103 matches found
CVE-2023-40261
Diebold Nixdorf Vynamic Security Suite VSS before 3.3.0 SR17, 4.0.0 SR07, 4.1.0 SR04, 4.2.0 SR04, and 4.3.0 SR02 fails to validate file attributes during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's har...
Diebold Nixdorf Vynamic Security Suite 安全漏洞
Diebold Nixdorf Vynamic Security Suite Diebold Nixdorf VSS is a security access suite from Diebold Nixdorf, USA. A security vulnerability exists in Diebold Nixdorf Vynamic Security Suite that originates from the inability to validate /etc/initab during pre-boot authorization, which can be exploit...
CVE-2023-24064
Diebold Nixdorf Vynamic Security Suite (VSS) is affected up to version 3.3.0 SR4. The vulnerability arises because /etc/initab is not validated during Pre-Boot Authorization, enabling a physical attacker with access to the disk to manipulate contents. Remediation is to upgrade to version 3.3.0 SR...
PT-2024-12022 · Diebold Nixdorf · Diebold Nixdorf Vynamic Security Suite
Name of the Vulnerable Software and Affected Versions: Diebold Nixdorf Vynamic Security Suite versions prior to 3.3.0 SR10 Description: The issue concerns the failure to validate the /etc/mtab file during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who can...
CVE-2023-24063
CVE-2023-24063 affects Diebold Nixdorf Vynamic Security Suite (VSS) versions prior to 3.3.0 SR10. The root issue is failure to validate /etc/mtab during Pre-Boot Authorization (PBA), enabling a physical attacker who can alter the system disk contents to bypass or defeat the authorization process....
CVE-2020-19559
An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...
CVE-2020-19559
An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...
Code injection
An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...
CVE-2020-19559
An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...
CVE-2020-19559
An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...
PT-2023-11524 · Diebold · Diebold Aglis Xfs For Opteva
Name of the Vulnerable Software and Affected Versions: Diebold Aglis XFS for Opteva version 4.1.61.1 Description: The issue allows a remote attacker to execute arbitrary code by sending a crafted payload to the ResolveMethod parameter. Recommendations: For Diebold Aglis XFS for Opteva version...
Diebold Agilis XFS Code Issue Vulnerability
Diebold Agilis XFS is a software product designed to support the interaction and communication of automated banking devices. A security vulnerability exists in Diebold Aglis XFS for Opteva version v.4.1.61.1, which originated from a vulnerability that allows a remote attacker to execute arbitrary...
CVE-2020-19559
CVE-2020-19559 affects Diebold Aglis XFS for Opteva v4.1.61.1. The issue allows a remote attacker to execute arbitrary code by sending a crafted payload to the ResolveMethod() parameter. At least one connected source documents the vulnerability as a remote code execution in the Diebold Opteva XFS...
CVE-2023-36344
An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...
CVE-2023-36344
An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...
CVE-2023-36344
An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...
Design/Logic Flaw
An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...
CVE-2023-36344
An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...
Diebold Nixdorf Vynamic View Console Code Issue Vulnerability
The Diebold Nixdorf Vynamic View Console is a system from Diebold Nixdorf that allows remote changes to all PC-based devices via Intel Active Management Technology AMT BIOS management. A security vulnerability exists in Diebold Nixdorf Vynamic View Console v.5.3.1 and prior versions, which...
CVE-2023-36344
Diebold Nixdorf Vynamic View Console (v5.3.1 and earlier) is affected by a DLL search path hijacking issue that allows a local attacker to run arbitrary code by loading unsigned DLLs. The vulnerability affects multiple DLLs (e.g., VERSION.DLL, WINMM.DLL, WSOCK32.DLL, MSVCR100.DLL, USERENV.DLL, an...