Lucene search
+L

67 matches found

Microsoft Secure
Microsoft Secure
added 2022/11/22 5:0 p.m.138 views

Vulnerable SDK components lead to supply chain risks in IoT and OT environments

December 8, 2022 update - Reflected additional research on Boa-related CVEs and updated supply chain diagram. Vulnerabilities in network components, architecture files, and developer tools have become increasingly popular attack vectors to gain access into secure networks and devices. External...

10CVSS0.4AI score0.99999EPSS
Exploits360
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.54 views

Siemens PROFINET DCP Uncontrolled Resource Consumption (CVE-2017-2680)

Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment Layer 2. Human interaction is required to recover the systems. PROFIBUS interfaces are not affected. This plugin only works with Tenable.ot. Please visit...

7.1CVSS6.9AI score0.01149EPSS
Exploits0References11
Prion
Prion
added 2021/10/20 11:17 a.m.22 views

Buffer overflow

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

5CVSS7.2AI score0.01418EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/10/20 11:16 a.m.5 views

CVE-2021-35574

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

7.5CVSS7.3AI score0.0198EPSS
Exploits0References2
Prion
Prion
added 2021/10/20 11:16 a.m.19 views

Buffer overflow

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

5CVSS7.2AI score0.01456EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/10/20 10:50 a.m.8 views

CVE-2021-35572

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

7.5CVSS6.7AI score0.01456EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/10/20 10:50 a.m.30 views

CVE-2021-35572

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

7.5CVSS7.4AI score0.01456EPSS
Exploits0References1
NVD
NVD
added 2021/07/21 3:16 p.m.22 views

CVE-2021-2431

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

7.5CVSS0.01142EPSS
Exploits0References1
Prion
Prion
added 2021/07/21 3:16 p.m.19 views

Buffer overflow

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

5CVSS7.5AI score0.01442EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/07/21 3:15 p.m.12 views

Buffer overflow

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. The supported version that is affected is 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

5CVSS7.5AI score0.01442EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2021/04/30 11:49 a.m.105 views

Microsoft Warns of 25 Critical Vulnerabilities in IoT, Industrial Devices

Security researchers at Microsoft are warning the industry about 25 as-yet undocumented critical memory-allocation vulnerabilities across a number of vendors’ IoT and industrial devices that threat actors could exploit to execute malicious code across a network or cause an entire system to crash...

0.5AI score0.01326EPSS
Exploits0References7
Cvelist
Cvelist
added 2021/01/20 2:50 p.m.33 views

CVE-2021-2067

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. Supported versions that are affected are 8.5.4 and 8.5.5. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside...

8.6CVSS8.2AI score0.01355EPSS
Exploits0References1
Wired Threat Level
Wired Threat Level
added 2020/08/06 9:30 p.m.32 views

Chinese Hackers Have Pillaged Taiwan's Semiconductor Industry

A campaign called Operation Skeleton Key has stolen source code, software development kits, chip designs, and more...

2.2AI score
Exploits0
OSV
OSV
added 2020/04/15 2:15 p.m.4 views

CVE-2020-2783

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware component: Outside In Filters. Supported versions that is affected is 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

5.3CVSS6.3AI score0.00877EPSS
Exploits0References1
OSV
OSV
added 2020/04/14 8:15 p.m.5 views

CVE-2019-19300

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, KTK ATE530S, SIDOOR ATD430W, SIDOOR ATE530S COATED, SIDOOR ATE531S, SIMATIC ET 200AL IM 157-1 PN 6ES7157-1AB00-0AB0, SIMATIC ET 200eco PN, ...

7.5CVSS7AI score0.015EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/04/14 12:0 a.m.28 views

CVE-2019-19300

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, KTK ATE530S, SIDOOR ATD430W, SIDOOR ATE530S COATED, SIDOOR ATE531S, SIMATIC ET 200AL IM 157-1 PN 6ES7157-1AB00-0AB0, SIMATIC ET 200eco PN, ...

7.5CVSS7.4AI score0.015EPSS
Exploits0References2
CVE
CVE
added 2020/04/14 12:0 a.m.130 views

CVE-2019-19300

The CVE-2019-19300 vulnerability affects Siemens Industrial products (e.g., KTK/ SIDOO R, SIMATIC ET200 platforms, ET 200SP Open Controller, S7-1500/1200/300/400 families, SINAMICS, and related PROFINET components) due to the Interniche-based TCP stack. The issue is uncontrolled resource consumpt...

7.5CVSS7.4AI score0.015EPSS
Exploits0References2Affected Software1
The Hacker News
The Hacker News
added 2020/02/17 3:10 p.m.104 views

A Dozen Vulnerabilities Affect Millions of Bluetooth LE Powered Devices

A team of cybersecurity researchers late last week disclosed the existence of 12 potentially severe security vulnerabilities, collectively named 'SweynTooth,' affecting millions of Bluetooth-enabled wireless smart devices worldwide—and worryingly, a few of which haven't yet been patched. All...

8.8CVSS7.6AI score0.0181EPSS
Exploits6
Prion
Prion
added 2019/04/23 7:32 p.m.18 views

Buffer overflow

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware subcomponent: Outside In Filters. Supported versions that are affected are 8.5.3 and 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

6.4CVSS5.8AI score0.01462EPSS
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2019/04/04 6:34 p.m.6 views

Hackers Could Turn Pre-Installed Antivirus App on Xiaomi Phones Into Malware

What could be worse than this, if the software that's meant to protect your devices leave backdoors open for hackers or turn into malware? Researchers today revealed that a security app that comes pre-installed on more than 150 million devices manufactured by Xiaomi, China's biggest and world's 4...

8.2AI score
Exploits0
Rows per page
Query Builder