Lucene search
K

11 matches found

NVD
NVD
added 2024/03/18 2:15 p.m.24 views

CVE-2024-27772

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE...

8.8CVSS8.8AI score0.01731EPSS
Exploits0References2
NVD
NVD
added 2024/03/18 2:15 p.m.13 views

CVE-2024-27774

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-259: Use of Hard-coded Password may allow disclosing Sensitive Information Embedded inside Device's Firmware...

7.5CVSS7.5AI score0.00431EPSS
Exploits0References2
OSV
OSV
added 2024/03/18 2:15 p.m.8 views

CVE-2024-27770

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-23: Relative Path Traversal...

8.8CVSS5.8AI score0.00794EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/18 1:34 p.m.31 views

CVE-2024-27774 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-259: Use of Hard-coded Password

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-259: Use of Hard-coded Password may allow disclosing Sensitive Information Embedded inside Device's Firmware...

7.5CVSS6.9AI score0.00431EPSS
Exploits0References2
CVE
CVE
added 2024/03/18 1:34 p.m.72 views

CVE-2024-27774

Summary (CVE-2024-27774) : Unitronics Unistream Unilogic is affected in versions prior to 1.35.227. The root cause is the use of hard-coded passwords, which may disclose sensitive information embedded in the device firmware (high confidentiality impact). Affected component is the Unilogic firmwar...

7.5CVSS7.5AI score0.00431EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/18 1:28 p.m.22 views

CVE-2024-27772 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-78: 'OS Command Injection'

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE...

8.8CVSS8.9AI score0.01731EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/18 1:23 p.m.16 views

CVE-2024-27770 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-23: Relative Path Traversal

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-23: Relative Path Traversal...

8.8CVSS6.9AI score0.00794EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/18 1:19 p.m.22 views

CVE-2024-27768 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-22: 'Path Traversal'

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE...

9.8CVSS7.1AI score0.00854EPSS
Exploits0References2
CVE
CVE
added 2024/03/18 1:19 p.m.103 views

CVE-2024-27768

CVE-2024-27768 affects Unitronics Unistream Unilogic before version 1.35.227. The issue is a Path Traversal vulnerability that may allow remote code execution (RCE) by accessing files outside the web root. Affected component appears to be the Unilogic software on Unitronics Unistream controllers....

9.8CVSS9.5AI score0.00854EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/03/18 1:13 p.m.23 views

CVE-2024-27767 Unitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-287: Improper Authentication

CWE-287: Improper Authentication may allow Authentication Bypass...

10CVSS9.7AI score0.0069EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/18 12:0 a.m.6 views

Unitronics Unistream Unilogic Path Traversal Vulnerability

Unitronics Unistream Unilogic is an integrated controller software platform from Unitronics Corporation for developing and programming the Unistream family of programmable logic controllers PLCs. A security vulnerability exists in Unitronics Unistream Unilogic versions prior to 1.35.227. An...

8.8CVSS6.7AI score0.00794EPSS
Exploits0References3
Rows per page
Query Builder