22 matches found
EUVD-2025-24159
Malicious code in bioql PyPI...
EUVD-2025-24162
Malicious code in bioql PyPI...
CVE-2025-7677
A denial-of-service DoS attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASPECT...
CVE-2025-7679
The ASPECT system allows users to bypass authentication. This issue affects all versions of ASPECT...
CVE-2025-53187
Due to an issue in configuration, code that was intended for debugging purposes was included in the market release of the ASPECT FW allowing an attacker to bypass authentication. This vulnerability may allow an attacker to change the system time, access files, and make function calls without prio...
CVE-2025-7679
The ASPECT system allows users to bypass authentication. This issue affects all versions of ASPECT...
CVE-2025-7677
A denial-of-service DoS attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASPECT...
CVE-2025-53191
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2025-53189
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2025-7679
ABB Aspect (ASPECT) BMS/BAS suffers an authentication bypass across all versions; root cause involves debugging code left in market release. ATT&CK/impact details: attacker could bypass login to access files, change system time, and invoke functions without authentication; DoS is possible if on l...
CVE-2025-7677 DOS attack possible
A denial-of-service DoS attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASPECT...
CVE-2025-7677 DOS attack possible
A denial-of-service DoS attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASPECT...
CVE-2025-53191
...
CVE-2025-53191
...
CVE-2025-53189
CVE-2025-53189 concerns an authorization bypass in ABB Aspect triggered by a user-controlled key. Affected software: ABB Aspect, with versions prior to 3.08.04-s01. The issue’s root cause and exploit specifics are not detailed in the provided documents; remediation guidance available is to update...
CVE-2025-53189
...
CVE-2025-53187
Due to an issue in configuration, code that was intended for debugging purposes was included in the market release of the ASPECT FW allowing an attacker to bypass authentication. This vulnerability may allow an attacker to change the system time, access files, and make function calls without prio...
CVE-2025-53187 Unauthenticated RCE
Due to an issue in configuration, code that was intended for debugging purposes was included in the market release of the ASPECT FW allowing an attacker to bypass authentication. This vulnerability may allow an attacker to change the system time, access files, and make function calls without prio...
CVE-2025-53187
CVE-2025-53187 affects ABB ASPECT FW; root cause is debugging code included in the market release, enabling authentication bypass. Impact includes unauthenticated actions such as changing system time, accessing files, and invoking functions, potentially leading to unauthenticated RCE. All ASPECT ...
CVE-2025-53187 Unauthenticated RCE
Due to an issue in configuration, code that was intended for debugging purposes was included in the market release of the ASPECT FW allowing an attacker to bypass authentication. This vulnerability may allow an attacker to change the system time, access files, and make function calls without prio...