Lucene search
K

3858 matches found

Positive Technologies
Positive Technologies
added 2023/03/21 12:0 a.m.5 views

PT-2023-2320 · Delta Electronics · Infrasuite Device Master

Name of the Vulnerable Software and Affected Versions: Delta Electronics InfraSuite Device Master versions prior to 1.0.5 Description: The issue is related to errors in code generation, allowing an attacker to remotely execute arbitrary code by running Lua scripts. This could enable an attacker t...

9CVSS8.7AI score0.00835EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.3 views

The vulnerability of the DOPSoft software, designed for programming operator panels of Delta Electronics, arises from buffer overflows in the stack. This allows an attacker to execute arbitrary code.

The vulnerability of the DOPSoft software, designed for programming operator panels by Delta Electronics, is due to buffer overflow on the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially crafted file...

7.8CVSS8AI score0.00245EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.5 views

The vulnerability of the Malformed File Handler component in the DOPSoft software, which is used for programming operator panels of Delta Electronics, allows a hacker to execute arbitrary code.

The vulnerability of the Malformed File Handler component in DOPSoft software, which is used for programming operator panels by Delta Electronics, relates to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially...

7.8CVSS7.8AI score0.00241EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.5 views

The vulnerability of the lform/net_diagnose component of Delta Electronics’ DX-2100-L1-CN microprogramming system allows a hacker to execute arbitrary commands.

The vulnerability of the lform/netdiagnose component of Delta Electronics’ DX-2100-L1-CN router software exists due to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

8.3CVSS7.5AI score0.02354EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.5 views

The vulnerability of the web configuration service of Delta Electronics DX-2100-L1-CN microprogrammed router software allows a hacker to execute arbitrary code.

The vulnerability of the web configuration service of Delta Electronics DX-2100-L1-CN microprogrammed router software exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS8.1AI score0.01142EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2023/03/03 1:15 p.m.17 views

CVE-2022-45551

An issue discovered in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to escalate privileges via WGET command to the Network Diagnosis endpoint...

9.8CVSS9.7AI score0.25132EPSS
Exploits0References3
NVD
NVD
added 2023/03/03 1:15 p.m.17 views

CVE-2022-45552

An Insecure Permissions vulnerability in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to obtain sensitive information via SPI bus interface connected to pinout of the NAND flash memory...

7.5CVSS7.3AI score0.00846EPSS
Exploits1References3
Prion
Prion
added 2023/03/03 1:15 p.m.18 views

Command injection

An issue discovered in Shenzhen Zhibotong Electronics WBT WE1626 Router v 21.06.18 allows attacker to execute arbitrary commands via serial connection to the UART port...

7.5CVSS9.7AI score0.01498EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/03/03 12:0 a.m.31 views

CVE-2022-45551

An issue discovered in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to escalate privileges via WGET command to the Network Diagnosis endpoint...

9.9AI score0.25132EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/03/03 12:0 a.m.10 views

CVE-2022-45553

An issue discovered in Shenzhen Zhibotong Electronics WBT WE1626 Router v 21.06.18 allows attacker to execute arbitrary commands via serial connection to the UART port...

8AI score0.01498EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/03/03 12:0 a.m.8 views

CVE-2022-45552

An Insecure Permissions vulnerability in Shenzhen Zhiboton Electronics ZBT WE1626 Router v 21.06.18 allows attackers to obtain sensitive information via SPI bus interface connected to pinout of the NAND flash memory...

6.6AI score0.00846EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/03/03 12:0 a.m.20 views

CVE-2022-45553

An issue discovered in Shenzhen Zhibotong Electronics WBT WE1626 Router v 21.06.18 allows attacker to execute arbitrary commands via serial connection to the UART port...

9.9AI score0.01498EPSS
Exploits1References3
NVD
NVD
added 2023/02/27 2:15 p.m.15 views

CVE-2021-32302

Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter...

6.1CVSS5.9AI score0.00568EPSS
Exploits1References3
Prion
Prion
added 2023/02/27 2:15 p.m.13 views

Cross site scripting

Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter...

5.8CVSS5.9AI score0.00568EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/02/27 12:0 a.m.19 views

CVE-2021-32302

Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter...

6.1AI score0.00568EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/02/27 12:0 a.m.7 views

CVE-2021-32302

Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter...

6AI score0.00568EPSS
Exploits1References3
CVE
CVE
added 2023/02/27 12:0 a.m.52 views

CVE-2021-32302

CVE-2021-32302 affects IRZ Electronics RUH2 GSM router. The vulnerability is a Cross Site Scripting (XSS) flaw in the router’s vulnerability surface exposed via the Upload File parameter , enabling an attacker to obtain sensitive information. Root cause and details are corroborated by multiple so...

6.1CVSS5.9AI score0.00568EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/02/27 12:0 a.m.5 views

PT-2023-12164 · Irz Electronics · Irz Electronics Ruh2 Gsm Router

Name of the Vulnerable Software and Affected Versions: IRZ Electronics RUH2 GSM router affected versions not specified Description: The issue allows an attacker to obtain sensitive information via the Upload File parameter. This is a Cross Site Scripting vulnerability. Recommendations: At the...

6.1CVSS5.9AI score0.00568EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/02/17 12:0 a.m.5 views

Delta Electronics DIAEnergie 授权问题漏洞

Delta Electronics DIAEnergie is an industrial energy management system from Delta Electronics Taiwan, China used to monitor and analyze energy consumption in real time, calculate energy consumption and load characteristics, optimize equipment performance, improve production processes and maximize...

8.8CVSS8AI score0.00634EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/02/13 12:0 a.m.4 views

JTEKT ELECTRONICS Screen Creator Advance 缓冲区错误漏洞

JTEKT ELECTRONICS Screen Creator Advance is a screen development tool from JTEKT ELECTRONICS. A security vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and prior versions, which stems from an inability to validate data when processing file structure information...

7.8CVSS7.3AI score0.00334EPSS
Exploits0References4
Rows per page
Query Builder