Lucene search
K

101 matches found

BDU FSTEC
BDU FSTEC
added 2023/09/13 12:0 a.m.6 views

The vulnerability of the doRTAAccessUPass method in the software for testing and monitoring network quality by Visualware MyConnection Server allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the doRTAAccessUPass method in the software for testing and monitoring network quality by Visualware MyConnection Server is related to the lack of protection for operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized...

7.8CVSS7.2AI score0.0094EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/07 12:0 a.m.4 views

PT-2023-5298 · Unknown · Modulys Gp

Name of the Vulnerable Software and Affected Versions: MODULYS GP MOD3GP-SY-120K affected versions not specified Description: The issue is related to the lack of security in the authentication process of the web application, allowing information to be obtained by sending specific requests. This i...

7.8CVSS7.3AI score0.00508EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2023/07/26 12:0 a.m.6 views

The vulnerability of the SonicWall Analytics analytical service and the SonicWall Global Management System (GMS) global network firewall management system lies in the lack of protection for operational data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the SonicWall Analytics analytical service and the SonicWall Global Management System GMS global network firewall management system is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gai...

5.3CVSS5.9AI score0.00692EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/03/30 12:0 a.m.6 views

The vulnerability of the microprogramming software for Schneider Electric’s spaceLYnk and Schneider Electric’s homeLYnk logic controllers allows a hacker to compromise the device during the initial setup process.

The vulnerability of the microprogramming software for Schneider Electric’s spaceLYnk and homeLYn logic controllers is related to the lack of protection for operational data. Exploiting this vulnerability allows a remote attacker to compromise the device during the initial setup process...

5CVSS6.3AI score0.00817EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/03/30 12:0 a.m.6 views

The vulnerability of the microprogramming software for Schneider Electric’s spaceLYnk and Schneider Electric’s homeLYnk logic controllers allows attackers to disclose protected information.

The vulnerability of the microprogramming software for Schneider Electric’s spaceLYnk and homeLYnk logic controllers is related to the lack of protection for operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose the protected information...

4.6CVSS6.5AI score0.00796EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/10/04 12:0 a.m.7 views

The vulnerability of the Lifecycle Management console component of the SAP BusinessObjects Business Intelligence platform allows a perpetrator to gain unauthorized access to protected information, change passwords, or import files into another system.

The vulnerability of the Lifecycle Management console component of the SAP BusinessObjects Business Intelligence platform is related to the lack of protection for operational data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information, change...

8CVSS6.2AI score0.00627EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/05 12:0 a.m.6 views

The vulnerability of the WLAN AutoConfig service in the Microsoft Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the WLAN AutoConfig service in the Microsoft Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.8CVSS7.4AI score0.04216EPSS
Exploits0References3
OSV
OSV
added 2022/04/27 4:15 p.m.5 views

CVE-2021-34588

In Bender/ebee Charge Controllers in multiple versions are prone to unprotected data export. Backup export is protected via a random key. The key is set at user login. It is empty after reboot...

8.6CVSS5.8AI score0.00844EPSS
Exploits0References1
NVD
NVD
added 2022/04/27 4:15 p.m.28 views

CVE-2021-34588

In Bender/ebee Charge Controllers in multiple versions are prone to unprotected data export. Backup export is protected via a random key. The key is set at user login. It is empty after reboot...

8.6CVSS0.00844EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/04/27 3:15 p.m.26 views

CVE-2021-34588 Bender Charge Controller: Unprotected data export

In Bender/ebee Charge Controllers in multiple versions are prone to unprotected data export. Backup export is protected via a random key. The key is set at user login. It is empty after reboot...

8.6CVSS8.6AI score0.00844EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/27 12:0 a.m.4 views

Bender ebee 充电控制器 安全漏洞

The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from an unprotected data export. The backup export is protected by a random key. The key is set at user login. It is empty after a reboot. An attacker can exploit this...

8.6CVSS8AI score0.00844EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/03/04 12:0 a.m.7 views

The vulnerability of the built-in software of NETGEAR’s RBK352, RBR350, and RBS350 routers lies in the lack of protection for service data, which allows attackers to exploit this weakness to disclose protected information.

The vulnerability of NETGEAR’s embedded routing software, such as RBK352, RBR350, and RBS350, is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

7.8CVSS7.2AI score0.01365EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/07/29 12:0 a.m.6 views

The vulnerability of the microprogrammed Wi-Fi camera software of Rubetek RV-3406, RV-3409, and RV-3411 lies in the lack of protection for transmitted data, allowing intruders to intercept and modify video data from the cameras.

The vulnerability of the Microprogrammed Wi-Fi cameras Rubetek RV-3406, RV-3409, and RV-3411 lies in the lack of protection for transmitted data. Exploiting this vulnerability could allow a remote attacker to intercept and modify video data from the cameras...

8.1CVSS7.5AI score0.00844EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/05/24 12:0 a.m.4 views

The vulnerability of the Microsoft Windows Infrared Data Association (IrDA) component of the Windows operating system, related to the lack of protection for service data, allows a perpetrator to disclose protected information.

The vulnerability of the Microsoft Windows Infrared Data Association IrDA component of the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose protected information...

5.5CVSS5.8AI score0.0156EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/05/24 12:0 a.m.7 views

The vulnerability of the CSC service in the Windows operating system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the CSC service in the Windows operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.5CVSS5.9AI score0.0076EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/04/21 12:0 a.m.4 views

The vulnerability of the Cockpit database component in Adaptive Server Enterprise, which allows a hacker to disclose protected information

The vulnerability of the Cockpit database component in Adaptive Server Enterprise is related to the lack of protection for operational data. Exploiting this vulnerability can allow an attacker to disclose the protected information...

6.1CVSS7.1AI score0.0027EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/04/01 12:0 a.m.8 views

The vulnerability of the Citrix XenMobile Server, a system for managing corporate mobile devices, lies in the lack of protection for operational data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the Citrix XenMobile Server, a system for managing corporate mobile devices, is related to the lack of protection for operational data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

7.8CVSS7.7AI score0.01542EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.7 views

The vulnerability of GE Healthcare’s medical diagnostic equipment lies in the lack of protection for operational data. This allows unauthorized individuals to gain access to protected information or enhance their privileges.

The vulnerability of GE Healthcare’s medical diagnostic equipment is related to the lack of protection for operational data. Exploiting this vulnerability can allow an intruder, operating remotely, to gain unauthorized access to protected information or enhance their privileges...

9.8CVSS7.7AI score0.01398EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/03/15 12:0 a.m.4 views

(Vulnerability) The vulnerability of the `show_transport_handle` function in Linux kernel allows a hacker to disclose sensitive information or cause service failures.

The vulnerability of the showtransporthandle function /scsi/scsitransportiscsi.c in the Linux operating system kernel is related to the lack of protection for service data. Exploiting this vulnerability could allow an attacker to disclose sensitive information or cause service failures...

7.3CVSS6.5AI score0.00711EPSS
Exploits1References14Affected Software6
BDU FSTEC
BDU FSTEC
added 2021/02/25 12:0 a.m.7 views

The vulnerability of the J-Web web interface of the Junos operating system, which allows a hacker to increase their privileges

The vulnerability of the J-Web web interface of the Junos operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

7.1CVSS6.7AI score0.01101EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder