Lucene search
K

233 matches found

NVD
NVD
added 2021/10/28 1:15 p.m.24 views

CVE-2021-22278

A certificate validation vulnerability in PCM600 Update Manager allows attacker to get unwanted software packages to be installed on computer which has PCM600 installed...

6.7CVSS0.00124EPSS
Exploits0References2
Prion
Prion
added 2021/10/28 1:15 p.m.19 views

Design/Logic Flaw

A certificate validation vulnerability in PCM600 Update Manager allows attacker to get unwanted software packages to be installed on computer which has PCM600 installed...

4.6CVSS6.4AI score0.00124EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/10/28 12:45 p.m.52 views

CVE-2021-22278

CVE-2021-22278 describes an improper certificate validation in Hitachi Energy PCM600 Update Manager. Affected PCM600 Update Manager versions include 2.1, 2.1.0.4, 2.2, 2.2.0.1, 2.2.0.2, 2.2.0.23, 2.3.0.60, 2.4.20041.1, and 2.4.20119.2. According to the ICS advisory, exploitation could allow an ad...

6.7CVSS6.5AI score0.00124EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/10/28 12:45 p.m.26 views

CVE-2021-22278 Certificate verification vulnerability in Update Manager of PCM600 Engineering Tool

A certificate validation vulnerability in PCM600 Update Manager allows attacker to get unwanted software packages to be installed on computer which has PCM600 installed...

6.7CVSS6.7AI score0.00124EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/10/28 12:0 a.m.4 views

PT-2021-14929 · Unknown · Pcm600 Update Manager

Name of the Vulnerable Software and Affected Versions: PCM600 Update Manager affected versions not specified Description: A certificate validation issue in the PCM600 Update Manager allows an attacker to install unwanted software packages on a computer with PCM600 installed. Recommendations: At t...

6.7CVSS6.4AI score0.00124EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/10/28 12:0 a.m.6 views

Abb Pcm600信任管理问题漏洞

The Abb Pcm600 is an easy-to-use tool from Abb Switzerland. For Protection and Control IED Manager simplifies the management of protection and control relays. A security vulnerability exists in the PCM600 Update Manager that stems from a certificate validation vulnerability in the PCM600 Update...

6.7CVSS6.6AI score0.00124EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiative
added 2021/09/22 12:0 a.m.32 views

VMware vCenter Server Appliance Update Manager Directory Traversal Arbitrary File Deletion Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on affected installations of VMware vCenter Server Appliance. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Update Manager. The issue results from the lack of proper validation...

6.5CVSS4AI score0.01053EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/04/02 12:0 a.m.50 views

ManageEngine OpManager Smart Update Manager RCE

Binary data manageengineopmanagercve-2020-28653.nbin...

9.8CVSS9.6AI score0.787EPSS
Exploits5References2
IBM Security Bulletins
IBM Security Bulletins
added 2021/03/16 6:52 a.m.55 views

Security Bulletin: A vulnerability was identified and remediated in the IBM MaaS360 Cloud Extender (CVE-2020-13434, CVE-2020-13435)

Summary A vulnerability was identified and remediated in the IBM MaaS360 Cloud Extender Vulnerability Details CVEID: CVE-2020-13435 DESCRIPTION: SQLite is vulnerable to a denial of service, caused by flaw in the sqlite3ExprCodeTarget function in expr.c. By sending a specially-crafted request, a...

5.5CVSS3.1AI score0.01013EPSS
Exploits2Affected Software1
CNVD
CNVD
added 2021/02/05 12:0 a.m.32 views

ZOHO ManageEngine OpManager Remote Code Execution Vulnerability

ZOHO ManageEngine OpManager is a network, server and virtualization monitoring software from ZOHO, Inc. A security vulnerability exists in Zoho ManageEngine OpManager Stable build before 125203, which can be exploited by attackers to remotely execute code via the Smart Update Manager SUM servlet...

