Lucene search
K

451 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:0 p.m.3 views

CVE-2026-24060

Service information is not encrypted when transmitted as BACnet packets over the wire, and can be sniffed, intercepted, and modified by an attacker. Valuable information such as the File Start Position and File Data can be sniffed from network traffic using Wireshark's BACnet dissector filter. Th...

9.1CVSS5.8AI score0.002EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.8 views

Automated Logic WebCtrl 安全漏洞

Automated Logic WebCtrl is a web-based building automation system server developed by Automated Logic Corporation in the United States. Automated Logic WebCtrl has a security vulnerability, which stems from the unencrypted transmission of BACnet data packets. This vulnerability could allow...

9.1CVSS5.8AI score0.002EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/20 11:19 p.m.2 views

CVE-2026-24060 Automated Logic WebCTRL Premium Server Cleartext Transmission of Sensitive Information

Service information is not encrypted when transmitted as BACnet packets over the wire, and can be sniffed, intercepted, and modified by an attacker. Valuable information such as the File Start Position and File Data can be sniffed from network traffic using Wireshark's BACnet dissector filter. Th...

9.1CVSS5.8AI score0.002EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/20 11:19 p.m.3 views

CVE-2026-24060

Service information is not encrypted when transmitted as BACnet packets over the wire, and can be sniffed, intercepted, and modified by an attacker. Valuable information such as the File Start Position and File Data can be sniffed from network traffic using Wireshark's BACnet dissector filter. Th...

9.1CVSS5.8AI score0.002EPSS
Exploits0References4
CVE
CVE
added 2026/03/20 11:19 p.m.16 views

CVE-2026-24060

This CVE (CVE-2026-24060) concerns Automated Logic WebCTRL Premium Server where BACnet traffic is sent in cleartext, allowing on-wire sniffing/interception and potential modification. The issue exposes sensitive data such as File Start Position and File Data; Wireshark BACnet dissector can reveal...

9.1CVSS5.8AI score0.002EPSS
Exploits0References3
CVE
CVE
added 2026/03/20 11:17 p.m.11 views

CVE-2026-32666

CVE-2026-32666 affects WebCTRL systems using BACnet. The vulnerability arises from BACnet’s lack of network-layer authentication and WebCTRL’s absence of additional validation of BACnet traffic, permitting an attacker with network access to spoof BACnet packets directed at the WebCTRL server or A...

7.5CVSS5.8AI score0.00328EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/10 2:8 p.m.5 views

CVE-2025-41765

Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the wwwupload.cgi endpoint to upload and apply arbitrary data. This includes, but is not limited to, contact images, HTTPS certificates, system backups for restoration, server peer configurations, and...

9.1CVSS5.9AI score0.00265EPSS
Exploits0References1
NVD
NVD
added 2026/03/09 9:16 a.m.3 views

CVE-2025-41765

Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the wwwupload.cgi endpoint to upload and apply arbitrary data. This includes, but is not limited to, contact images, HTTPS certificates, system backups for restoration, server peer configurations, and...

9.1CVSS0.00265EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/09 8:17 a.m.4 views

CVE-2025-41765

Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the wwwupload.cgi endpoint to upload and apply arbitrary data. This includes, but is not limited to, contact images, HTTPS certificates, system backups for restoration, server peer configurations, and...

9.1CVSS5.9AI score0.00265EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/09 8:17 a.m.25 views

CVE-2025-41765 Unchecked role in wwwupload.cgi

Due to insufficient authorization enforcement, an unauthorized remote attacker can exploit the wwwupload.cgi endpoint to upload and apply arbitrary data. This includes, but is not limited to, contact images, HTTPS certificates, system backups for restoration, server peer configurations, and...

9.1CVSS0.00265EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/09 12:0 a.m.8 views

PT-2026-24035

Name of the Vulnerable Software and Affected Versions Versions prior to 2025-41765 Description Insufficient authorization enforcement allows a remote attacker to upload and apply arbitrary data through the wwwupload.cgi endpoint. This includes contact images, HTTPS certificates, system backups,...

9.1CVSS5.9AI score0.00265EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/02/14 7:22 p.m.14 views

CVE-2026-26264

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0rc4 and 1.4.3rc2, a malformed WriteProperty request can trigger a length underflow in the BACnet stack, leading to an out‑of‑bounds read and a crash DoS. The issue is in wp.c within...

8.8CVSS5.6AI score0.00368EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/14 7:22 p.m.7 views

CVE-2026-21870

BACnet Protocol Stack library provides a BACnet application layer, network layer and media access MAC layer communications services. In 1.4.2, 1.5.0.rc2, and earlier, an off-by-one stack-based buffer overflow in the ubasic interpreter causes a crash SIGABRT when processing string literals longer...

5.5CVSS6AI score0.0024EPSS
Exploits1References1
NVD
NVD
added 2026/02/13 7:17 p.m.8 views

CVE-2026-26264

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0rc4 and 1.4.3rc2, a malformed WriteProperty request can trigger a length underflow in the BACnet stack, leading to an out‑of‑bounds read and a crash DoS. The issue is in wp.c within...

8.8CVSS0.00368EPSS
Exploits1References2
NVD
NVD
added 2026/02/13 7:17 p.m.4 views

CVE-2026-21878

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0.rc3, a vulnerability has been discovered in BACnet Stack's file writing functionality where there is no validation of user-provided file paths, allowing attackers to write files to arbitrary...

7.5CVSS0.00356EPSS
Exploits1References2
Snyk
Snyk
added 2026/02/13 6:58 p.m.6 views

Out-of-bounds Read

Overview bacnet-stack is a None Affected versions of this package are vulnerable to Out-of-bounds Read. via the wpdecodeservicerequest function. An attacker can cause an out-of-bounds read and crash the application by sending a malformed WriteProperty request with a truncated APDU, which triggers...

9.1CVSS5.7AI score0.00368EPSS
Exploits1References2
Snyk
Snyk
added 2026/02/13 6:58 p.m.5 views

Off-by-one Error

Overview bacnet-stack is a None Affected versions of this package are vulnerable to Off-by-one Error. via the tokenizerstring function. An attacker can cause a crash by providing a string literal longer than the buffer limit, which leads to a stack overflow when the function incorrectly writes a...

6.8CVSS5.8AI score0.0024EPSS
Exploits1References2
NVD
NVD
added 2026/02/13 6:16 p.m.10 views

CVE-2026-21870

BACnet Protocol Stack library provides a BACnet application layer, network layer and media access MAC layer communications services. In 1.4.2, 1.5.0.rc2, and earlier, an off-by-one stack-based buffer overflow in the ubasic interpreter causes a crash SIGABRT when processing string literals longer...

5.5CVSS0.0024EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/02/13 6:14 p.m.6 views

CVE-2026-26264

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0rc4 and 1.4.3rc2, a malformed WriteProperty request can trigger a length underflow in the BACnet stack, leading to an out‑of‑bounds read and a crash DoS. The issue is in wp.c within...

5.6AI score0.00368EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/02/13 6:14 p.m.29 views

CVE-2026-26264 BACnet Stack WriteProperty decoding length underflow leads to OOB read and crash

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0rc4 and 1.4.3rc2, a malformed WriteProperty request can trigger a length underflow in the BACnet stack, leading to an out‑of‑bounds read and a crash DoS. The issue is in wp.c within...

8.8CVSS0.00368EPSS
Exploits1References2
Rows per page
Query Builder