Lucene search
+L

843 matches found

Cvelist
Cvelist
added 2026/01/27 11:35 a.m.33 views

CVE-2025-41726 Beckhoff: Arbitrary code execution within privileged processes

A low privileged remote attacker can execute arbitrary code by sending specially crafted calls to the web service of the Device Manager or locally via an API and can cause integer overflows which then may lead to arbitrary code execution within privileged processes...

8.8CVSS0.00414EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.9 views

Beckhoff Automation's various products have buffer error vulnerabilities

Beckhoff Automation’s Beckhoff.Device.Manager.XAR, among others, are products of the American company Beckhoff Automation. Beckhoff.Device.Manager.XAR is a core component used for remote management and controller configuration. Beckhoff Automation’s MDP software package for TwinCAT/BSD is a core...

5.3CVSS6AI score0.00309EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.7 views

Motorola Device Manager code-related vulnerabilities

Motorola Device Manager is a computer-based device management tool developed by the American company Motorola. Version 2.5.4 of Motorola Device Manager contains a code vulnerability caused by an unquoted service path, which may allow for the execution of arbitrary code...

8.5CVSS6.1AI score0.00161EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.6 views

Several products of Beckhoff Automation have security vulnerabilities.

Beckhoff Automation’s Beckhoff.Device.Manager.XAR, etc., are products of the American company Beckhoff Automation. Beckhoff.Device.Manager.XAR is a core component used for remote management and controller configuration. Beckhoff Automation’s MDP software package for TwinCAT/BSD is a core componen...

7.8CVSS6AI score0.00163EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.10 views

Motorola Device Manager code-related vulnerabilities

Motorola Device Manager is a computer-based device management tool developed by the American company Motorola. Version 2.4.5 of Motorola Device Manager contains a code vulnerability caused by an unquoted service path, which may allow for the execution of arbitrary code...

8.5CVSS6.1AI score0.00166EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.10 views

PT-2026-4911

A low privileged remote attacker may be able to disclose confidential information from the memory of a privileged process by sending specially crafted calls to the Device Manager web service that cause an out-of-bounds read operation under certain circumstances due to ASLR and thereby potentially...

5.3CVSS5.8AI score0.00309EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.12 views

PT-2026-4909

A low privileged remote attacker can execute arbitrary code by sending specially crafted calls to the web service of the Device Manager or locally via an API and can cause integer overflows which then may lead to arbitrary code execution within privileged processes...

8.8CVSS6.4AI score0.00414EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.10 views

PT-2026-4910

A local low privileged attacker can bypass the authentication of the Device Manager user interface, allowing them to perform privileged operations and gain administrator access...

7.8CVSS5.9AI score0.00163EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.10 views

PT-2026-5005

Motorola Device Manager 2.5.4 contains an unquoted service path vulnerability in the MotoHelperService.exe service that allows local users to potentially inject malicious code. Attackers can exploit the unquoted path in the service configuration to execute arbitrary code with elevated system...

8.5CVSS6.2AI score0.00161EPSS
Exploits0References4
NVD
NVD
added 2026/01/15 9:16 p.m.11 views

CVE-2026-21913

An Incorrect Initialization of Resource vulnerability in the Internal Device Manager IDM of Juniper Networks Junos OS on EX4000 models allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. On EX4000 models with 48 ports EX4000-48T, EX4000-48P, EX4000-48MP a high volu...

8.7CVSS0.00375EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/15 8:25 p.m.31 views

CVE-2026-21913 Junos OS: EX4000: A high volume of traffic destined to the device leads to a crash and restart

An Incorrect Initialization of Resource vulnerability in the Internal Device Manager IDM of Juniper Networks Junos OS on EX4000 models allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. On EX4000 models with 48 ports EX4000-48T, EX4000-48P, EX4000-48MP a high volu...

8.7CVSS0.00375EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/15 8:25 p.m.5 views

CVE-2026-21913

An Incorrect Initialization of Resource vulnerability in the Internal Device Manager IDM of Juniper Networks Junos OS on EX4000 models allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. On EX4000 models with 48 ports EX4000-48T, EX4000-48P, EX4000-48MP a high volu...

8.7CVSS5.5AI score0.00375EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/15 8:25 p.m.6 views

CVE-2026-21913 Junos OS: EX4000: A high volume of traffic destined to the device leads to a crash and restart

An Incorrect Initialization of Resource vulnerability in the Internal Device Manager IDM of Juniper Networks Junos OS on EX4000 models allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. On EX4000 models with 48 ports EX4000-48T, EX4000-48P, EX4000-48MP a high volu...

8.7CVSS6.4AI score0.00375EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/15 8:25 p.m.9 views

EUVD-2026-2688

An Incorrect Initialization of Resource vulnerability in the Internal Device Manager IDM of Juniper Networks Junos OS on EX4000 models allows an unauthenticated, network-based attacker to cause a Denial-of-Service DoS. On EX4000 models with 48 ports EX4000-48T, EX4000-48P, EX4000-48MP a high volu...

8.7CVSS6.3AI score0.00375EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.8 views

Juniper Networks Junos OS security vulnerabilities

Juniper Networks Junos OS is a network operating system specifically designed for hardware devices used by Juniper Networks. This operating system provides secure programming interfaces and the Junos SDK. There were security vulnerabilities in versions of Junos OS prior to 24.4R2, as well as...

8.7CVSS5.8AI score0.00375EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.14 views

PT-2026-3127

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS on EX4000-48T, EX4000-48P and EX4000-48MP versions prior to 24.4R2 Juniper Networks Junos OS on EX4000-48T, EX4000-48P and EX4000-48MP versions prior to 25.2R1-S2 Juniper Networks Junos OS on EX4000-48T, EX4000-48P an...

8.7CVSS6.5AI score0.00375EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/09 12:40 p.m.3 views

CVE-2023-43131

General Device Manager 2.5.2.2 is vulnerable to Buffer Overflow...

9.8CVSS7AI score0.00899EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:46 a.m.13 views

CVE-2010-0594

Cross-site scripting XSS vulnerability in Cisco Router and Security Device Manager SDM allows remote attackers to inject arbitrary web script or HTML via unknown vectors, aka Bug ID CSCtb38467...

4.3CVSS5.9AI score0.00845EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:24 a.m.9 views

CVE-2021-31989

A user with permission to log on to the machine hosting the AXIS Device Manager client could under certain conditions extract a memory dump from the built-in Windows Task Manager application. The memory dump may potentially contain credentials of connected Axis devices...

5.3CVSS6.8AI score0.00397EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:15 a.m.5 views

CVE-2021-0319

In checkCallerIsSystemOr of CompanionDeviceManagerService.java, there is a possible way to get a nearby Bluetooth device's MAC address without appropriate permissions due to a permissions bypass. This could lead to local escalation of privilege that grants access to nearby MAC addresses, with Use...

7.3CVSS6.7AI score0.00256EPSS
Exploits0References1
Rows per page
Query Builder