CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Fedora•added 2024/03/07 10:33 p.m.•25 views

[SECURITY] Fedora 40 Update: imagej-1.54h-4.fc40

ImageJ is a public domain Java image processing program. It can display, edit, analyze a wide variety of image data, including image sequences. Imagej can be used for quantitative analysis of engineering and scientific image data...

8.8CVSS9.1AI score0.02557EPSS

Exploits3

Tenable Nessus•added 2023/10/03 12:0 a.m.•14 views

Sprecher Automation SPRECON-E Improper Neutralization of Special Elements used in a Command (CVE-2020-11496)

7.2CVSS6.8AI score0.00322EPSS

Exploits0References2

NCSC•added 2022/10/19 12:0 a.m.•39 views

Vulnerabilities fixed in Oracle Supply Chain Products Suite

Vulnerabilities have been fixed in Oracle Supply Chain Products Suite. The vulnerabilities allow a malicious party to perform attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Remote code execution User rights Access to sensitive data Access to...

9.8CVSS7.5AI score0.71653EPSS

Exploits7

Cvelist•added 2022/08/24 3:15 p.m.•23 views

CVE-2022-34838 ABB Ability TM Operations Data Management Zenon Zenon Log Server file access control

Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. Once such engineering data is used the data visualization will be altered for the end user...

8.1CVSS8.5AI score0.00146EPSS

NCSC•added 2022/07/20 12:0 a.m.•10 views

Vulnerabilities fixed in Oracle Supply Chain products

Oracle has fixed vulnerabilities in several products belonging to the Oracle Supply Chain Suite: Agile Engineering Data Management Agile PLM Agile Product Lifecycle Management for Process Autovue for Agile Product Lifecycle Management Product Lifecycle Analytics Transportation Management A...

9.8CVSS8.4AI score0.99298EPSS

Exploits38

NCSC•added 2021/07/21 12:0 a.m.•13 views

Vulnerabilities fixed in Oracle Supply Chain Products Suite

Oracle has fixed vulnerabilities in the following products within the Supply Chain Products Suite: Transportation Management Agile Engineering Data Management Agile PLM Framework An unauthenticated malicious person could potentially exploit them to cause a denial-of-service. In addition the...

7.8CVSS8.3AI score0.87553EPSS

Exploits1

BDU FSTEC•added 2021/06/09 12:0 a.m.•4 views

The vulnerability of the central module for managing engineering data and the product’s life cycle in the “LOCMAN Client” system, a system for managing engineering data and the product’s life cycle, arises from the possibility of unlimited loading of dangerous type files, allowing attackers to execute arbitrary codes.

The vulnerability of the central module responsible for managing engineering data and the product’s lifecycle in the LOCsMAN Engineering Data and Product Lifecycle Management system is related to the possibility of unlimited loading of dangerous files. Exploiting this vulnerability could allow...

BDU FSTEC•added 2021/06/09 12:0 a.m.•2 views

The vulnerability of the update display module of the engineering data management system and the product lifecycle management system LOCMAN, related to unlimited loading of dangerous type files, allows a perpetrator to execute arbitrary code.

The vulnerability of the update display module of the engineering data management and product lifecycle management system LOCsMAN:PLM is related to the unlimited loading of dangerous files. Exploiting this vulnerability allows an attacker to execute arbitrary code by replacing the dll library e.g...

BDU FSTEC•added 2021/06/09 12:0 a.m.•5 views

The vulnerability of the application loading optimization service for servers in enterprises with a large number of users lies in the “Balancing Service” of the Engineering Data Management and Product Lifecycle system LOCMAN:PLM. This service allows unauthorized users to execute arbitrary code due to the unlimited loading of dangerous files.

The vulnerability of the application loading optimization service for servers in enterprises with a large number of users is related to unlimited loading of dangerous files. Exploiting this vulnerability allows an attacker to execute arbitrary code by replacing DLL libraries such as DNSAPI.dll in...

BDU FSTEC•added 2021/06/09 12:0 a.m.•5 views

The vulnerability of the module for creating, editing, and saving diagrams of typical and business processes, determining process properties, creating lists of associated objects “LOCMAN WorkFlow Designer” of the engineering data management system, and the product lifecycle management system LOCMAN:PLM. This vulnerability is related to the unlimited loading of dangerous type files, allowing attackers to execute arbitrary code.

The vulnerability of the module responsible for creating, editing, and saving diagrams of typical and working business processes, as well as defining properties of these processes, and creating lists of associated objects in the “LOZMAN Workflow Designer” system for managing engineering data and...

OSV•added 2020/10/19 7:15 p.m.•1 views

CVE-2020-11496

6.7CVSS5.9AI score0.00322EPSS

NVD•added 2020/10/19 7:15 p.m.•9 views

CVE-2020-11496

7.2CVSS0.00322EPSS

Cvelist•added 2020/10/19 6:52 p.m.•9 views

CVE-2020-11496

6.6AI score0.00322EPSS

OSV•added 2020/05/20 3:15 a.m.•1 views

CVE-2020-12034

Products that use EDS Subsystem: Version 28.0.1 and prior FactoryTalk Linx software Previously called RSLinx Enterprise: Versions 6.00, 6.10, and 6.11, RSLinx Classic: Version 4.11.00 and prior, RSNetWorx software: Version 28.00.00 and prior, Studio 5000 Logix Designer software: Version 32 and...

8.2CVSS7.3AI score0.01263EPSS