CISA Adds 10 New Known Actively Exploited Vulnerabilities to its Catalog

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Friday added 10 new actively exploited vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, including a high-severity security flaw affecting industrial automation software from Delta Electronics. The issue, tracked ...

CISA Releases 12 Industrial Control Systems Advisories

CISA has released 12 Industrial Control Systems ICS advisories on August 30, 2022. These advisories provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...

VulnCheck KEV: CVE-2021-38406

Delta Electronics DOPSoft 2 lacks proper validation of user-supplied data when parsing specific project files improper input validation resulting in an out-of-bounds write that allows for code execution...

Delta Electronics DOPSoft 2 Improper Input Validation Vulnerability

Delta Electronics DOPSoft 2 lacks proper validation of user-supplied data when parsing specific project files improper input validation resulting in an out-of-bounds write that allows for code execution...

Delta Electronics Industrial Automation DIALink 信任管理问题漏洞

Delta Electronics Industrial Automation DIALink is an industrial automation IoT device from Delta Electronics Taiwan, China. The Delta Electronics Industrial Automation DIALink suffers from a security vulnerability that stems from the susceptibility of the affected product to the use of hard-code...

Delta Industrial Automation DIALink

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Delta Electronics Equipment: Delta Industrial Automation DIALink Vulnerability: Use of Hard-coded Cryptographic Key 2. RISK EVALUATION Successful exploitation of this vulnerability could result in the...

Delta Electronics Delta Robot Automation Studio 代码问题漏洞

Delta Electronics Delta Robot Automation Studio DRAS is industrial robot control software from Delta Electronics, a Taiwan, China-based company. A code issue vulnerability exists in Delta Electronics Delta Robot Automation Studio DRAS, which arises from the possibility that XML documents processe...

Delta Industrial Automation DRAS

1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low attack complexity Vendor: Delta Electronics Equipment: Delta Robot Automation Studio DRAS Vulnerability: Improper Restriction of XML External Entity Reference. 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker...

TOTOLINK EX300_V2 suffers from a command injection vulnerability (CNVD-2022-60974)

EX300V2 is a repeater from Gion Electronics Shenzhen Co. TOTOLINK EX300V2 suffers from a command injection vulnerability that can be exploited by an attacker to execute arbitrary commands...

Unauthorized Connection to Telnet Service Vulnerability in TOTOLINK T8

TOTOLINK T8 is a wireless router from China's Gion Electronics TOTOLINK. The TOTOLINK T8 suffers from an unauthorized connection to Telnet service vulnerability, which can be exploited by an attacker to initiate unauthorized telnet and gain control of the server...

marlinelectronics.co.uk Cross Site Scripting vulnerability OBB-2751977

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

TOTOLINK T6 FUN_004133c4 function stack overflow vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.TOTOLINK T6 version V4.1.9cu.5179B20201015 is vulnerable to a stack overflow vulnerability, which originates from the desc, week, sTime, eTime parameters in the FUN004133c4 function for The input data is not checked f...

TOTOLINK T6 FUN_0041621c Function Stack Overflow Vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.A stack overflow vulnerability exists in TOTOLINK T6 V4.1.9cu.5179B20201015, which stems from the cloneMac parameter in the FUN0041621c function that does not check its length for input data. A remote attacker can...

TOTOLINK T6 FUN_00413f80 Function Stack Overflow Vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK. version V4.1.9cu.5179B20201015 of TOTOLINK T6 suffers from a buffer overflow vulnerability, which stems from the password parameter in the FUN00413f80 function not checking its length for input data. A remote attacke...

TOTOLINK T6 FUN_00412ef4 function stack overflow vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.A stack overflow vulnerability exists in TOTOLINK T6 V4.1.9cu.5179B20201015 version, which stems from the desc parameter in the FUN00412ef4 function not checking its length for input data. A remote attacker can exploi...

TOTOLINK T6 FUN_0041880c Function Stack Overflow Vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.A stack overflow vulnerability exists in TOTOLINK T6 V4.1.9cu.5179B20201015 version, which stems from the desc parameter in the FUN0041880c function not checking its length for input data. A remote attacker can exploi...

TOTOLINK T6 FUN_00418540 Function Stack Overflow Vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.A stack overflow vulnerability exists in TOTOLINK T6 V4.1.9cu.5179B20201015 version, which stems from the url parameter in the FUN00418540 function not checking its length for input data. A remote attacker can exploit...

TOTOLINK T6 FUN_00413be4 function stack overflow vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.A stack overflow vulnerability exists in TOTOLINK T6 V4.1.9cu.5179B20201015 version, which stems from the desc parameter in the FUN00413be4 function not checking its length for input data. A remote attacker can exploi...

TOTOLINK T6 FUN_0041af40 Function Stack Overflow Vulnerability

TOTOLINK T6 is a wireless dual-band router from China Gion Electronics TOTOLINK.A stack overflow vulnerability exists in TOTOLINK T6 V4.1.9cu.5179B20201015 version, which stems from the cloneMac parameter in the FUN0041af40 function not checking its length for input data. An attacker could exploi...

teletek-electronics.com Cross Site Scripting vulnerability OBB-2721121

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...