Lucene search
K

15 matches found

EUVD
EUVD
added 2026/04/09 12:31 p.m.3 views

EUVD-2026-20886

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.7CVSS6.1AI score0.0029EPSS
Exploits0References3
NVD
NVD
added 2026/04/09 10:16 a.m.4 views

CVE-2026-34184

Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...

9.1CVSS0.0027EPSS
Exploits0References2
NVD
NVD
added 2026/04/09 10:16 a.m.3 views

CVE-2026-34185

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.8CVSS0.0029EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/09 9:41 a.m.2 views

CVE-2026-34185 SQL Injection in Hydrosystem Control System

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.7CVSS6.1AI score0.0029EPSS
Exploits0References2
CVE
CVE
added 2026/04/09 9:41 a.m.11 views

CVE-2026-34184

CVE-2026-34184 : Hydrosystem Control System fails to enforce authorization for some directories, allowing an unauthorized attacker to read files and potentially execute them. The description explicitly states an attacker could run PHP scripts directly on the connected database. The issue is fixed...

9.1CVSS6AI score0.0027EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/29 9:20 p.m.5 views

CVE-2025-13917

WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user...

7CVSS5.8AI score0.00083EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/28 4:29 p.m.3 views

CVE-2025-13917 Elevation of Privileges in Web Security Services (WSS) Agent

WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user...

7CVSS5.8AI score0.00083EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/28 4:29 p.m.5 views

CVE-2025-13917

WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user...

7CVSS5.8AI score0.00083EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/08/08 12:0 a.m.6 views

Mitel MiCollab 安全漏洞

Mitel MiCollab is a mobile application that provides voice, video, messaging, audio conferencing, and team collaboration for employees from Mitel Canada. A security vulnerability exists in Mitel MiCollab version 9.8.2.12 and earlier, which stems from insufficient input validation of the NuPoint...

9.8CVSS6.6AI score0.00492EPSS
Exploits1References3
CVE
CVE
added 2025/08/08 12:0 a.m.23 views

CVE-2025-52913

The CVE-2025-52913 affects Mitel MiCollab’s NuPoint Unified Messaging (NPM) component up to version 9.8 SP2 (9.8.2.12). The root cause is insufficient input validation, enabling an unauthenticated attacker to perform a path traversal attack. Exploitation could grant unauthorized access to view, c...

9.8CVSS6.7AI score0.00492EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.3 views

Mitel MiCollab 访问控制错误漏洞

Mitel MiCollab is a mobile application that provides voice, video, messaging, audio conferencing, and team collaboration for employees from Mitel Canada. A security vulnerability exists in Mitel MiCollab version 9.8 SP1 FP2 9.8.1.201 and prior versions, which stems from a missing authentication...

8.2CVSS6.8AI score0.00372EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/01 12:0 a.m.4 views

PT-2023-5305 · Omron · Cx-Programmer

Name of the Vulnerable Software and Affected Versions: CX-Programmer Included in CX-One CXONE-ALD-V4 versions 9.80 and earlier Description: An out-of-bounds read issue exists, which may allow information disclosure and/or arbitrary code execution when a user opens a specially crafted CXP file. Th...

7.8CVSS7.7AI score0.00202EPSS
Exploits0References7
OSV
OSV
added 2023/06/26 10:15 p.m.3 views

CVE-2023-32523

Affected versions of Trend Micro Mobile Security Enterprise 9.8 SP5 contain some widgets that would allow a remote user to bypass authentication and potentially chain with other vulnerabilities. Please note: an attacker must first obtain the ability to execute low-privileged code on the target...

8.8CVSS7.5AI score0.02573EPSS
Exploits0References2
CNVD
CNVD
added 2019/10/24 12:0 a.m.3 views

Cisco TelePresence Collaboration Endpoint Software Elevation of Privilege Vulnerability

Cisco TelePresence is a Cisco TelePresence solution. A security vulnerability exists in Cisco TelePresence Collaboration Endpoint CE versions prior to 9.8.0 due to insufficient input validation. An attacker can use this vulnerability to authenticate to a remote support user identity and send...

7.2CVSS7.3AI score0.00431EPSS
Exploits0References1
CNVD
CNVD
added 2016/06/24 12:0 a.m.6 views

Unitronics VisiLogic OPLC IDE Stack Buffer Overflow Vulnerability

Unitronics VisiLogic OPLC IDE is a suite of Human Machine Interface HMI and PLC application programming environments for use in the Vision and SAMBA series of controllers from Unitronics Israel. A stack buffer overflow vulnerability exists in the Unitronics VisiLogic OPLC IDE prior to version...

9.8CVSS7.8AI score0.04499EPSS
Exploits0References1
Rows per page
Query Builder