7 matches found
CVE-2024-46602
An issue was discovered in Elspec G5 digital fault recorder version 1.2.1.12 and earlier. An XML External Entity XXE vulnerability may allow an attacker to cause a Denial of Service DoS via a crafted XML payload...
Elspec G5 Digital Fault Recorder Stored Cross-Site Scripting (CVE-2024-46602)
An issue was discovered in Elspec G5 digital fault recorder. A stored cross-site scripting XSS vulnerability may allow an attacker to execute arbitrary web scripts or HTML. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...
CVE-2024-46602
An issue was discovered in Elspec G5 digital fault recorder version 1.2.1.12 and earlier. An XML External Entity XXE vulnerability may allow an attacker to cause a Denial of Service DoS via a crafted XML payload...
CVE-2024-46602
creationtimestamp| type| source ---|---|--- 2025-01-07 15:52:41+00:00| seen| https://infosec.exchange/users/cve/statuses/113787873598057958 2025-01-07 16:16:13+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf62c6k2lo22 2025-01-09 16:18:10+00:00| seen|...
CVE-2024-46602
An issue was discovered in Elspec G5 digital fault recorder version 1.2.1.12 and earlier. An XML External Entity XXE vulnerability may allow an attacker to cause a Denial of Service DoS via a crafted XML payload...
CVE-2024-46602
An issue was discovered in Elspec G5 digital fault recorder version 1.2.1.12 and earlier. An XML External Entity XXE vulnerability may allow an attacker to cause a Denial of Service DoS via a crafted XML payload...
CVE-2024-46602
Summary: CVE-2024-46602 affects Elspec G5 digital fault recorder, versions 1.2.1.12 and earlier. The issue is an XML External Entity (XXE) vulnerability that may enable a remote attacker to trigger a Denial of Service via a crafted XML payload. The CVSSv3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N...