Lucene search
K

8 matches found

NVD
NVD
added 2026/06/15 12:16 p.m.9 views

CVE-2026-34023

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an incorrect authorization vulnerability in the WebSocket communication used by the SafeController WebMessageBroker. An authenticated attacker with valid low-privileged branch user credentials can manipulate WebSocket...

7.1CVSS0.00335EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/06/15 10:3 a.m.9 views

CVE-2026-34023 Broken WebSocket authorization in Wertheim SafeController Software allows cross-branch access to restricted functions

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an incorrect authorization vulnerability in the WebSocket communication used by the SafeController WebMessageBroker. An authenticated attacker with valid low-privileged branch user credentials can manipulate WebSocket...

7.1CVSS5.3AI score0.00335EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/06/15 10:3 a.m.32 views

CVE-2026-34023 Broken WebSocket authorization in Wertheim SafeController Software allows cross-branch access to restricted functions

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an incorrect authorization vulnerability in the WebSocket communication used by the SafeController WebMessageBroker. An authenticated attacker with valid low-privileged branch user credentials can manipulate WebSocket...

7.1CVSS0.00335EPSS
Exploits1References2
CVE
CVE
added 2026/06/15 10:3 a.m.27 views

CVE-2026-34023

The CVE-2026-34023 issue affects Wertheim SafeController Software (AssemblyVersion 6.15.8328.28014) and is caused by an incorrect authorization in the WebSocket communication used by the SafeController WebMessageBroker. An authenticated attacker with low-privilege branch credentials can manipulat...

7.1CVSS5.4AI score0.00335EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.8 views

PT-2026-49194

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an incorrect authorization vulnerability in the WebSocket communication used by the SafeController WebMessageBroker. An authenticated attacker with valid low-privileged branch user credentials can manipulate WebSocket...

7.1CVSS5.3AI score0.00335EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2024-49765

Malicious code in bioql PyPI...

9.6CVSS9.2AI score0.00911EPSS
Exploits0References2
OSV
OSV
added 2022/02/11 1:15 a.m.3 views

UBUNTU-CVE-2022-23773

cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags...

7.5CVSS7.1AI score0.02698EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2018/10/29 12:0 a.m.510 views

Gitlab -- multiple vulnerabilities

Gitlab reports: RCE in Gitlab Wiki API SSRF in Hipchat integration Cleartext storage of personal access tokens Information exposure through stack trace error message Persistent XSS autocomplete Information exposure in stored browser history Information exposure when replying to issues through ema...

9.8CVSS0.7AI score0.06735EPSS
Exploits7References1
Rows per page
Query Builder