233 matches found
CVE-2021-22278
A certificate validation vulnerability in PCM600 Update Manager allows attacker to get unwanted software packages to be installed on computer which has PCM600 installed...
Design/Logic Flaw
A certificate validation vulnerability in PCM600 Update Manager allows attacker to get unwanted software packages to be installed on computer which has PCM600 installed...
CVE-2021-22278
CVE-2021-22278 describes an improper certificate validation in Hitachi Energy PCM600 Update Manager. Affected PCM600 Update Manager versions include 2.1, 2.1.0.4, 2.2, 2.2.0.1, 2.2.0.2, 2.2.0.23, 2.3.0.60, 2.4.20041.1, and 2.4.20119.2. According to the ICS advisory, exploitation could allow an ad...
CVE-2021-22278 Certificate verification vulnerability in Update Manager of PCM600 Engineering Tool
A certificate validation vulnerability in PCM600 Update Manager allows attacker to get unwanted software packages to be installed on computer which has PCM600 installed...
PT-2021-14929 · Unknown · Pcm600 Update Manager
Name of the Vulnerable Software and Affected Versions: PCM600 Update Manager affected versions not specified Description: A certificate validation issue in the PCM600 Update Manager allows an attacker to install unwanted software packages on a computer with PCM600 installed. Recommendations: At t...
Abb Pcm600信任管理问题漏洞
The Abb Pcm600 is an easy-to-use tool from Abb Switzerland. For Protection and Control IED Manager simplifies the management of protection and control relays. A security vulnerability exists in the PCM600 Update Manager that stems from a certificate validation vulnerability in the PCM600 Update...
VMware vCenter Server Appliance Update Manager Directory Traversal Arbitrary File Deletion Vulnerability
This vulnerability allows remote attackers to delete arbitrary files on affected installations of VMware vCenter Server Appliance. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Update Manager. The issue results from the lack of proper validation...
ManageEngine OpManager Smart Update Manager RCE
Binary data manageengineopmanagercve-2020-28653.nbin...
Security Bulletin: A vulnerability was identified and remediated in the IBM MaaS360 Cloud Extender (CVE-2020-13434, CVE-2020-13435)
Summary A vulnerability was identified and remediated in the IBM MaaS360 Cloud Extender Vulnerability Details CVEID: CVE-2020-13435 DESCRIPTION: SQLite is vulnerable to a denial of service, caused by flaw in the sqlite3ExprCodeTarget function in expr.c. By sending a specially-crafted request, a...
ZOHO ManageEngine OpManager Remote Code Execution Vulnerability
ZOHO ManageEngine OpManager is a network, server and virtualization monitoring software from ZOHO, Inc. A security vulnerability exists in Zoho ManageEngine OpManager Stable build before 125203, which can be exploited by attackers to remotely execute code via the Smart Update Manager SUM servlet...
CVE-2020-28653
Zoho ManageEngine OpManager Stable build before 125203 and Released build before 125233 allows Remote Code Execution via the Smart Update Manager SUM servlet...
CVE-2020-28653
Zoho ManageEngine OpManager Stable build before 125203 and Released build before 125233 allows Remote Code Execution via the Smart Update Manager SUM servlet...
Remote code execution
Zoho ManageEngine OpManager Stable build before 125203 and Released build before 125233 allows Remote Code Execution via the Smart Update Manager SUM servlet...
CVE-2020-28653
Zoho ManageEngine OpManager Stable build before 125203 and Released build before 125233 allows Remote Code Execution via the Smart Update Manager SUM servlet...
ZOHO ManageEngine OpManager 安全漏洞
ZOHO ManageEngine OpManager is a network, server and virtualization monitoring software from ZOHO, Inc. A security vulnerability exists in Zoho ManageEngine OpManager Stable build before 125203, which can be exploited by attackers to remotely execute code via the Smart Update Manager SUM servlet...
PT-2021-11573
Name of the Vulnerable Software and Affected Versions: Zoho ManageEngine OpManager versions prior to 125203 Stable build and prior to 125233 Released build Description: The issue allows Remote Code Execution via the Smart Update Manager SUM servlet. This can be exploited for malicious purposes...
Samsung Update Code Issue Vulnerability
Samsung Update Samsung Update Manager is a special upgrade tool for Samsung computers launched by Samsung Samsung in South Korea. The software is mainly used for Samsung-related software, drivers and firmware installation and upgrade. A security vulnerability exists in Samsung Update versions...
HPE Smart Update Manager Access Restriction Bypass Vulnerability
HPE Smart Update Manager SUM is a smart update manager from Hewlett Packard Enterprise HPE, USA. It is used to install and update firmware and software components on HP ProLiant and HP Integrity servers, chassis, and options. A security vulnerability exists in HPE Smart Update Manager SUM version...
CVE-2020-7136
A security vulnerability in HPE Smart Update Manager SUM prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vulnerability in HPE Smart Update Manager SUM prior to 8.5.6. Please visit the HPE Support Center at...
CVE-2020-7136
A security vulnerability in HPE Smart Update Manager SUM prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vulnerability in HPE Smart Update Manager SUM prior to 8.5.6. Please visit the HPE Support Center at...