12 matches found
CVE-2024-39601
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V5.40, SICORE Base system All versions V1.4.0. Affected devices allow a remote authenticated user or an unauthenticated user with physical access to downgrade the firmware of the device. This could allow a...
EUVD-2024-52159
Malicious code in bioql PyPI...
EUVD-2024-29365
Malicious code in bioql PyPI...
EUVD-2024-38121
Malicious code in bioql PyPI...
EUVD-2024-36950
Malicious code in bioql PyPI...
CVE-2024-53832
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V05.30. The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the...
CVE-2024-37998
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V5.40, SICORE Base system All versions V1.4.0. The password of administrative accounts of the affected applications can be reset without requiring the knowledge of the current password, given the auto logi...
CVE-2024-31485
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V5.30, SICORE Base system All versions V1.3.0. The web interface of affected devices is vulnerable to command injection due to missing server side input sanitation. This could allow an authenticated...
CVE-2024-53832
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V05.30. The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the...
CVE-2024-53832
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V05.30. The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the...
CVE-2024-53832
CVE-2024-53832 affects Siemens SICAM A8000 devices (CP-8031/CP-8050) with CPCI85 Central Processing/Communication, all versions before V05.30. A secure element is connected via an unencrypted SPI bus, enabling a physically proximate attacker to observe the authentication password and use the secu...
CVE-2024-53832
A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V05.30. The affected devices contain a secure element which is connected via an unencrypted SPI bus. This could allow an attacker with physical access to the SPI bus to observe the password used for the...