19 matches found
EUVD-2015-2745
Malware in sbrugna...
EUVD-2015-2699
Malware in sbrugna...
PT-2022-4942 · Unknown · Smart Evision
Name of the Vulnerable Software and Affected Versions: Smart eVision affected versions not specified Description: The issue is related to a path traversal vulnerability in Smart eVision's file acquisition function. This vulnerability is caused by insufficient filtering for special characters in t...
VISAM VBASE 安全漏洞
VISAM VBASE is a data acquisition and monitoring system from VISAM Germany. A security vulnerability exists in VISAM VBASE version v11.7.0.2 that originates from the use of an XOR with a static initial key to obfuscate login messages. An attacker can exploit the vulnerability to obtain login...
The vulnerability of the SCADA system “SKADA-NEV” arises from the storage of critical information in unencrypted form, allowing attackers to gain access to confidential data.
The vulnerability of the SCADA system “SKADA-NEV” is related to the storage of critical information in unencrypted form. Exploiting this vulnerability can allow an intruder to gain access to confidential information...
Interactive Graphical SCADA System Data Server 安全漏洞
Schneider Electric Interactive Graphical SCADA System IGSS is a SCADA Data Acquisition and Supervisory System system for monitoring and controlling industrial processes from Schneider Electric, France. An initialization error vulnerability exists in the Schneider Electric Interactive Graphical...
VISAM VBASE 代码问题漏洞
Visam VISAM VBASE is a data acquisition and monitoring system from Visam, Germany. VISAM VBASE has a code issue vulnerability that arises from improper design or implementation during code development of a networked system or product...
VISAM VBASE 访问控制错误漏洞
Visam VISAM VBASE is a data acquisition and monitoring system from VISAM Visam Germany. An access control error vulnerability exists in VISAM VBASE that arises from improper design or implementation during code development of a networked system or product...
Logic Flaw Vulnerability in University Talent Acquisition System
University Talent Acquisition System is a web application. A logic flaw vulnerability exists in the University Talent Recruitment System, which can be exploited by attackers to obtain sensitive information...
The vulnerability of the SCADA system MasterSCADA, related to the operation of buffers in memory outside the system’s boundaries, allows a intruder to trigger an emergency termination of the program process.
The vulnerability of the SCADA system MasterSCADA relates to the execution of operations outside the buffer in memory, as well as the use of memory after it has been freed. Exploiting this vulnerability can allow an intruder to cause the program to terminate abnormally...
Unspecified Vulnerability in Oracle Commerce Platform Commerce Guided Search/Oracle Commerce Experience Manager Component (CNVD-2015-04921)
Oracle Commerce Platform is a suite of e-business solution platforms from Oracle Corporation, USA. Oracle Commerce Guided Search/Oracle Commerce Experience Manager is one of the components that supports dynamic searching and finding of relevant and desired items for customers in a web site. Oracl...
CVE-2015-2653
Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 3.1.1, 3.1.2, 11.0, and 11.1 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Content Acquisition System...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 3.1.1, 3.1.2, 11.0, and 11.1 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Content Acquisition System...
CVE-2015-2607
Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 3.0.2, 3.1.1, 3.1.2, 11.0, and 11.1 allows remote attackers to affect confidentiality via unknown vectors related to Content Acquisition System...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 3.0.2, 3.1.1, 3.1.2, 11.0, and 11.1 allows remote attackers to affect confidentiality via unknown vectors related to Content Acquisition System...
CVE-2015-2653
Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 3.1.1, 3.1.2, 11.0, and 11.1 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Content Acquisition System...
CVE-2015-2607
Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 3.0.2, 3.1.1, 3.1.2, 11.0, and 11.1 allows remote attackers to affect confidentiality via unknown vectors related to Content Acquisition System...
CVE-2015-2653
The CVE-2015-2653 entry applies to Oracle Commerce Guided Search / Oracle Commerce Experience Manager within Oracle Commerce Platform. Affected products include Oracle Commerce Platform versions 3.1.1, 3.1.2, 11.0, and 11.1, specifically via the Content Acquisition System (CAS) interface. The con...
SRC-2015-0003 : Oracle Endeca Tools and Frameworks AMF Request Beanshell Script Remote Code Execution Vulnerability
Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Endeca Tools and Frameworks. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific fla...