140 matches found
CVE-2023-29165
Unquoted search path or element in some IntelR ArcTM Control software before version 1.73.5335.2 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-42879
NULL pointer dereference in some IntelR ArcTM Control software before version 1.73.5335.2 may allow an authenticated user to potentially enable denial of service via local access...
CVE-2022-42879
NULL pointer dereference in some IntelR ArcTM Control software before version 1.73.5335.2 may allow an authenticated user to potentially enable denial of service via local access...
CVE-2023-29165
Unquoted search path or element in some IntelR ArcTM Control software before version 1.73.5335.2 may allow an authenticated user to potentially enable escalation of privilege via local access...
PT-2023-7298 · Intel · Intel Arc Control +1
Name of the Vulnerable Software and Affected Versions: IntelR ArcTM Control software versions prior to 1.73.5335.2 IntelR ArcTM & IrisR Xe Graphics - WHQL - Windows drivers versions prior to 31.0.101.4255 Description: The issue is related to a NULL pointer dereference in the software, which may...
Genians Genian NAC 安全漏洞
Genians Genian NAC is a network security and access control software from Genians Korea. It helps organizations identify IP-enabled devices, manage vulnerabilities and check device configurations to protect network access environments. A security vulnerability exists in Genians Genian NAC that...
Siemens多款产品 缓冲区错误漏洞
Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens, Germany. The power of discrete-event simulation is used to analyze and optimize throughput and thus improve manufacturing system performance. Siemens Tecnomatix Plant Simulation suffers from an out-of-bounds write...
PaperCut NG 跨站请求伪造漏洞
PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. A security vulnerability exists in the version of PaperCut NG/MF 22.0.10 Build 65996 2023-03-27. An attacker could exploit the vulnerability to change security settings or execute arbitrary code...
Altenergy Power System Control Software 数据伪造问题漏洞
Altenergy Power System Control Software is microinverter control software from Altenergy Power System. A security vulnerability exists in Altenergy Power System Control Software version C1.2.5, which was discovered to contain a Remote Code Execution RCE vulnerability via component...
CVE-2023-31502
Altenergy Power Control Software C1.2.5 was discovered to contain a remote code execution RCE vulnerability via the component /models/managementmodel.php...
Altenergy Power Control Software C1.2.5 Command Injection
Exploit Title: Altenergy Power Control Software C1.2.5 - OS command injection Google Dork: intitle:"Altenergy Power Control Software" Date: 15/3/2023 Exploit Author: Ahmed Alroky Vendor Homepage: https://apsystems.com/ Version: C1.2.5 Tested on: Windows 10 CVE : CVE-2023-28343 import requests...
Altenergy Power Control Software C1.2.5 - OS command injection
Exploit Title: Altenergy Power Control Software C1.2.5 - OS command injection Google Dork: intitle:"Altenergy Power Control Software" Date: 15/3/2023 Exploit Author: Ahmed Alroky Vendor Homepage: https://apsystems.com/ Version: C1.2.5 Tested on: Windows 10 CVE : CVE-2023-28343 import requests...
Altenergy Power Control Software C1.2.5 - OS command injection
Exploit Title: Altenergy Power Control Software C1.2.5 - OS command injection Google Dork: intitle:"Altenergy Power Control Software" Exploit Author: Ahmed Alroky Vendor Homepage: https://apsystems.com/ Version: C1.2.5 Tested on: Windows 10 CVE : CVE-2023-28343 import requests import argparse def...
ABB 800xA Improper Input Validation (CVE-2021-22277)
Improper Input Validation vulnerability in ABB 800xA, Control Software for AC 800M, Control Builder Safe, Compact Product Suite - Control and I/O, ABB Base Software for SoftControl allows an attacker to cause the denial of service. This plugin only works with Tenable.ot. Please visit...
CVE-2023-28343
OS command injection affects Altenergy Power Control Software C1.2.5 via shell metacharacters in the index.php/management/settimezone timezone parameter, because of settimezone in models/managementmodel.php...
Command injection
OS command injection affects Altenergy Power Control Software C1.2.5 via shell metacharacters in the index.php/management/settimezone timezone parameter, because of settimezone in models/managementmodel.php...
CVE-2023-28343
Altenergy Power Control Software C1.2.5 is affected by CVE-2023-28343: an OS command injection via shell metacharacters in the index.php/management/set_timezone parameter, caused by set_timezone in models/management_model.php. This allows remote command execution with the affected product version...
Altenergy Power System Control Software 操作系统命令注入漏洞
Altenergy Power System Control Software is microinverter control software from Altenergy Power System. A security vulnerability exists in AlAltenergy Power System Control Software version C1.2.5, which originates from an operating system command injection vulnerability...
CVE-2023-28343
OS command injection affects Altenergy Power Control Software C1.2.5 via shell metacharacters in the index.php/management/settimezone timezone parameter, because of settimezone in models/managementmodel.php...
CVE-2023-0451
Econolite EOS versions prior to 3.2.23 lack a password requirement for gaining “READONLY” access to log files and certain database and configuration files. One such file contains tables with MD5 hashes and usernames for all defined users in the control software, including administrators and...