Lucene search
K

82 matches found

CNNVD
CNNVD
added 2022/04/27 12:0 a.m.5 views

Bender ebee 充电控制器 缓冲区错误漏洞

The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from a long URL that could cause the web server to crash. An attacker can exploit this vulnerability to bypass credential checks and elevate privileges. The following...

5.3CVSS6AI score0.00854EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/04/27 12:0 a.m.4 views

Bender ebee 充电控制器 安全漏洞

The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from an unprotected data export. The backup export is protected by a random key. The key is set at user login. It is empty after a reboot. An attacker can exploit this...

8.6CVSS8AI score0.00844EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/04/27 12:0 a.m.4 views

PT-2022-10360 · Unknown · Bender/Ebee Charge Controllers

Name of the Vulnerable Software and Affected Versions: Bender/ebee Charge Controllers affected versions not specified Description: The issue concerns an RFID leak in Bender/ebee Charge Controllers. The RFID of the last charge event can be read without authentication via the web interface...

7.5CVSS7.5AI score0.00924EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/04/27 12:0 a.m.7 views

PT-2022-10361 · Unknown · Bender/Ebee Charge Controllers

Name of the Vulnerable Software and Affected Versions: Bender/ebee Charge Controllers affected versions not specified Description: The issue allows an authenticated attacker to perform Cross-site Scripting by writing HTML code into configuration values, which are not properly escaped when...

5.4CVSS5.3AI score0.00421EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/04/27 12:0 a.m.6 views

PT-2022-10363 · Unknown · Bender/Ebee Charge Controllers

Name of the Vulnerable Software and Affected Versions: Bender/ebee Charge Controllers affected versions not specified Description: The issue allows for Command injection via the Web interface. An authenticated attacker could enter shell commands into some input fields. Recommendations: At the...

8.8CVSS8.8AI score0.01332EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/04/27 12:0 a.m.7 views

Bender ebee 充电控制器 安全漏洞

The ebee is a charge controller from Bender. A security vulnerability exists in the Bender ebee Charge Controller that stems from an easy local privilege escalation. An authenticated attacker can gain root access via the suid application socat, ip udhcpc, and ifplugd. The following products and...

7.8CVSS7.5AI score0.00223EPSS
Exploits0References2
OSV
OSV
added 2020/10/16 1:15 p.m.3 views

CVE-2019-19885

In Bender COMTRAXX, user authorization is validated for most, but not all, routes in the system. A user with knowledge about the routes can read and write configuration data without prior authorization. This affects COM465IP, COM465DP, COM465ID, CP700, CP907, and CP915 devices before 4.2.0...

9.1CVSS7.3AI score0.00987EPSS
Exploits0References1
NVD
NVD
added 2020/10/16 1:15 p.m.26 views

CVE-2019-19885

In Bender COMTRAXX, user authorization is validated for most, but not all, routes in the system. A user with knowledge about the routes can read and write configuration data without prior authorization. This affects COM465IP, COM465DP, COM465ID, CP700, CP907, and CP915 devices before 4.2.0...

9.1CVSS0.00987EPSS
Exploits0References1
Prion
Prion
added 2020/10/16 1:15 p.m.15 views

Authorization

In Bender COMTRAXX, user authorization is validated for most, but not all, routes in the system. A user with knowledge about the routes can read and write configuration data without prior authorization. This affects COM465IP, COM465DP, COM465ID, CP700, CP907, and CP915 devices before 4.2.0...

6.4CVSS9.1AI score0.00987EPSS
Exploits0References1Affected Software6
CVE
CVE
added 2020/10/16 12:55 p.m.41 views

CVE-2019-19885

CVE-2019-19885 affects Bender COMTRAXX devices (COM465IP, COM465DP, COM465ID, CP700, CP907, CP915) prior to version 4.2.0. Root cause: user authorization is validated for most routes but not all; a user who knows the routes can read and write configuration data without prior authorization. Impact...

