215 matches found
(0Day) GE CIMPLICITY CIM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of GE CIMPLICITY. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of CIM...
cim-ms.de Cross Site Scripting vulnerability OBB-2802928
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
new packages: cim-schema
An update is available for cim-schema. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...
SharpStrike - A Post Exploitation Tool Written In C# Uses Either CIM Or WMI To Query Remote Systems
SharpStrike is a post-exploitation tool written in C that uses either CIM or WMI to query remote systems. It can use provided credentials or the current user's session. Note: Some commands will use PowerShell in combination with WMI, denoted with in the --show-commands command. Introduction...
The vulnerability of the SFCB service (Small Footprint CIM Broker), which is part of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform, allows a perpetrator to bypass the authentication process.
The vulnerability of the SFCB Small Footprint CIM Broker service of the VMware ESXi hypervisor and the VMware Cloud Foundation virtualization platform is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass the authentication...
Vulnerabilities fixed in VMware ESXi
VMware has fixed two vulnerabilities in ESXi. The vulnerability with reference CVE-2021-21994 is located in the Small Footprint CIM Broker SFCB and allows a remote malicious person to bypass authentication. This requires rogue network traffic be sent to port 5989 of the ESXi server. The...
CVE-2021-21994
SFCB Small Footprint CIM Broker as used in ESXi has an authentication bypass vulnerability. A malicious actor with network access to port 5989 on ESXi may exploit this issue to bypass SFCB authentication by sending a specially crafted request...
CVE-2021-21994
SFCB Small Footprint CIM Broker as used in ESXi has an authentication bypass vulnerability. A malicious actor with network access to port 5989 on ESXi may exploit this issue to bypass SFCB authentication by sending a specially crafted request...
CVE-2021-21994
CVE-2021-21994 affects VMware ESXi via SFCB authentication bypass. A remote attacker with network access to port 5989 can bypass SFCB authentication by a crafted request. VMware's VMSA-2021-0014 provides patched versions: ESXi 7.0 (ESXi70U2-17630552), ESXi 6.7 (ESXi670-202103101-SG), and ESXi 6.5...
CIMplant - C# Port Of WMImplant Which Uses Either CIM Or WMI To Query Remote Systems
C port of WMImplant which uses either CIM or WMI to query remote systems. It can use provided credentials or the current user's session. Note: Some commands will use PowerShell in combination with WMI, denoted with in the --show-commands command. Introduction CIMplant is a C rewrite and expansion...
CVE-2020-10609
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
CVE-2020-10609
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
Information disclosure
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
CVE-2020-10609
Grundfos CIM 500 v06.16.00 stores plaintext credentials, which may allow sensitive information to be read or allow modification to system settings by someone with access to the device...
CVE-2020-10609
CVE-2020-10609 affects Grundfos CIM 500 embedded Ethernet module. The vulnerability is unprotected storage of credentials : the device stores plaintext credentials, enabling read access or modification of system settings by someone with access to the device. Affected version: all prior to v06.16....
CVE-2020-10605
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
CVE-2020-10605
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
Default credentials
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
CVE-2020-10605
Grundfos CIM 500 before v06.16.00 responds to unauthenticated requests for password storage files...
CVE-2020-10605
CVE-2020-10605 affects Grundfos CIM 500 (all versions prior to v06.16.00). The root cause is missing authentication for a critical function that allows unauthenticated access to password storage files, effectively exposing plaintext credentials. Impact, as documented, includes unauthorized access...