20 matches found
EUVD-2023-57645
Malicious code in bioql PyPI...
EUVD-2023-57644
Malicious code in bioql PyPI...
The vulnerability of the microprogramming software of industrial thermal printers SATO CL4NX Plus, CL6NX Plus, CL4NX-J Plus, and CL6NX-J Plus lies in the ability to load files of a harmful type without restrictions. This allows attackers to escalate their privileges and execute arbitrary code.
The vulnerability of microprogrammed industrial thermal printers such as SATO CL4NX Plus, CL6NX Plus, CL4NX-J Plus, and CL6NX-J Plus lies in the ability to load files of a malicious nature without limitation. Exploiting this vulnerability can allow an attacker to enhance their privileges and...
CVE-2023-5327
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455r2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /rest/dir/. The manipulation of the argument full leads to path traversal. The attack needs to be initiated within the local network. Th...
CVE-2023-5328
A vulnerability classified as critical has been found in SATO CL4NX-J Plus 1.13.2-u455r2. This affects an unknown part of the component Cookie Handler. The manipulation with the input auth=user,level1,settings; web=true leads to improper authentication. Access to the local network is required for...
CVE-2023-5328
A vulnerability classified as critical has been found in SATO CL4NX-J Plus 1.13.2-u455r2. This affects an unknown part of the component Cookie Handler. The manipulation with the input auth=user,level1,settings; web=true leads to improper authentication. Access to the local network is required for...
Authentication flaw
A vulnerability classified as critical has been found in SATO CL4NX-J Plus 1.13.2-u455r2. This affects an unknown part of the component Cookie Handler. The manipulation with the input auth=user,level1,settings; web=true leads to improper authentication. Access to the local network is required for...
CVE-2023-5328 SATO CL4NX-J Plus Cookie improper authentication
A vulnerability classified as critical has been found in SATO CL4NX-J Plus 1.13.2-u455r2. This affects an unknown part of the component Cookie Handler. The manipulation with the input auth=user,level1,settings; web=true leads to improper authentication. Access to the local network is required for...
CVE-2023-5328 SATO CL4NX-J Plus Cookie improper authentication
A vulnerability classified as critical has been found in SATO CL4NX-J Plus 1.13.2-u455r2. This affects an unknown part of the component Cookie Handler. The manipulation with the input auth=user,level1,settings; web=true leads to improper authentication. Access to the local network is required for...
CVE-2023-5328
CVE-2023-5328 affects SATO CL4NX-J Plus 1.13.2-u455_r2, involving the Cookie Handler. The vulnerability arises from manipulating the input auth=user,level1,settings; web=true to trigger improper authentication. Local network access is required for the attack, and the exploit has been publicly dis...
CVE-2023-5327
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455r2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /rest/dir/. The manipulation of the argument full leads to path traversal. The attack needs to be initiated within the local network. Th...
CVE-2023-5326
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455r2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component WebConfig. The manipulation leads to improper authentication. The attack needs to be done within the local network. The explo...
Authentication flaw
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455r2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component WebConfig. The manipulation leads to improper authentication. The attack needs to be done within the local network. The explo...
Path traversal
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455r2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /rest/dir/. The manipulation of the argument full leads to path traversal. The attack needs to be initiated within the local network. Th...
CVE-2023-5327 SATO CL4NX-J Plus path traversal
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455r2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /rest/dir/. The manipulation of the argument full leads to path traversal. The attack needs to be initiated within the local network. Th...
CVE-2023-5327 SATO CL4NX-J Plus path traversal
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455r2. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /rest/dir/. The manipulation of the argument full leads to path traversal. The attack needs to be initiated within the local network. Th...
CVE-2023-5327
CVE-2023-5327 affects SATO CL4NX-J Plus 1.13.2-u455_r2. The vulnerability is a path traversal flaw in the /rest/dir/ endpoint triggered by manipulating the argument within the local network. Exploitation could allow access to restricted paths, with impact on confidentiality as indicated by the s...
CVE-2023-5326
SATO CL4NX-J Plus 1.13.2-u455_r2 is affected by a critical vulnerability in the WebConfig component that allows improper authentication. The issue requires local-network access to exploit; the exploit has been disclosed publicly. There is no information in the provided documents about a fixed ver...
CVE-2023-5326 SATO CL4NX-J Plus WebConfig improper authentication
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455r2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component WebConfig. The manipulation leads to improper authentication. The attack needs to be done within the local network. The explo...
CVE-2023-5326 SATO CL4NX-J Plus WebConfig improper authentication
A vulnerability was found in SATO CL4NX-J Plus 1.13.2-u455r2. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component WebConfig. The manipulation leads to improper authentication. The attack needs to be done within the local network. The explo...