Lucene search
K

103 matches found

Vulnrichment
Vulnrichment
added 2024/08/08 12:0 a.m.15 views

CVE-2023-40261

Diebold Nixdorf Vynamic Security Suite VSS before 3.3.0 SR17, 4.0.0 SR07, 4.1.0 SR04, 4.2.0 SR04, and 4.3.0 SR02 fails to validate file attributes during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who is able to manipulate the contents of the system's har...

4.4AI score0.00363EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/08/08 12:0 a.m.4 views

Diebold Nixdorf Vynamic Security Suite 安全漏洞

Diebold Nixdorf Vynamic Security Suite Diebold Nixdorf VSS is a security access suite from Diebold Nixdorf, USA. A security vulnerability exists in Diebold Nixdorf Vynamic Security Suite that originates from the inability to validate /etc/initab during pre-boot authorization, which can be exploit...

6.8CVSS6.4AI score0.00409EPSS
Exploits1References3
CVE
CVE
added 2024/08/08 12:0 a.m.66 views

CVE-2023-24064

Diebold Nixdorf Vynamic Security Suite (VSS) is affected up to version 3.3.0 SR4. The vulnerability arises because /etc/initab is not validated during Pre-Boot Authorization, enabling a physical attacker with access to the disk to manipulate contents. Remediation is to upgrade to version 3.3.0 SR...

6.8CVSS6.5AI score0.00409EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/08 12:0 a.m.4 views

PT-2024-12022 · Diebold Nixdorf · Diebold Nixdorf Vynamic Security Suite

Name of the Vulnerable Software and Affected Versions: Diebold Nixdorf Vynamic Security Suite versions prior to 3.3.0 SR10 Description: The issue concerns the failure to validate the /etc/mtab file during the Pre-Boot Authorization PBA process. This can be exploited by a physical attacker who can...

6.8CVSS6.6AI score0.00263EPSS
Exploits1References5
CVE
CVE
added 2024/08/08 12:0 a.m.69 views

CVE-2023-24063

CVE-2023-24063 affects Diebold Nixdorf Vynamic Security Suite (VSS) versions prior to 3.3.0 SR10. The root issue is failure to validate /etc/mtab during Pre-Boot Authorization (PBA), enabling a physical attacker who can alter the system disk contents to bypass or defeat the authorization process....

6.8CVSS6.5AI score0.00263EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/09/11 7:15 p.m.4 views

CVE-2020-19559

An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...

9.8CVSS6.1AI score0.01192EPSS
Exploits1References1
NVD
NVD
added 2023/09/11 7:15 p.m.17 views

CVE-2020-19559

An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...

9.8CVSS9.6AI score0.01192EPSS
Exploits1References1
Prion
Prion
added 2023/09/11 7:15 p.m.22 views

Code injection

An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...

7.5CVSS9.5AI score0.01192EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/11 12:0 a.m.12 views

CVE-2020-19559

An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...

7.9AI score0.01192EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/09/11 12:0 a.m.23 views

CVE-2020-19559

An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...

9.6AI score0.01192EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/09/11 12:0 a.m.6 views

PT-2023-11524 · Diebold · Diebold Aglis Xfs For Opteva

Name of the Vulnerable Software and Affected Versions: Diebold Aglis XFS for Opteva version 4.1.61.1 Description: The issue allows a remote attacker to execute arbitrary code by sending a crafted payload to the ResolveMethod parameter. Recommendations: For Diebold Aglis XFS for Opteva version...

9.8CVSS9.7AI score0.01192EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/09/11 12:0 a.m.4 views

Diebold Agilis XFS Code Issue Vulnerability

Diebold Agilis XFS is a software product designed to support the interaction and communication of automated banking devices. A security vulnerability exists in Diebold Aglis XFS for Opteva version v.4.1.61.1, which originated from a vulnerability that allows a remote attacker to execute arbitrary...

9.8CVSS7.7AI score0.01192EPSS
Exploits1References2
CVE
CVE
added 2023/09/11 12:0 a.m.45 views

CVE-2020-19559

CVE-2020-19559 affects Diebold Aglis XFS for Opteva v4.1.61.1. The issue allows a remote attacker to execute arbitrary code by sending a crafted payload to the ResolveMethod() parameter. At least one connected source documents the vulnerability as a remote code execution in the Diebold Opteva XFS...

9.8CVSS9.5AI score0.01192EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2023/08/08 8:15 p.m.45 views

CVE-2023-36344

An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...

7.8CVSS7.8AI score0.00395EPSS
Exploits2References2
OSV
OSV
added 2023/08/08 8:15 p.m.2 views

CVE-2023-36344

An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...

7.8CVSS6.1AI score0.00395EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2023/08/08 8:15 p.m.4 views

CVE-2023-36344

An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...

7.8CVSS7.5AI score0.00395EPSS
Exploits2References3
Prion
Prion
added 2023/08/08 8:15 p.m.25 views

Design/Logic Flaw

An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...

4.4CVSS7.8AI score0.00395EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/08 12:0 a.m.13 views

CVE-2023-36344

An issue in Diebold Nixdorf Vynamic View Console v.5.3.1 and before allows a local attacker to execute arbitrary code via not restricting the search path for required DLLs and not verifying the signature...

7.9AI score0.00395EPSS
Exploits2References2
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.25 views

Diebold Nixdorf Vynamic View Console Code Issue Vulnerability

The Diebold Nixdorf Vynamic View Console is a system from Diebold Nixdorf that allows remote changes to all PC-based devices via Intel Active Management Technology AMT BIOS management. A security vulnerability exists in Diebold Nixdorf Vynamic View Console v.5.3.1 and prior versions, which...

7.8CVSS7.5AI score0.00395EPSS
Exploits2References4
CVE
CVE
added 2023/08/08 12:0 a.m.56 views

CVE-2023-36344

Diebold Nixdorf Vynamic View Console (v5.3.1 and earlier) is affected by a DLL search path hijacking issue that allows a local attacker to run arbitrary code by loading unsigned DLLs. The vulnerability affects multiple DLLs (e.g., VERSION.DLL, WINMM.DLL, WSOCK32.DLL, MSVCR100.DLL, USERENV.DLL, an...

7.8CVSS7.8AI score0.00395EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder