44 matches found
CISA Releases Eight Industrial Control Systems Advisories
CISA released eight Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-296-01 AutomationDirect Productivity Suite ICSA-25-296-02 ASKI Energy ALS-Mini-S8 and ALS-Mini-S4...
NIHON KOHDEN Central Monitor CNS-6201
RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: When remote access is...
EUVD-2014-2195
Malware in sbrugna...
EUVD-2004-1161
Malware in sbrugna...
EUVD-2025-31674
Malicious code in bioql PyPI...
EUVD-2025-23817
Malicious code in bioql PyPI...
CVE-2025-59668
Multiple versions of Central Monitor CNS-6201 contain a NULL pointer dereference vulnerability. When processing a crafted certain UDP packet, the affected device may abnormally terminate...
NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference
Overview Central Monitor CNS-6201 provided by NIHON KOHDEN CORPORATION contains the following vulnerability. NULL pointer dereference CWE-476 - CVE-2025-59668 Jared P. Quinn of QuinnTech.ai discovered and reported the vulnerability to the developer and CISA. Cooperating with CISA, JPCERT/CC...
CVE-2025-59668
Multiple versions of Central Monitor CNS-6201 contain a NULL pointer dereference vulnerability. When processing a crafted certain UDP packet, the affected device may abnormally terminate...
CVE-2025-59668
Multiple versions of Central Monitor CNS-6201 contain a NULL pointer dereference vulnerability. When processing a crafted certain UDP packet, the affected device may abnormally terminate...
CVE-2025-59668
CVE-2025-59668 affects NIHON KOHDEN Central Monitor CNS-6201. Multiple versions are vulnerable to a NULL pointer dereference when processing a specially crafted UDP packet, causing the receiving process to terminate abnormally and leading to a denial-of-service. The attack is network-based with n...
Nihon Kohden Central Monitor CNS-6201 代码问题漏洞
Nihon Kohden Central Monitor CNS-6201 is a nursing station monitoring system from Nihon Kohden, Japan. A code issue vulnerability exists in Nihon Kohden Central Monitor CNS-6201, which stems from the presence of a null pointer dereference when processing specially crafted UDP packets, which could...
CVE-2025-6013 Vault LDAP MFA Enforcement Bypass When Using Username As Alias
Vault and Vault Enterprise’s “Vault” ldap auth method may not have correctly enforced MFA if usernameasalias was set to true and a user had multiple CNs that are equal but with leading or trailing spaces. Fixed in Vault Community Edition 1.20.2 and Vault Enterprise 1.20.2, 1.19.8, 1.18.13, and...
WANGKONGBAO CNS-1000 And 1100 UTM Directory Traversal
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WANGKONGBAO CNS-1000 and 1100 UTM Directory Traversal', 'Description' = %q This module exploits the WANGKONGBAO CNS-1000 and 1100 UTM appliances...
cns-it.de Improper Access Control vulnerability OBB-2170777
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
cns.888.com XSS vulnerability
Vulnerable URL: https://cns.888.com/downloadclient.htm/?wtv=%3C/script%3E%3Cscript%20src=https://openbugbounty.org/1.js%3E Details: Description| Value ---|--- Patched:| Yes, at 25.11.2017 Latest check for patch:| 25.11.2017 09:26 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...
cns.888poker.com XSS vulnerability
Vulnerable URL: https://cns.888poker.com/download-poker/?wtv=%3C/script%3E%3Cscript%20src=https://openbugbounty.org/1.js%3E Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 13:08 GMT Vulnerability type:| XSS Vulnerability status:| Publicly...
CVE-2015-6375
Cisco Networking Services (CNS) for IOS 15.2(2)E3 is affected by CVE-2015-6375, where the debug-logging (debug CNS) feature can allow a local authenticated user to disclose sensitive information by reading an unspecified file. The issue stems from insufficient protections of sensitive data at res...
WANGKONGBAO CNS-1000 UTM IPS-FW Directory Traversal
No description provided by source. Exploit Title: WANGKONGBAO CNS-1000 and 1100 Network Security Platform UTM Directory Traversal Date: 7/2/2012 Exploit Author: Dillon Beresford Vendor Homepage: http://www.wangkongbao.com/products.html Version: CNS-1000 and 1100 The issue is in the...
Code injection
The DHCPv6 server module in Cisco CNS Network Registrar 7.1 allows remote attackers to cause a denial of service daemon reload via a malformed DHCPv6 packet, aka Bug ID CSCuo07437...