72 matches found
PT-2024-23082 · Unknown · Evolution Controller
Name of the Vulnerable Software and Affected Versions: Evolution Controller versions 2.x Description: The issue concerns default credentials on the Web Interface of the affected software, allowing unauthorized access to perform administrative functions. Upon installation or first login, the...
PT-2024-23080
Name of the Vulnerable Software and Affected Versions Evolution Controller versions 2.04.560.31.03.2024 and below Description The issue concerns poorly configured access control on the DESKTOP EDIT USER GET ABACARD FIELDS endpoint, allowing an unauthenticated attacker to return the abacard field ...
DirectCyber Evolution Controller 安全漏洞
DirectCyber Evolution Controller is an access control controller software from DirectCyber, Inc. that is used for physical access to the facility by the controller. A security vulnerability exists in DirectCyber Evolution Controller version 2.04.560.31.03.2024 and prior versions, which stems from...
DirectCyber Evolution Controller 安全漏洞
DirectCyber Evolution Controller is an access control controller software from DirectCyber, Inc. that is used to controller physical access to facilities. A security vulnerability exists in DirectCyber Evolution Controller version 2.04.560.31.03.2024 and prior versions, which stems from an...
PT-2024-23076
Name of the Vulnerable Software and Affected Versions Evolution Controller versions 2.04.560.31.03.2024 and below Description The Web interface of Evolution Controller contains poorly configured access control on the DESKTOP EDIT USER GET CARD endpoint, allowing an unauthenticated attacker to...
PT-2024-23078
Name of the Vulnerable Software and Affected Versions Evolution Controller versions 2.04.560.31.03.2024 and below Description The issue concerns poorly configured access control on the DESKTOP EDIT USER GET PIN FIELDS endpoint, allowing an unauthenticated attacker to retrieve the pin value of any...
DirectCyber Evolution Controller 安全漏洞
DirectCyber Evolution Controller is an access control controller software from DirectCyber, Inc. that is used to controller physical access to facilities. A security vulnerability exists in DirectCyber Evolution Controller version 2.04.560.31.03.2024 and prior versions, which stems from an...
DirectCyber Evolution Controller 安全漏洞
DirectCyber Evolution Controller is an access control controller software from DirectCyber, Inc. that is used to controller physical access to facilities. A security vulnerability exists in DirectCyber Evolution Controller version 2.x and prior versions that stems from default credentials on the...
PT-2024-23081 · Unknown · Evolution Controller
Name of the Vulnerable Software and Affected Versions: Evolution Controller versions 2.04.560.31.03.2024 and below Description: The Web interface of Evolution Controller contains poorly configured access control on the "MOBILE GET USERS LIST" endpoint, allowing an unauthenticated attacker to...
PT-2024-23075
Name of the Vulnerable Software and Affected Versions Evolution Controller versions 2.04.560.31.03.2024 and below Description The Web interface of the Evolution Controller does not properly sanitize user input, allowing an unauthenticated attacker to crash the controller software. Recommendations...
DirectCyber Evolution Controller 安全漏洞
DirectCyber Evolution Controller is an access control controller software from DirectCyber, Inc. that is used to controller physical access to facilities. A security vulnerability exists in DirectCyber Evolution Controller version 2.04.560.31.03.2024 and prior versions, which stems from an improp...
DirectCyber Evolution Controller 访问控制错误漏洞
DirectCyber Evolution Controller is an access control controller software from DirectCyber, Inc. that is used to controller physical access to a facility. An access control error vulnerability exists in DirectCyber Evolution Controller version 2.04.560.31.03.2024 and prior versions, which stems...