9.1CVSS9AI score0.00987EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/10/16 12:55 p.m.28 views

CVE-2019-19885

In Bender COMTRAXX, user authorization is validated for most, but not all, routes in the system. A user with knowledge about the routes can read and write configuration data without prior authorization. This affects COM465IP, COM465DP, COM465ID, CP700, CP907, and CP915 devices before 4.2.0...

9.2AI score0.00987EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2017/11/03 1:13 a.m.10 views

bender-wirth.com XSS vulnerability

Open Bug Bounty ID: OBB-388916 Description| Value ---|--- Affected Website:| bender-wirth.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

6.3AI score
Exploits0
Saint
Saint
added 2014/06/24 12:0 a.m.40 views

Adobe Pixel Shader

Added: 06/24/2014 CVE: CVE-2014-0515 BID: 67092 OSVDB: 106347 Background The Adobe Flash plugin provides flash content rendering for web browsers. Problem A buffer overflow exists due to an error in processing SWF files. The vulnerable function exists in the the DisplayShader class and can be...

10CVSS9AI score0.94569EPSS
Exploits9
Saint
Saint
added 2014/06/24 12:0 a.m.45 views

Adobe Pixel Shader

Added: 06/24/2014 CVE: CVE-2014-0515 BID: 67092 OSVDB: 106347 Background The Adobe Flash plugin provides flash content rendering for web browsers. Problem A buffer overflow exists due to an error in processing SWF files. The vulnerable function exists in the the DisplayShader class and can be...

10CVSS9AI score0.94569EPSS
Exploits9
Saint
Saint
added 2014/06/24 12:0 a.m.36 views

Adobe Pixel Shader

Added: 06/24/2014 CVE: CVE-2014-0515 BID: 67092 OSVDB: 106347 Background The Adobe Flash plugin provides flash content rendering for web browsers. Problem A buffer overflow exists due to an error in processing SWF files. The vulnerable function exists in the the DisplayShader class and can be...

10CVSS9AI score0.94569EPSS
Exploits9
OpenVAS
OpenVAS
added 2014/04/29 12:0 a.m.30 views

Adobe Flash Player Buffer Overflow Vulnerability (Apr 2014) - Windows

Adobe Flash Player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer...

10CVSS6.8AI score0.94569EPSS
Exploits9References4
OpenVAS
OpenVAS
added 2014/04/29 12:0 a.m.32 views

Adobe Flash Player Buffer Overflow Vulnerability (Apr 2014) - Linux

Adobe Flash Player is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer...

10CVSS6.8AI score0.94569EPSS
Exploits9References4
Tenable Nessus
Tenable Nessus
added 2014/04/28 12:0 a.m.70 views

MS KB2961887: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer

The remote host is missing KB2961887. It is, therefore, affected by a buffer overflow vulnerability due to improper user input validation in the Pixel Bender component. An attacker could cause a buffer overflow with a specially crafted SWF file, resulting in arbitrary code execution. C Tenable...

10CVSS6.1AI score0.94569EPSS
Exploits9References4
Packet Storm
Packet Storm
added 2012/08/23 12:0 a.m.18 views

Adobe Pixel Bender Toolkit2 11.0.422584 DLL Hijack

Exploit Title: Adobe Pixel Bender Toolkit2 tbbmalloc.dll DLL Hijacking Exploit Date: 2012-08-23 Author: coolkaveh [email protected] Greets To Mohammad Morteza Sanaie [email protected] Https://twitter.com/coolkaveh Vendor Homepage: http://www.adobe.com/ Version: 11.0.422584 Tested on...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2012/08/23 12:0 a.m.33 views

Adobe Pixel Bender Toolkit2 - 'tbbmalloc.dll' Multiple DLL Loading Code Execution Vulnerabilities

// source: https://www.securityfocus.com/bid/55179/info Adobe Pixel Bender Toolkit2 is prone to multiple vulnerabilities that allow attackers execute arbitrary code. An attacker can exploit these issues by enticing a legitimate user to use the vulnerable application to open a file from a network...

7.4AI score
Exploits0
Rows per page
Query Builder