24 matches found
HCL iControl 安全漏洞
HCL iControl is an IT infrastructure monitoring and automation platform developed by the Indian company HCL. HCL iControl has a security vulnerability, which stems from weak input validation. This issue arises due to incorrect validation of input types during the implementation of architectural...
EUVD-2025-74039
An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the...
EUVD-2023-58356
Malicious code in bioql PyPI...
CVE-2023-6100
A vulnerability classified as problematic was found in Maiwei Safety Production Control Platform 4.1. This vulnerability affects unknown code of the file /api/DataDictionary/GetItemList. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...
CVE-2023-6102
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent.; The manipulation leads to unrestricted upload. It is possible...
The vulnerability of Siemens Industrial Edge Management’s centralized control platform for industrial peripheral applications and devices lies in its ability to bypass authentication by using a user-controlled key. This allows attackers to circumvent security restrictions and gain unauthorized access to protected information.
The vulnerability of the centralized control platform for industrial peripheral applications and Siemens Industrial Edge Management IEM devices relates to the ability to bypass authentication by using a user-controlled key. Exploiting this vulnerability allows an attacker to circumvent security...
Information Leakage Vulnerability in Equipment Asset Comprehensive Control Platform of Guangdong Zhongshi Intelligent Control Technology Co.
Guangdong Zhongshi Intelligent Control Technology Co., Ltd. is a specialized enterprise in the field of high-tech, with industrial Internet and smart city digital technology innovation application as its core business. There is an information leakage vulnerability in the equipment asset integrate...
The vulnerability of the Honeywell ProWatch software platform for remote monitoring and control of buildings, related to data processing errors, allows a intruder to execute arbitrary code.
The vulnerability of the Honeywell ProWatch software platform for remote monitoring and control is related to data processing errors. Exploiting this vulnerability could allow a intruder to execute arbitrary code...
CVE-2023-6102
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent. The manipulation leads to unrestricted upload. It is possible ...
Design/Logic Flaw
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent. The manipulation leads to unrestricted upload. It is possible ...
CVE-2023-6102 Maiwei Safety Production Control Platform unrestricted upload
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent. The manipulation leads to unrestricted upload. It is possible ...
CVE-2023-6102
CVE-2023-6102 affects Maiwei Safety Production Control Platform 4.1. The issue is an unrestricted file upload in the function handling /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent, allowing remote exploitation. Exploit has been disclosed publicly; vendor response no...
CVE-2023-6101
A vulnerability, which was classified as problematic, has been found in Maiwei Safety Production Control Platform 4.1. This issue affects some unknown processing of the file /TC/V2.7/ha.html of the component Intelligent Monitoring. The manipulation leads to information disclosure. The attack may ...
CVE-2023-6101 Maiwei Safety Production Control Platform Intelligent Monitoring ha.html information disclosure
A vulnerability, which was classified as problematic, has been found in Maiwei Safety Production Control Platform 4.1. This issue affects some unknown processing of the file /TC/V2.7/ha.html of the component Intelligent Monitoring. The manipulation leads to information disclosure. The attack may ...
CVE-2023-6101
CVE-2023-6101 affects Maiwei Safety Production Control Platform 4.1, specifically the Intelligent Monitoring component and the processing of the file /TC/V2.7/ha.html. Descriptions across sources indicate a remotely initiable issue that leads to information disclosure. The vulnerability is public...
CVE-2023-6100 Maiwei Safety Production Control Platform GetItemList information disclosure
A vulnerability classified as problematic was found in Maiwei Safety Production Control Platform 4.1. This vulnerability affects unknown code of the file /api/DataDictionary/GetItemList. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...
CVE-2023-6100
Maiwei Safety Production Control Platform 4.1 is affected via the /api/DataDictionary/GetItemList API, where manipulation can disclose information. The issue is reported as remote-exploitable with publicly disclosed exploit details. Several connected sources confirm the exact endpoint and impact,...
PT-2023-32514 · Unknown · Maiwei Safety Production Control Platform
Name of the Vulnerable Software and Affected Versions: Maiwei Safety Production Control Platform version 4.1 Description: A problematic issue was found in the Maiwei Safety Production Control Platform, affecting the /api/DataDictionary/GetItemList API endpoint. This issue leads to information...
Command Execution Vulnerability in 4A Unified Security Control Platform of Beijing Qixingchen Information Security Technology Co.
Beijing Qixingchen Information Security Technology Co., Ltd. is an enterprise mainly engaged in science and technology promotion and application service industry. A command execution vulnerability exists in the 4A Unified Security Control Platform of Beijing Qixingchen Information Security...
SQL Injection Vulnerability in Pollutant Discharge Intelligent Control Platform of Hebei Baijing Environmental Technology Co.
Hebei Baijing Environmental Technology Co., Ltd. is located in Shijiazhuang High-tech Development Zone, is the ecological environment quality monitoring and control of series of products research and development, data services, integrated solution design of specialized high-tech enterprises. Hebe...