71 matches found
CVE-2020-10922
This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of C-MORE HMI EA9 Firmware version 6.52 touch screen panels. Authentication is not required to exploit this vulnerability. The specific flaw exists within the EA-HTTP.exe process. The issu...
EUVD-2022-34311
Malicious code in bioql PyPI...
EUVD-2025-1945
Malicious code in bioql PyPI...
EUVD-2024-22486
Malicious code in bioql PyPI...
EUVD-2024-22485
Malicious code in bioql PyPI...
CVE-2020-6969
It is possible to unmask credentials and other sensitive information on “unprotected” project files, which may allow an attacker to remotely access the C-More Touch Panels EA9 series: firmware versions prior to 6.53 and manipulate system configurations...
The vulnerability of the C-more Programming Software for programming and configuring sensor panels (EA9 Series) lies in buffer overflows in the stack, allowing an attacker to execute arbitrary code.
The vulnerability of the C-more Programming Software for programming and configuring sensor panels EA9 Series is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code using specially created EAP9 format files...
CVE-2025-0960
AutomationDirect C-more EA9 HMI contains a function with bounds checks that can be skipped, which could result in an attacker abusing the function to cause a denial-of-service condition or achieving remote code execution on the affected device...
CVE-2025-0960
The CVE-2025-0960 entry affects AutomationDirect C-more EA9 HMI. A function contains bounds checks that can be skipped, enabling an attacker to cause a denial-of-service or potentially achieve remote code execution on the affected device. The issue is network-exploitable with high impact to confi...
CVE-2024-11609
AutomationDirect C-More EA9 EAP9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability ...
CVE-2024-11611
AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability in that th...
CVE-2024-11611
AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability in that th...
CVE-2024-11611 AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability
AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability in that th...
CVE-2024-11609 AutomationDirect C-More EA9 EAP9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
AutomationDirect C-More EA9 EAP9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability ...
CVE-2024-11609 AutomationDirect C-More EA9 EAP9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
AutomationDirect C-More EA9 EAP9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability ...
AutomationDirect C-More EA9 Programming Software 缓冲区错误漏洞
AutomationDirect C-More EA9 Programming Software is a programming software from AutomationDirect, Inc. AutomationDirect C-More EA9 Programming Software suffers from a buffer error vulnerability that stems from a lack of proper validation of user-supplied data when parsing an EAP9 file, resulting ...
The vulnerability of the C-more Programming Software for programming and configuring sensor panels (EA9 Series) arises from the execution of operations beyond the buffer boundaries in memory. This allows a hacker to execute arbitrary code.
The vulnerability of the C-more Programming Software EA9 Series for programming and configuring sensor panels is related to the execution of operations outside the buffer in memory when processing EAP9 format files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
AutomationDirect C-More EA9 EAP9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
The vulnerability of the AutomationDirect C-MORE EA9 HMI software’s microprogramming system, related to unencrypted storage of critical information, allows a intruder to gain unauthorized access to protected data.
The vulnerability of the Microprogrammed Control Panel Software of AutomationDirect C-MORE EA9 HMI relates to the unencrypted storage of critical information. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information...
The vulnerability of the AutomationDirect C-MORE EA9 HMI software-related to incorrect restrictions on path names in the restricted access catalog allows a intruder to trigger a service failure.
The vulnerability of the Microprogrammed Control Panel Software of AutomationDirect C-MORE EA9 HMI is related to incorrect restrictions on the path name to the restricted access catalog. Exploiting this vulnerability could allow an attacker to trigger a service failure...