Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/02/05 11:51 p.m.22 views

CVE-2022-41668

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1...

7.8CVSS6.7AI score0.00197EPSS
Exploits0References1
Talos
Talosadded 2024/09/18 12:0 a.m.29 views

OpenPLC OpenPLC_v3 OpenPLC Runtime EtherNet/IP parser invalid pointer dereference vulnerabilities

Talos Vulnerability Report TALOS-2024-2016 OpenPLC OpenPLCv3 OpenPLC Runtime EtherNet/IP parser invalid pointer dereference vulnerabilities September 18, 2024 CVE Number CVE-2024-39590,CVE-2024-39589 SUMMARY Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime...

7.5CVSS7.9AI score0.01021EPSS
Exploits2
NVD
NVDadded 2022/11/04 12:15 p.m.29 views

CVE-2022-41668

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1...

7.8CVSS0.00197EPSS
Exploits0References1
Prion
Prionadded 2022/11/04 12:15 p.m.22 views

Design/Logic Flaw

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1...

4.3CVSS7.5AI score0.00197EPSS
Exploits0References1Affected Software2
CVE
CVEadded 2022/11/04 12:0 a.m.59 views

CVE-2022-41668

CVE-2022-41668 describes a CWE-704 issue where an adversary with local user privileges can load a project file from an attacker-controlled network share, potentially causing execution of malicious code. Affected products are Schneider Electric EcoStruxure Operator Terminal Expert (versions before...

7.8CVSS7.5AI score0.00197EPSS
Exploits0References1Affected Software2
Cvelist
Cvelistadded 2022/11/04 12:0 a.m.32 views

CVE-2022-41668

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1...

7CVSS7.8AI score0.00197EPSS
Exploits0References1
Talos
Talosadded 2018/09/25 12:0 a.m.53 views

Epee Levin Packet Deserialization Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the Levin deserialization functionality of the epee library. A specially crafted network packet can cause a logic flaw, resulting in code execution. An attacker can send a packet to trigger this vulnerability. Tested Versions Monero...

10CVSS9.7AI score0.03686EPSS
Exploits1
Rows per page
Query Builder