14 matches found
CVE-2023-31411
A remote unprivileged attacker can modify and access configuration settings on the EventCam App due to the absence of API authentication. The lack of authentication in the API allows the attacker to potentially compromise the functionality of the EventCam App...
EUVD-2023-35722
Malicious code in bioql PyPI...
CVE-2023-31410
A remote unprivileged attacker can intercept the communication via e.g. Man-In-The-Middle, due to the absence of Transport Layer Security TLS in the SICK EventCam App. This lack of encryption in the communication channel can lead to the unauthorized disclosure of sensitive information. The attack...
CVE-2023-31411
A remote unprivileged attacker can modify and access configuration settings on the EventCam App due to the absence of API authentication. The lack of authentication in the API allows the attacker to potentially compromise the functionality of the EventCam App...
CVE-2023-31411
A remote unprivileged attacker can modify and access configuration settings on the EventCam App due to the absence of API authentication. The lack of authentication in the API allows the attacker to potentially compromise the functionality of the EventCam App...
Authentication flaw
A remote unprivileged attacker can modify and access configuration settings on the EventCam App due to the absence of API authentication. The lack of authentication in the API allows the attacker to potentially compromise the functionality of the EventCam App...
CVE-2023-31411
A remote unprivileged attacker can modify and access configuration settings on the EventCam App due to the absence of API authentication. The lack of authentication in the API allows the attacker to potentially compromise the functionality of the EventCam App...
CVE-2023-31411
A remote unprivileged attacker can modify and access configuration settings on the EventCam App due to the absence of API authentication. The lack of authentication in the API allows the attacker to potentially compromise the functionality of the EventCam App...
CVE-2023-31411
CVE-2023-31411 affects the SICK EventCam App. The root cause is lack of API authentication, enabling a remote unprivileged attacker to modify and access configuration settings, potentially impacting confidentiality, integrity, and availability. Public sources consistently describe the issue and i...
CVE-2023-31410
The CVE concerns the SICK EventCam App where communications lack TLS, enabling potential Man-In-The-Middle eavesdropping and disclosure of sensitive data. The primary affected component is the EventCam App’s communication channel with clients; root cause is absence of encryption in transit. Publi...
CVE-2023-31410
A remote unprivileged attacker can intercept the communication via e.g. Man-In-The-Middle, due to the absence of Transport Layer Security TLS in the SICK EventCam App. This lack of encryption in the communication channel can lead to the unauthorized disclosure of sensitive information. The attack...
Vulnerabilities in SICK EventCam App
SICK discovered vulnerabilities in the SICK EventCam App, that can be accessed via Ethernet. If exploited, this potentially allows a remote unauthenticated attacker to impact availabiltiy, integrity and confidentaility of the EventCam App. SICK recommends making sure to run the product in a secur...
PT-2023-23304 · Sick · Sick Eventcam App
Name of the Vulnerable Software and Affected Versions: SICK EventCam App affected versions not specified Description: A remote unprivileged attacker can intercept communication via Man-In-The-Middle attacks due to the absence of Transport Layer Security TLS in the app. This lack of encryption can...
PT-2023-23305 · Unknown · Eventcam App
Name of the Vulnerable Software and Affected Versions: EventCam App affected versions not specified Description: A remote unprivileged attacker can modify and access configuration settings due to the absence of API authentication in the EventCam App. This lack of authentication allows the attacke...