78 matches found
DEBIAN-CVE-2024-6501
A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service...
CVE-2024-5684
An attacker with access to the private network the charger is connected to or local access to the Ethernet-Interface can exploit a faulty implementation of the JWT-library in order to bypass the password authentication to the web configuration interface and then has full access as the user would...
CVE-2024-5684 ID Charger Connect & Pro - JWT-Null-Algorithm
An attacker with access to the private network the charger is connected to or local access to the Ethernet-Interface can exploit a faulty implementation of the JWT-library in order to bypass the password authentication to the web configuration interface and then has full access as the user would...
SUSE CVE-2024-27432
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix PPE hanging issue A patch to resolve an issue was found in MediaTek's GPL-licensed SDK: In the mtkppestop function, the PPE scan mode is not disabled before disabling the PPE. This can potentially le...
PT-2024-3703 · Pccx26 +5 · Pccx26 +5
Name of the Vulnerable Software and Affected Versions: CPC80 Central Processing/Communication versions prior to V16.41 CPCI85 Central Processing/Communication versions prior to V5.30 CPCX26 Central Processing/Communication versions prior to V06.02 ETA4 Ethernet Interface IEC60870-5-104 versions...
CVE-2023-5324
A vulnerability has been found in eeroOS up to 6.16.4-11 and classified as critical. This vulnerability affects unknown code of the component Ethernet Interface. The manipulation leads to denial of service. The attack needs to be approached within the local network. The exploit has been disclosed...
CVE-2023-5324
A vulnerability has been found in eeroOS up to 6.16.4-11 and classified as critical. This vulnerability affects unknown code of the component Ethernet Interface. The manipulation leads to denial of service. The attack needs to be approached within the local network. The exploit has been disclosed...
Design/Logic Flaw
A vulnerability has been found in eeroOS up to 6.16.4-11 and classified as critical. This vulnerability affects unknown code of the component Ethernet Interface. The manipulation leads to denial of service. The attack needs to be approached within the local network. The exploit has been disclosed...
CVE-2023-5324 eeroOS Ethernet Interface denial of service
A vulnerability has been found in eeroOS up to 6.16.4-11 and classified as critical. This vulnerability affects unknown code of the component Ethernet Interface. The manipulation leads to denial of service. The attack needs to be approached within the local network. The exploit has been disclosed...
CVE-2023-5324
Summary (CVE-2023-5324) Affects eeroOS up to 6.16.4-11, specifically the Ethernet Interface. The issue is a denial-of-service condition caused by manipulation of the Ethernet Interface’s unknown code path. Exploitation is described as requiring access from the local network, with public disclosur...
CVE-2023-5324 eeroOS Ethernet Interface denial of service
A vulnerability has been found in eeroOS up to 6.16.4-11 and classified as critical. This vulnerability affects unknown code of the component Ethernet Interface. The manipulation leads to denial of service. The attack needs to be approached within the local network. The exploit has been disclosed...
PT-2023-32043 · Amazon · Eeroos
Name of the Vulnerable Software and Affected Versions: eeroOS versions up to 6.16.4-11 Description: A critical issue has been found in the Ethernet Interface component, leading to denial of service. The attack must be launched from within the local network. The issue affects unknown code in this...
CVE-2023-1618 Authentication Bypass Vulnerability in MELSEC WS Series Ethernet Interface Module
Active Debug Code vulnerability in Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200 Serial number 2310 and prior allows a remote unauthenticated attacker to bypass authentication and illegally log into the affected module by connecting to it via telnet which is hidden function and i...
CVE-2023-22405
An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of Service DoS to device due to out of resources. When a device...
Default credentials
On Verizon 5G Home LVSKIHP InDoorUnit IDU 3.4.66.162 and OutDoorUnit ODU 3.33.101.0 devices, the CRTC and ODU RPC endpoints rely on a static account username/password for access control. This password can be generated via a binary included in the firmware, after ascertaining the MAC address of th...
Siemens S7-400 CPUs Improper Input Validation (CVE-2018-16556)
A vulnerability has been identified in SIMATIC S7-400 incl. F V6 and below All versions, SIMATIC S7-400 PN/DP V7 incl. F All versions, SIMATIC S7-400H V4.5 and below All versions, SIMATIC S7-400H V6 All versions V6.0.9, SIMATIC S7-410 All versions V8.2.1. Specially crafted packets sent to port...
Mitsubishi Electric MELSEC-Q QJ71E71 series Improper Synchronization (CVE-2016-8368)
An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. The affected Ethernet interface module is connected to a MELSEC-Q PLC, which may allow a remote attacker to conne...
Siemens SIPROTEC 5 Improper Input Validation Vulnerability
Siemens SIPROTEC 5 is a multifunction relay from Siemens, Germany. Siemens SIPROTEC 5 suffers from an Input Authentication Error vulnerability that arises from incoming webpackets that are not handled correctly. An unauthenticated, remote attacker with access to any Ethernet interface could explo...
Siemens SIPROTEC 5输入验证错误漏洞
Siemens SIPROTEC 5 is a multifunction relay from Siemens, Germany. Siemens SIPROTEC 5 suffers from an Input Authentication Error vulnerability that arises from incoming webpackets that are not handled correctly. An unauthenticated, remote attacker with access to any Ethernet interface could explo...
MELSEC-F FX3U-ENET代码问题漏洞
MELSEC-F FX3U-ENET is an Ethernet interface block from mitsubishielectric. A code issue vulnerability exists in the MELSEC-F FX3U-ENET. The vulnerability arises from an improper design or implementation during code development for a network system or product...