16 matches found
EUVD-2025-25499
Malicious code in bioql PyPI...
EUVD-2025-25498
Malicious code in bioql PyPI...
CVE-2025-41451
Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system...
CVE-2025-41452
Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow for a denial of service attack induced by improper handling of exceptional conditions...
CVE-2025-41452
Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow for a denial of service attack induced by improper handling of exceptional conditions...
CVE-2025-41451
Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system...
CVE-2025-41452
Danfoss AK-SM8xxA Series before 4.3.1 contains a post-authenticated external control of the system Web interface configuration, with improper handling of exceptional conditions that could cause a DoS. CVSS 6.8 (Network, high attack complexity, high impact on availability). Remediation: update to ...
CVE-2025-41452 Post auth nginx configuration injection in Danfoss AK-SM8xxA Series
Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow for a denial of service attack induced by improper handling of exceptional conditions...
CVE-2025-41452 Post auth nginx configuration injection in Danfoss AK-SM8xxA Series
Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow for a denial of service attack induced by improper handling of exceptional conditions...
CVE-2025-41451 Post-Authentication OS Command Injection RCE in Danfoss AK-SM8xxA Series
Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system...
CVE-2025-41451
CVE-2025-41451 affects Danfoss AK-SM8xxA Series prior to version 4.3.1. Root cause: improper neutralization of alarm-to-mail configuration fields in an OS shell command, enabling post-authenticated remote code execution on the attacked system. Impact: remote code execution with high severity; att...
CVE-2025-41451 Post-Authentication OS Command Injection RCE in Danfoss AK-SM8xxA Series
Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system...
Danfoss AK-SM8xxA Series 安全漏洞
Danfoss AK-SM8xxA Series is a series of system-only managers from Danfoss, Denmark. A security vulnerability exists in Danfoss AK-SM8xxA Series versions prior to 4.3.1 that originates from improper neutralization and could lead to remote code execution...
PT-2025-34328 · Danfoss · Ak-Sm8Xxa
Name of the Vulnerable Software and Affected Versions: Danfoss AK-SM8xxA Series versions prior to 4.3.1 Description: A post-authenticated external control of system web interface configuration setting issue exists. This could allow for a denial of service attack due to improper handling of...
PT-2025-34327 · Danfoss · Ak-Sm8Xxa
Name of the Vulnerable Software and Affected Versions: Danfoss AK-SM8xxA Series versions prior to 4.3.1 Description: Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command 'Command Injection' exists in the software, potentially leading to post-authenticated remo...
Danfoss AK-SM8xxA Series 安全漏洞
Danfoss AK-SM8xxA Series is a series of system-only managers from Danfoss, Denmark. A security vulnerability exists in Danfoss AK-SM8xxA Series versions prior to 4.3.1, which stems from mishandling of exceptions and could result in a denial of service...