6.6AI score0.00364EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.16 views

Siemens CP-8031 信任管理问题漏洞

The SICAM A8000 RTUs Remote Terminal Units series is a modular device family for remote control and automation applications in all areas of energy supply. A hard-coded credentials vulnerability exists in the Siemens SICAM A8000 Devices CPCI85 Firmware, which can be exploited by an attacker to log...

6.8CVSS6.9AI score0.00364EPSS
Exploits1References4
Talos
Talos
added 2022/10/20 12:0 a.m.44 views

Abode Systems, Inc. iota All-In-One Security Kit UPnP logging format string injection vulnerabilities

Talos Vulnerability Report TALOS-2022-1583 Abode Systems, Inc. iota All-In-One Security Kit UPnP logging format string injection vulnerabilities October 20, 2022 CVE Number CVE-2022-35879,CVE-2022-35878,CVE-2022-35881,CVE-2022-35880 SUMMARY Four format string injection vulnerabilities exist in th...

8.8CVSS8.4AI score0.00792EPSS
Exploits4
Rows per page
Query Builder