Lucene search
+L

22 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-45070

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01285EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2024/12/16 12:0 a.m.4 views

The vulnerability of the “edgserver” service in the microprogramming software for multifunctional wireless access points Advantech EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO allows a hacker to execute arbitrary commands with root privileges.

The vulnerability of the “edgserver” service in the microprogramming software for multifunctional wireless access points Advantech EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO exists due to the lack of measures taken to neutralize the special elements used in the operating system commands...

10CVSS8.3AI score0.01485EPSS
Exploits0References3Affected Software3
bdu_fstec
bdu_fstec
added 2024/12/16 12:0 a.m.5 views

The vulnerability of the “edgserver” service in the microprogramming software for multifunctional wireless access points of Advantech models EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO allows a hacker to execute arbitrary commands with root privileges.

The vulnerability of the “edgserver” service in the microprogramming-based wireless access points of Advantech EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO models exists due to the failure to take measures to neutralize the special elements used in the operating system commands. Exploiting...

10CVSS5.8AI score0.01285EPSS
Exploits0References3Affected Software3
bdu_fstec
bdu_fstec
added 2024/12/16 12:0 a.m.8 views

The vulnerability of the “edgserver” service in the microprogramming software for multifunctional wireless access points of Advantech models EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO allows a hacker to execute arbitrary commands with root privileges.

The vulnerability of the “edgserver” service in the microprogramming-based wireless access points of Advantech EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO models exists due to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting th...

10CVSS5.8AI score0.01285EPSS
Exploits0References3Affected Software3
bdu_fstec
bdu_fstec
added 2024/12/16 12:0 a.m.6 views

The vulnerability of the “edgserver” service in the microprogramming software of the multifunctional wireless access points Advantech EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the “edgserver” service in the microprogramming software for multifunctional wireless access points of Advantech models EKI-6333AC-2G, EKI-6333AC-2GD, and EKI-6333AC-1GPO exists due to the failure to take measures to neutralize special elements used in the operating system...

10CVSS8AI score0.01026EPSS
Exploits0References3Affected Software3
osv
osv
added 2024/11/26 11:22 a.m.4 views

CVE-2024-50374

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote...

9.8CVSS7.4AI score0.01485EPSS
Exploits0References1
osv
osv
added 2024/11/26 11:22 a.m.4 views

CVE-2024-50375

A CWE-306 "Missing Authentication for Critical Function" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote unauthenticated users capable of interacting...

9.8CVSS7.5AI score0.01026EPSS
Exploits0References1
nvd
nvd
added 2024/11/26 11:22 a.m.20 views

CVE-2024-50375

A CWE-306 "Missing Authentication for Critical Function" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote unauthenticated users capable of interacting...

9.8CVSS0.01026EPSS
Exploits0References1
nvd
nvd
added 2024/11/26 11:22 a.m.27 views

CVE-2024-50372

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote...

9.8CVSS0.01285EPSS
Exploits0References1
osv
osv
added 2024/11/26 11:22 a.m.6 views

CVE-2024-50371

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote...

9.8CVSS5.9AI score0.01285EPSS
Exploits0References1
nvd
nvd
added 2024/11/26 11:22 a.m.17 views

CVE-2024-50371

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote...

9.8CVSS0.01285EPSS
Exploits0References1
osv
osv
added 2024/11/26 11:22 a.m.7 views

CVE-2024-50372

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote...

9.8CVSS5.9AI score0.01285EPSS
Exploits0References1
osv
osv
added 2024/11/26 11:22 a.m.4 views

CVE-2024-50370

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote...

9.8CVSS5.9AI score0.01485EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/11/26 10:57 a.m.23 views

CVE-2024-50375

A CWE-306 "Missing Authentication for Critical Function" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote unauthenticated users capable of interacting...

9.8CVSS7.3AI score0.01026EPSS
Exploits0References1
cvelist
cvelist
added 2024/11/26 10:56 a.m.15 views

CVE-2024-50374

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The vulnerability can be exploited by remote...

9.8CVSS0.01485EPSS
Exploits0References1
cve
cve
added 2024/11/26 10:56 a.m.76 views

CVE-2024-50373

CVE-2024-50373 affects Advantech EKI-6333AC-2G (≤1.6.3), EKI-6333AC-2GD (≤1.6.3) and EKI-6333AC-1GPO (≤1.2.1). The root cause is improper neutralization of special elements in OS commands during the restore_config_from_utility operation in the edgserver service, enabling remote unauthenticated at...

9.8CVSS10AI score0.01285EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2024/11/26 12:0 a.m.9 views

PT-2024-9474 · Advantech · Advantech Eki-6333Ac-2G +1

Name of the Vulnerable Software and Affected Versions: Advantech EKI-6333AC-2G versions 1.6.3 and earlier Advantech EKI-6333AC-2GD versions 1.6.3 and earlier Advantech EKI-6333AC-1GPO versions 1.2.1 and earlier Description: The issue exists due to the lack of neutralization of special elements us...

10CVSS8.5AI score0.01485EPSS
Exploits0References11
ptsecurity
ptsecurity
added 2024/11/26 12:0 a.m.6 views

PT-2024-9478 · Advantech · Advantech Eki-6333Ac-2G +1

Name of the Vulnerable Software and Affected Versions: Advantech EKI-6333AC-2G versions 1.6.3 and earlier Advantech EKI-6333AC-2GD versions 1.6.3 and earlier Advantech EKI-6333AC-1GPO versions 1.2.1 and earlier Description: A missing authentication issue for critical functions was discovered,...

10CVSS7.4AI score0.01026EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2024/11/26 12:0 a.m.6 views

PT-2024-9477 · Advantech · Advantech Eki-6333Ac-2G +1

Name of the Vulnerable Software and Affected Versions: Advantech EKI-6333AC-2G versions 1.6.3 and earlier Advantech EKI-6333AC-2GD versions 1.6.3 and earlier Advantech EKI-6333AC-1GPO versions 1.2.1 and earlier Description: The issue exists due to the lack of neutralization of special elements us...

9.8CVSS8.1AI score0.01285EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2024/11/26 12:0 a.m.5 views

PT-2024-9475 · Advantech · Advantech Eki-6333Ac-2G +1

Name of the Vulnerable Software and Affected Versions: Advantech EKI-6333AC-2G versions 1.6.3 and earlier Advantech EKI-6333AC-2GD versions 1.6.3 and earlier Advantech EKI-6333AC-1GPO versions 1.2.1 and earlier Description: A vulnerability was discovered in the "edgserver" service of Advantech's...

9.8CVSS8AI score0.01285EPSS
Exploits0References6
Rows per page
Query Builder