85 matches found
CVE-2018-25379
Collectric CMU 1.0 contains a boolean-based blind SQL injection vulnerability in the lang parameter that allows unauthenticated attackers to manipulate database queries during authentication. Attackers can inject SQL code through the lang parameter in login requests to extract sensitive informati...
Collectric CMU SQL注入漏洞
The Collectric CMU is a smart meter device from Collectric in the Netherlands that supports power metering with supporting communication extensions. A SQL injection vulnerability exists in Collectric CMU version 1.0, which stems from the presence of Boolean-based blind SQL injection in the lang...
EUVD-2006-1721
Malware in sbrugna...
EUVD-2025-15123
Malicious code in bioql PyPI...
EUVD-2024-54517
Malicious code in bioql PyPI...
EUVD-2024-54521
Malicious code in bioql PyPI...
CVE-2023-6711
Vulnerability exists in SCI IEC 60870-5-104 and HCI IEC 60870-5-104 that affects the RTU500 series product versions listed below. Specially crafted messages sent to the mentioned components are not validated properly and can result in buffer overflow and as final consequence to a reboot of an...
Hitachi Energy's RTU500 series NULL Pointer Deference (CVE-2024-11499)
A vulnerability exists in RTU500 IEC 60870-4-104 con- trolled station functionality, that allows an authenti- cated and authorized attacker to perform a CMU re- start. The vulnerability can be triggered if certificates are updated while in use on active connections. The affected CMU will...
Hitachi Energy's RTU500 series Insufficient Resource Pool (CVE-2024-12169)
A vulnerability exists in RTU500 IEC 60870-5-104 con- trolled station functionality and IEC 61850 functional- ity, that allows an attacker performing a specific attack sequence to restart the affected CMU. This vulnerabil- ity only applies, if secure communication using IEC 62351-3 TLS is enabled...
CVE-2024-11499
A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an authenticated and authorized attacker to perform a CMU restart. The vulnerability can be triggered if certificates are updated while in use on active connections. The affected CMU will automatically...
CVE-2025-1445
A vulnerability exists in RTU IEC 61850 client and server functionality that could impact the availability if renegotiation of an open IEC61850 TLS connection takes place in specific timing situations, when IEC61850 communication is active. Precondition is that IEC61850 as client or server are...
CVE-2024-12169
A vulnerability exists in RTU500 IEC 60870-5-104 controlled station functionality and IEC 61850 functionality, that allows an attacker performing a specific attack sequence to restart the affected CMU. This vulnerability only applies, if secure communication using IEC 62351-3 TLS is enabled...
CVE-2024-11499
A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an authenticated and authorized attacker to perform a CMU restart. The vulnerability can be triggered if certificates are updated while in use on active connections. The affected CMU will automatically...
CVE-2025-1445
A vulnerability exists in RTU IEC 61850 client and server functionality that could impact the availability if renegotiation of an open IEC61850 TLS connection takes place in specific timing situations, when IEC61850 communication is active. Precondition is that IEC61850 as client or server are...
CVE-2025-1445
A vulnerability exists in RTU IEC 61850 client and server functionality that could impact the availability if renegotiation of an open IEC61850 TLS connection takes place in specific timing situations, when IEC61850 communication is active. Precondition is that IEC61850 as client or server are...
CVE-2024-12169
A vulnerability exists in RTU500 IEC 60870-5-104 controlled station functionality and IEC 61850 functionality, that allows an attacker performing a specific attack sequence to restart the affected CMU. This vulnerability only applies, if secure communication using IEC 62351-3 TLS is enabled...
CVE-2024-12169
The CVE-2024-12169 entry involves Hitachi Energy RTU500 series, affecting the RTU500 IEC 60870-5-104 controlled-station functionality and IEC 61850 functionality. The described impact is that an attacker performing a specific attack sequence can restart the affected CMU, and this only applies whe...
CVE-2024-11499
CVE-2024-11499 – Hitachi Energy RTU500 : The RTU500 IEC 60870-4-104 controlled-station functionality is affected. An authenticated and authorized attacker can trigger a CMU restart by updating certificates while they are in use on active connections. The affected CMU is described as automatically...
CVE-2024-11499
A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an authenticated and authorized attacker to perform a CMU restart. The vulnerability can be triggered if certificates are updated while in use on active connections. The affected CMU will automatically...
CVE-2024-11499
A vulnerability exists in RTU500 IEC 60870-4-104 controlled station functionality, that allows an authenticated and authorized attacker to perform a CMU restart. The vulnerability can be triggered if certificates are updated while in use on active connections. The affected CMU will automatically...