Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-2477

Malicious code in bioql PyPI...

9.1CVSS6.4AI score0.00523EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 10:25 a.m.8 views

CVE-2024-42470

openHAB, a provider of open-source home automation software, has add-ons including the visualization add-on CometVisu. Several endpoints in versions prior to 4.2.1 of the CometVisu add-on of openHAB don't require authentication. This makes it possible for unauthenticated attackers to modify or to...

9.1CVSS6.3AI score0.00523EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 2:30 a.m.17 views

CVE-2024-42469

openHAB, a provider of open-source home automation software, has add-ons including the visualization add-on CometVisu. Prior to version 4.2.1, CometVisu's file system endpoints don't require authentication and additionally the endpoint to update an existing file is susceptible to path traversal...

9.8CVSS7.9AI score0.01211EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/09 12:0 a.m.6 views

PT-2024-29967 · Openhab · Cometvisu Add-On +1

Name of the Vulnerable Software and Affected Versions: openHAB CometVisu add-on versions prior to 4.2.1 Description: The issue affects several endpoints in the CometVisu add-on of openHAB that do not require authentication, allowing unauthenticated attackers to modify or steal sensitive data. Thi...

9.1CVSS6.8AI score0.00523EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/08/09 12:0 a.m.3 views

PT-2024-29965 · Openhab +1 · Openhab +1

Name of the Vulnerable Software and Affected Versions: openHAB versions prior to 4.2.1 Description: The issue concerns the CometVisu add-on of openHAB, which has file system endpoints that do not require authentication. Additionally, the endpoint to update an existing file is susceptible to path...

9.8CVSS8.1AI score0.01211EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2024/08/09 12:0 a.m.5 views

PT-2024-29963 · Openhab · Openhab +1

Name of the Vulnerable Software and Affected Versions: openHAB's CometVisu add-on versions prior to 4.2.1 Description: The proxy endpoint of openHAB's CometVisu add-on can be accessed without authentication, allowing for Server-Side Request Forgery SSRF and Cross-Site Scripting XSS vulnerabilitie...

10CVSS7.2AI score0.01035EPSS
Exploits0References13
Rows per page
Query Builder