Lucene search
+L

15 matches found

NVD
NVD
added 2024/03/18 2:15 p.m.25 views

CVE-2024-27772

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE...

8.8CVSS8.8AI score0.01731EPSS
Exploits0References2
NVD
NVD
added 2024/03/18 2:15 p.m.14 views

CVE-2024-27774

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-259: Use of Hard-coded Password may allow disclosing Sensitive Information Embedded inside Device's Firmware...

7.5CVSS7.5AI score0.00431EPSS
Exploits0References2
NVD
NVD
added 2024/03/18 2:15 p.m.20 views

CVE-2024-27769

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor may allow Taking Ownership Over Devices...

8.8CVSS8.7AI score0.00711EPSS
Exploits0References2
OSV
OSV
added 2024/03/18 2:15 p.m.6 views

CVE-2024-27768

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE...

9.8CVSS5.8AI score0.00854EPSS
Exploits0References2
OSV
OSV
added 2024/03/18 2:15 p.m.9 views

CVE-2024-27770

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-23: Relative Path Traversal...

8.8CVSS5.8AI score0.00794EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/18 1:34 p.m.31 views

CVE-2024-27774 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-259: Use of Hard-coded Password

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-259: Use of Hard-coded Password may allow disclosing Sensitive Information Embedded inside Device's Firmware...

7.5CVSS6.9AI score0.00431EPSS
Exploits0References2
CVE
CVE
added 2024/03/18 1:34 p.m.73 views

CVE-2024-27774

Summary (CVE-2024-27774) : Unitronics Unistream Unilogic is affected in versions prior to 1.35.227. The root cause is the use of hard-coded passwords, which may disclose sensitive information embedded in the device firmware (high confidentiality impact). Affected component is the Unilogic firmwar...

7.5CVSS7.5AI score0.00431EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/18 1:28 p.m.25 views

CVE-2024-27772 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-78: 'OS Command Injection'

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE...

8.8CVSS8.9AI score0.01731EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/18 1:23 p.m.16 views

CVE-2024-27770 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-23: Relative Path Traversal

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-23: Relative Path Traversal...

8.8CVSS6.9AI score0.00794EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/18 1:19 p.m.22 views

CVE-2024-27768 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-22: 'Path Traversal'

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE...

9.8CVSS7.1AI score0.00854EPSS
Exploits0References2
CVE
CVE
added 2024/03/18 1:19 p.m.108 views

CVE-2024-27768

CVE-2024-27768 affects Unitronics Unistream Unilogic before version 1.35.227. The issue is a Path Traversal vulnerability that may allow remote code execution (RCE) by accessing files outside the web root. Affected component appears to be the Unilogic software on Unitronics Unistream controllers....

9.8CVSS9.5AI score0.00854EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/18 1:13 p.m.25 views

CVE-2024-27767 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-287: Improper Authentication

CWE-287: Improper Authentication may allow Authentication Bypass...

10CVSS9.7AI score0.0069EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/18 12:0 a.m.6 views

Unitronics Unistream Unilogic Path Traversal Vulnerability

Unitronics Unistream Unilogic is an integrated controller software platform from Unitronics Corporation for developing and programming the Unistream family of programmable logic controllers PLCs. A security vulnerability exists in Unitronics Unistream Unilogic versions prior to 1.35.227. An...

8.8CVSS6.7AI score0.00794EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/18 12:0 a.m.8 views

Unitronics Unistream Unilogic Path Traversal Vulnerability

Unitronics Unistream Unilogic is an integrated controller software platform from Unitronics, Inc. for developing and programming the Unistream family of programmable logic controllers PLCs. A path traversal vulnerability exists in Unitronics Unistream Unilogic versions prior to 1.35.227, which...

8.8CVSS8AI score0.0081EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/03/18 12:0 a.m.6 views

PT-2024-2271 · Unitronics · Unilogic

Name of the Vulnerable Software and Affected Versions: Unitronics Unistream Unilogic versions prior to 1.35.227 Description: The issue is related to incorrect restriction of a directory path with limited access. Exploitation of this issue may allow a remote attacker to execute arbitrary code. Thi...

9.8CVSS8.5AI score0.00854EPSS
Exploits0References9
Rows per page
Query Builder