9.8CVSS4AI score0.787EPSS
Exploits5References1
OSV
OSV
added 2021/02/03 4:15 p.m.4 views

CVE-2020-28653

Zoho ManageEngine OpManager Stable build before 125203 and Released build before 125233 allows Remote Code Execution via the Smart Update Manager SUM servlet...

9.8CVSS6.8AI score0.787EPSS
Exploits5References3
NVD
NVD
added 2021/02/03 4:15 p.m.31 views

CVE-2020-28653

Zoho ManageEngine OpManager Stable build before 125203 and Released build before 125233 allows Remote Code Execution via the Smart Update Manager SUM servlet...

9.8CVSS0.787EPSS
Exploits5References3
Prion
Prion
added 2021/02/03 4:15 p.m.29 views

Remote code execution

Zoho ManageEngine OpManager Stable build before 125203 and Released build before 125233 allows Remote Code Execution via the Smart Update Manager SUM servlet...

7.5CVSS9.6AI score0.787EPSS
Exploits5References3Affected Software1
Cvelist
Cvelist
added 2021/02/03 4:0 p.m.37 views

CVE-2020-28653

Zoho ManageEngine OpManager Stable build before 125203 and Released build before 125233 allows Remote Code Execution via the Smart Update Manager SUM servlet...

9.8AI score0.787EPSS
Exploits5References3
CNNVD
CNNVD
added 2021/02/03 12:0 a.m.12 views

ZOHO ManageEngine OpManager 安全漏洞

ZOHO ManageEngine OpManager is a network, server and virtualization monitoring software from ZOHO, Inc. A security vulnerability exists in Zoho ManageEngine OpManager Stable build before 125203, which can be exploited by attackers to remotely execute code via the Smart Update Manager SUM servlet...

9.8CVSS6.9AI score0.787EPSS
Exploits5References4
Positive Technologies
Positive Technologies
added 2021/02/03 12:0 a.m.4 views

PT-2021-11573

Name of the Vulnerable Software and Affected Versions: Zoho ManageEngine OpManager versions prior to 125203 Stable build and prior to 125233 Released build Description: The issue allows Remote Code Execution via the Smart Update Manager SUM servlet. This can be exploited for malicious purposes...

9.8CVSS8AI score0.787EPSS
Exploits5References11
CNVD
CNVD
added 2020/10/19 12:0 a.m.2 views

Samsung Update Code Issue Vulnerability

Samsung Update Samsung Update Manager is a special upgrade tool for Samsung computers launched by Samsung Samsung in South Korea. The software is mainly used for Samsung-related software, drivers and firmware installation and upgrade. A security vulnerability exists in Samsung Update versions...

7.8CVSS7.2AI score0.00714EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/07 12:0 a.m.3 views

HPE Smart Update Manager Access Restriction Bypass Vulnerability

HPE Smart Update Manager SUM is a smart update manager from Hewlett Packard Enterprise HPE, USA. It is used to install and update firmware and software components on HP ProLiant and HP Integrity servers, chassis, and options. A security vulnerability exists in HPE Smart Update Manager SUM version...

10CVSS6.9AI score0.79522EPSS
Exploits0References1
OSV
OSV
added 2020/04/30 8:15 p.m.6 views

CVE-2020-7136

A security vulnerability in HPE Smart Update Manager SUM prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vulnerability in HPE Smart Update Manager SUM prior to 8.5.6. Please visit the HPE Support Center at...

9.8CVSS5.8AI score0.79522EPSS
Exploits0References1
NVD
NVD
added 2020/04/30 8:15 p.m.19 views

CVE-2020-7136

A security vulnerability in HPE Smart Update Manager SUM prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vulnerability in HPE Smart Update Manager SUM prior to 8.5.6. Please visit the HPE Support Center at...

10CVSS9.4AI score0.79522EPSS
Exploits0References1
Rows per page
Query Builder