Lucene search
K

30 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-52705

Malicious code in bioql PyPI...

10CVSS9.1AI score0.02477EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/04 12:0 a.m.17 views

FESTO Hardware Controller, Hardware Servo Press Kit Improper Neutralization of Special Elements Used in an OS Command (CVE-2022-30311)

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint cecc-x-refresh-request POST request doesn't check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection. This plugin...

10CVSS7.4AI score0.02779EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/04 12:0 a.m.22 views

FESTO Hardware Controller, Hardware Servo Press Kit Improper Neutralization of Special Elements Used in an OS Command (CVE-2022-30308)

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint cecc-x-web-viewer-request-on POST request doesn't check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection. This...

10CVSS7.4AI score0.02692EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/04 12:0 a.m.21 views

FESTO Hardware Controller, Hardware Servo Press Kit Improper Neutralization of Special Elements Used in an OS Command (CVE-2022-30310)

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint cecc-x-acknerr-request POST request doesn't check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection. This plugin...

10CVSS7.4AI score0.02477EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/04 12:0 a.m.15 views

FESTO Hardware Controller, Hardware Servo Press Kit Improper Neutralization of Special Elements Used in an OS Command (CVE-2022-30309)

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint cecc-x-web-viewer-request-off POST request doesn't check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection. This...

10CVSS7.4AI score0.0302EPSS
Exploits0References3
NVD
NVD
added 2022/06/13 2:15 p.m.9 views

CVE-2022-30311

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

10CVSS0.02779EPSS
Exploits0References1
NVD
NVD
added 2022/06/13 2:15 p.m.15 views

CVE-2022-30309

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-off" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

10CVSS0.0302EPSS
Exploits0References1
OSV
OSV
added 2022/06/13 2:15 p.m.3 views

CVE-2022-30311

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

9.8CVSS6AI score0.02779EPSS
Exploits0References1
OSV
OSV
added 2022/06/13 2:15 p.m.3 views

CVE-2022-30308

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-on" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

9.8CVSS6AI score0.02692EPSS
Exploits0References1
NVD
NVD
added 2022/06/13 2:15 p.m.14 views

CVE-2022-30310

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

10CVSS0.02477EPSS
Exploits0References1
Prion
Prion
added 2022/06/13 2:15 p.m.15 views

Command injection

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

10CVSS9.4AI score0.02779EPSS
Exploits0References1Affected Software8
Prion
Prion
added 2022/06/13 2:15 p.m.12 views

Command injection

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

10CVSS9.4AI score0.02477EPSS
Exploits0References1Affected Software8
Prion
Prion
added 2022/06/13 2:15 p.m.13 views

Command injection

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-on" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

10CVSS9.4AI score0.02692EPSS
Exploits0References1Affected Software8
Prion
Prion
added 2022/06/13 2:15 p.m.18 views

Command injection

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web-viewer-request-off" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

10CVSS9.4AI score0.0302EPSS
Exploits0References1Affected Software8
CVE
CVE
added 2022/06/13 1:45 p.m.71 views

CVE-2022-30311

The CVE-2022-30311 vulnerability affects Festo Controller CECC-X-M1 family where the http endpoint cecc-x-refresh-request (and related endpoints) does not validate port syntax in POST requests, enabling unauthorized command execution with root privileges due to improper access control command inj...

10CVSS9.8AI score0.02779EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/06/13 1:45 p.m.21 views

CVE-2022-30311 FESTO: CECC-X-M1 and Servo Press Kit YJKP OS Command Injection vulnerability

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-refresh-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

9.8CVSS9.7AI score0.02779EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/13 1:45 p.m.17 views

CVE-2022-30310 FESTO: CECC-X-M1 and Servo Press Kit YJKP OS Command Injection vulnerability

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

9.8CVSS9.7AI score0.02477EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/06/13 1:45 p.m.11 views

CVE-2022-30310 FESTO: CECC-X-M1 and Servo Press Kit YJKP OS Command Injection vulnerability

In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-acknerr-request" POST request doesn’t check for port syntax. This can result in unauthorized execution of system commands with root privileges due to improper access control command injection...

9.8CVSS7.6AI score0.02477EPSS
Exploits0References1
CVE
CVE
added 2022/06/13 1:45 p.m.77 views

CVE-2022-30310

CVE-2022-30310 affects the Festo CECC-X-M1 family. The http-endpoint cecc-x-acknerr-request does not validate port syntax, enabling unauthorized execution of system commands with root privileges via improper access control command injection. Impact is described as remote code execution with root ...

10CVSS9.8AI score0.02477EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/06/13 1:45 p.m.86 views

CVE-2022-30309

CVE-2022-30309 affects Festo Controller CECC-X-M1 family. The http-endpoint cecc-x-web-viewer-request-off (POST) does not validate port syntax, enabling unauthorized execution of system commands with root privileges due to improper access control command injection. Public discussions and advisori...

10CVSS9.8AI score0.0302EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder