CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3851 matches found

CNNVD•added 2022/10/26 12:0 a.m.•5 views

Delta Electronics InfraSuite Device Master 路径遍历漏洞

Delta Electronics InfraSuite Device Master is used to simplify and automate the monitoring of critical equipment by Delta Electronics of Taiwan, China. A path traversal vulnerability exists in Delta Electronics InfraSuite Device Master 00.00.01a and prior versions, which stems from incorrectly...

9.8CVSS8.8AI score0.24945EPSS

Exploits0References3

CNNVD•added 2022/10/26 12:0 a.m.•3 views

Delta Electronics DIAEnergie SQL注入漏洞

Delta Electronics DIAEnergie is an industrial energy management system for monitoring and analyzing energy consumption in real time, calculating energy consumption and load characteristics, optimizing equipment performance, improving production processes and maximizing energy efficiency. A securi...

9.8CVSS8.5AI score0.00696EPSS

Exploits0References2

Cvelist•added 2022/10/26 12:0 a.m.•28 views

CVE-2022-43774

The HandlerPagePKID class in Delta Electronics DIAEnergy v1.9 contains a SQL Injection flaw that could allow an attacker to gain code execution on a remote system...

10AI score0.00696EPSS

Exploits0References1

Positive Technologies•added 2022/10/26 12:0 a.m.•5 views

PT-2022-27028 · Delta Electronics · Diaenergy

Name of the Vulnerable Software and Affected Versions: Delta Electronics DIAEnergy version 1.9 Description: The issue concerns a SQL Injection flaw in the HandlerPageP KID class. This flaw could potentially allow an attacker to gain code execution on a remote system. Recommendations: For Delta...

9.8CVSS9.7AI score0.00696EPSS

Exploits0References3

Positive Technologies•added 2022/10/26 12:0 a.m.•6 views

PT-2022-27029 · Delta Electronics · Diaenergy

Name of the Vulnerable Software and Affected Versions: Delta Electronics DIAEnergy version 1.9 Description: The issue is related to a SQL Injection flaw in the HICT Loop class. This flaw could potentially allow an attacker to gain code execution on a remote system. Recommendations: For Delta...

9.8CVSS9.7AI score0.20591EPSS

Exploits0References3

CISA•added 2022/10/25 12:0 a.m.•13 views

CISA Releases Eight Industrial Control Systems Advisories

CISA has released eight 8 Industrial Control Systems ICS advisories on October 25, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for...

0.8AI score

Exploits0References8

CNNVD•added 2022/10/25 12:0 a.m.•4 views

Delta Electronics InfraSuite Device Master 访问控制错误漏洞

Delta Electronics InfraSuite Device Master is used to simplify and automate critical device monitoring by Delta Electronics of Taiwan, China. An access control error vulnerability exists in versions prior to Delta Electronics InfraSuite Device Master 00.00.01a, which stems from a lack of proper...

9.8CVSS7.4AI score0.0064EPSS

Exploits0References4

ICS•added 2022/10/25 12:0 a.m.•55 views

Delta Electronics InfraSuite Device Master

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: InfraSuite Device Master Vulnerabilities: Deserialization of Untrusted Data, Path Traversal, Missing Authentication for Critical Function 2. UPDATE OR REPOSTED INFORMATION...

9.8CVSS10AI score0.24945EPSS

Exploits0References5

NVD•added 2022/10/19 11:15 a.m.•18 views

CVE-2022-25718

Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

9.8CVSS0.00409EPSS

Exploits0References1

NVD•added 2022/10/19 11:15 a.m.•17 views

CVE-2022-25663

Possible buffer overflow due to lack of buffer length check during management frame Rx handling lead to denial of service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity...

5.5CVSS0.00109EPSS

Exploits0References1

NVD•added 2022/10/19 11:15 a.m.•20 views

CVE-2022-25736

Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &...

7.5CVSS0.00687EPSS

Exploits0References1

NVD•added 2022/10/19 11:15 a.m.•13 views

CVE-2022-25749

Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon...

7.5CVSS0.00392EPSS

Exploits0References1

Prion•added 2022/10/19 11:15 a.m.•17 views

Memory corruption

Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,...

7.5CVSS9.5AI score0.00417EPSS

Exploits0References1

Prion•added 2022/10/19 11:15 a.m.•23 views

Input validation

7.5CVSS9.4AI score0.00409EPSS

Exploits0References1

Prion•added 2022/10/19 11:15 a.m.•23 views

Buffer overflow

5CVSS7.7AI score0.00392EPSS

Exploits0References1

CVE•added 2022/10/19 12:0 a.m.•58 views

CVE-2022-25736

CVE-2022-25736 describes a denial-of-service vulnerability in Qualcomm Snapdragon WLAN, caused by an out-of-bounds read while processing a VHT action frame. The issue affects multiple Snapdragon product families (Auto, Compute, Connectivity, Consumer Electronics Connectivity, D, IOT, Mobile, Wear...

7.5CVSS7.5AI score0.00687EPSS

Exploits0References1Affected Software1

CVE•added 2022/10/19 12:0 a.m.•66 views

CVE-2022-25719

CVE-2022-25719 affects Qualcomm Snapdragon WLAN components across multiple product lines (Auto, Connectivity, CE Connectivity, IOT, Industrial IOT, Mobile, etc.). Root cause: improper length checking during the authentication handshake, leading to information disclosure with high confidentiality ...

9.1CVSS9AI score0.0046EPSS

Exploits0References1Affected Software1

CVE•added 2022/10/19 12:0 a.m.•68 views

CVE-2022-25749

The CVE-2022-25749 entry describes a Transient Denial-of-Service due to a buffer over-read while parsing MDNS frames in Qualcomm Snapdragon WLAN components (across Snapdragon Auto/Compute/Connectivity, etc.). The root cause is a buffer over-read during MDNS frame parsing; impact is DoS with high ...

7.5CVSS7.7AI score0.00392EPSS

Exploits0References1Affected Software1

CVE•added 2022/10/19 12:0 a.m.•95 views

CVE-2022-25718

CVE-2022-25718 is a Qualcomm WLAN cryptographic issue described across Snapdragon lineups (Auto, Connectivity, CE/IoT, Industrial IoT, etc.) where an improper check on the return value during the authentication handshake is cited as the root cause. The vulnerability affects Qualcomm closed‑source...

9.8CVSS9.4AI score0.00409EPSS

Exploits0References1Affected Software1

CVE•added 2022/10/19 12:0 a.m.•121 views

CVE-2022-25720

CVE-2022-25720 describes a memory corruption vulnerability in Qualcomm WLAN firmware affecting Snapdragon lines (Auto/Compute/Connectivity/Consumer Electronics Connectivity/Consumer IOT/Industrial IOT/Mobile/Voice & Music/Wearables). The issue stems from out-of-bounds array access during connect/...

9.8CVSS9.4AI score0.00417EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by