CVE-2026-2972

A vulnerability was determined in a466350665 Smart-SSO up to 2.1.1. This affects the function Save of the file smart-sso-server/src/main/java/openjoe/smart/sso/server/controller/admin/UserController.java of the component Role Edit Page. Executing a manipulation can lead to cross site scripting. T...

Dell iDRAC Service Module 访问控制错误漏洞

The Dell iDRAC Service Module is a lightweight software module developed by the American company Dell. It is designed to enhance the functionality of iDRAC Integrated Dell Remote Access Controller on Dell PowerEdge servers. There were access control vulnerabilities in versions of the Dell iDRAC...

CVE-2025-34502

Deck Mate 2 lacks a verified secure-boot chain and runtime integrity validation for its controller and display modules. Without cryptographic boot verification, an attacker with physical access can modify or replace the bootloader, kernel, or filesystem and gain persistent code execution on reboo...

EUVD-2025-35894

Deck Mate 2 lacks a verified secure-boot chain and runtime integrity validation for its controller and display modules. Without cryptographic boot verification, an attacker with physical access can modify or replace the bootloader, kernel, or filesystem and gain persistent code execution on reboo...

CVE-2021-46417

Insecure handling of a download function leads to disclosure of internal files due to path traversal with root privileges in Franklin Fueling Systems Colibri Controller Module 1.8.19.8580...

Path traversal

Insecure handling of a download function leads to disclosure of internal files due to path traversal with root privileges in Franklin Fueling Systems Colibri Controller Module 1.8.19.8580...

CVE-2021-46417

Insecure handling of a download function leads to disclosure of internal files due to path traversal with root privileges in Franklin Fueling Systems Colibri Controller Module 1.8.19.8580...

Franklin Fueling Systems 路径遍历漏洞

Franklin Fueling Systems is a fueling system in the United States. A security vulnerability exists in Franklin Fueling Systems Colibri Controller Module version 1.8.19.8580, which stems from an insecure handling of the download function resulting in a path traversal issue. An attacker could explo...

CVE-2021-20600

Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-of-service DoS condition by sending a large number of packets in a short time while the module...

CVE-2021-20600

Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-of-service DoS condition by sending a large number of packets in a short time while the module...

Design/Logic Flaw

Improper neutralization of argument delimiters in a command 'Argument Injection' vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Modul...

CVE-2020-5657

Improper neutralization of argument delimiters in a command 'Argument Injection' vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R series RJ71EIP91 EtherNet/IP Network Interface Module First 2 digits of serial number are '02' or before, RJ71PN92 PROFINET IO Controller Modul...

Schneider Electric Tricon TCM Model Resource Management Error Vulnerability

Schneider Electric Tricon TCM Model 4351 and others are a communication module from Schneider Electric, France. A security vulnerability exists in the Schneider Electric Tricon TCM Model v10.3.x version and v10.4.x version. An attacker could exploit the vulnerability to reset the TCM module...

Design/Logic Flaw

Mitsubishi Electric MELSEC C Controller Module and MELIPC Series MI5000 MELSEC-Q Series C Controller ModuleQ24DHCCPU-V, Q24DHCCPU-VG User Ethernet port CH1, CH2: First 5 digits of serial number 21121 or before, MELSEC iQ-R Series C Controller Module / C Intelligent Function ModuleR12CCPU-V Ethern...

CVE-2020-5531

CVE-2020-5531 affects Mitsubishi Electric MELSEC C Controller Module, MELIPC MI5000, MELSEC-Q C Controller Module (Q24DHCCPU-V/VG), MELSEC iQ-R C Controller Module/C Intelligent Function Module (R12CCPU-V, RD55UP06-V) and MELIPC MI5000 (MI5122-VW). The vulnerability enables remote DoS and malware...

Honeywell C200 Controller Module

Binary data 764872.prm...

GE IC695PNC001 PACSystems RX3i PROFINET Controller Module Detection

Binary data 755481.prm...

Cisco Application Policy Infrastructure Controller Enterprise Module Security Bypass Vulnerability

The Cisco Application Policy Infrastructure Controller Enterprise Module is a suite of applications that provide policy-based use for automated configuration of end-to-end infrastructure controllers. A security bypass vulnerability exists in the API of the Cisco Application Policy Infrastructure...