Lucene search
K

3858 matches found

Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.5 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.02878EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.9 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.00298EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.9 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.00298EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.12 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.00298EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.7 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.02878EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.4 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.02878EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.4 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.00298EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.6 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.02878EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.9 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.02878EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/11/08 12:0 a.m.7 views

Delta Electronics DIAScreen DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.00298EPSS
Exploits0References1
CNVD
CNVD
added 2024/11/06 12:0 a.m.7 views

SQL Injection Vulnerability in Founder Unbridled All-Media News Production System of Beijing Beifang Founder Electronics Co. Ltd (CNVD-2024-47776)

Founder's Enjoy All-Media News Production System is an intelligent converged media business platform centered on content assets. A SQL injection vulnerability exists in the Founder Enjoy All-Media News Production System of Beijing Beifang Founder Electronics Co., Ltd, which can be exploited by...

7.5AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2024/11/06 12:0 a.m.12 views

Delta Electronics InfraSuite Device Master _gExtraInfo Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics InfraSuite Device Master. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the gExtraInfo attribute. The issue results...

9.8CVSS7.4AI score0.177EPSS
Exploits0References1
CNVD
CNVD
added 2024/11/05 12:0 a.m.3 views

TOTOLINK LR350 License Issue Vulnerability

TOTOLINK LR350 is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK LR350 suffers from an authorization issue vulnerability that stems from an input value of 1 for the parameter authCode in /formLoginAuth.htm, which can lead to authorization bypass. No detailed vulnerability...

9.1CVSS5.2AI score0.01532EPSS
Exploits1References1
NVD
NVD
added 2024/10/30 6:15 p.m.10 views

CVE-2024-10456

Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets the Device-Gateway, which could allow deserialization of arbitrary .NET objects prior to authentication...

9.8CVSS0.177EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/30 6:4 p.m.17 views

CVE-2024-10456 Delta Electronics InfraSuite Device Master Deserialization of Untrusted Data

Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets the Device-Gateway, which could allow deserialization of arbitrary .NET objects prior to authentication...

9.8CVSS7AI score0.177EPSS
Exploits0References1
CVE
CVE
added 2024/10/30 6:4 p.m.42 views

CVE-2024-10456

Delta Electronics InfraSuite Device Master is affected in versions prior to 1.0.12 by a deserialization vulnerability in the Device-Gateway that can deserialize arbitrary .NET objects before authentication, enabling remote code execution. Affected product: InfraSuite Device Master (1.0.12 and ear...

9.8CVSS9.6AI score0.177EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/30 6:4 p.m.65 views

CVE-2024-10456 Delta Electronics InfraSuite Device Master Deserialization of Untrusted Data

Delta Electronics InfraSuite Device Master versions prior to 1.0.12 are affected by a deserialization vulnerability that targets the Device-Gateway, which could allow deserialization of arbitrary .NET objects prior to authentication...

9.8CVSS0.177EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/30 12:0 a.m.5 views

PT-2024-16296 · Delta Electronics · Infrasuite Device Master

Name of the Vulnerable Software and Affected Versions: Delta Electronics InfraSuite Device Master versions prior to 1.0.12 Description: The issue is a deserialization vulnerability that targets the Device-Gateway, allowing deserialization of arbitrary .NET objects prior to authentication. This...

9.8CVSS7.9AI score0.177EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/10/30 12:0 a.m.5 views

Delta Electronics InfraSuite Device Master 代码问题漏洞

Delta Electronics InfraSuite Device Master is a device used to simplify and automate the monitoring of critical devices from Delta Electronics China. A code issue vulnerability exists in Delta Electronics InfraSuite Device Master version 1.0.12 and earlier, which stems from being affected by a...

9.8CVSS7.9AI score0.177EPSS
Exploits0References1
CISA
CISA
added 2024/10/29 12:0 p.m.5 views

CISA Releases Three Industrial Control Systems Advisories

CISA released three Industrial Control Systems ICS advisories on October 29, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-303-01 Siemens InterMesh Subscriber Devices ICSA-24-303-02 Solar-Log Base 15...

7AI score
Exploits0References3
Rows per page
Query Builder