Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-27868

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.02789EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/03/04 12:0 a.m.5 views

The vulnerability of the GOOSE (Generic Object-Oriented Substation Event) protocol implementation in Schneider Electric Easergy P3 micro-programmed devices for relay protection and control allows a perpetrator to execute arbitrary code or cause malfunctions during maintenance.

The vulnerability of the GOOSE Generic Object-Oriented Substation Event protocol implementation in Schneider Electric Easergy P3 microprogrammable devices for relay protection and control systems lies in the copying of buffers without checking the size of input data. Exploiting this vulnerability...

8.8CVSS8.3AI score0.02789EPSS
Exploits0References4Affected Software1
ICS
ICS
added 2022/02/24 12:0 a.m.109 views

Schneider Electric Easergy P5 and P3

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Low attack complexity Vendor: Schneider Electric Equipment: Easergy P5 and P3 --------- Begin Update A Part 1 of 4 --------- Vulnerabilities: Use of Hard-Coded Credentials, Classic Buffer Overflow, and Improper Input Validation --------- End Update A...

8.8CVSS8.7AI score0.02822EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/02/04 11:15 p.m.4 views

CVE-2022-22725

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be...

8.8CVSS8.1AI score0.02789EPSS
Exploits0References2
OSV
OSV
added 2022/02/04 11:15 p.m.2 views

CVE-2022-22725

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be...

8.8CVSS8.2AI score
Exploits0References1
NVD
NVD
added 2022/02/04 11:15 p.m.17 views

CVE-2022-22725

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be...

8.8CVSS0.02789EPSS
Exploits0References1
Prion
Prion
added 2022/02/04 11:15 p.m.14 views

Buffer overflow

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be...

8.3CVSS8.9AI score0.02789EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/02/04 10:29 p.m.19 views

CVE-2022-22725

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be...

9.1AI score0.02789EPSS
Exploits0References1
CVE
CVE
added 2022/02/04 10:29 p.m.79 views

CVE-2022-22725

CVE-2022-22725 concerns Schneider Electric Easergy P3 (and P5 in the same advisory family) with a buffer overflow in a buffer copy without checking input size. In Easergy P3, all versions prior to V30.205 are affected; in P5, related issue CVE-2022-22723 affects versions prior to V30.205/P1. Heat...

8.8CVSS8.9AI score0.02789EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder