27 matches found
EUVD-2023-51957
Malicious code in bioql PyPI...
CVE-2023-47867
MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers within range could connect to the device's web services and compromise the device...
CVE-2023-49610
MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a message running commands or could overflow the stack...
CVE-2023-6221
The cloud provider MachineSense uses for integration and deployment for multiple MachineSense devices, such as the programmable logic controller PLC, PumpSense, PowerAnalyzer, FeverWarn, and others is insufficiently protected against unauthorized access. An attacker with access to the internal...
CVE-2023-47867
MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers within range could connect to the device's web services and compromise the device...
Design/Logic Flaw
MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers within range could connect to the device's web services and compromise the device...
Buffer overflow
MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a message running commands or could overflow the stack...
CVE-2023-49610 MachineSense FeverWarn Improper Input Validation
MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a message running commands or could overflow the stack...
CVE-2023-49610 MachineSense FeverWarn Improper Input Validation
MachineSense FeverWarn Raspberry Pi-based devices lack input sanitization, which could allow an attacker on an adjacent network to send a message running commands or could overflow the stack...
CVE-2023-49610
CVE-2023-49610 affects MachineSense FeverWarn Raspberry Pi-based devices (and related FeverWarn components). The issue is improper input validation that may allow an attacker on an adjacent network to send commands or cause a stack overflow, potentially enabling arbitrary command execution (impac...
CVE-2023-47867 MachineSense FeverWarn Improper Access Control
MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers within range could connect to the device's web services and compromise the device...
CVE-2023-47867 MachineSense FeverWarn Improper Access Control
MachineSense FeverWarn devices are configured as Wi-Fi hosts in a way that attackers within range could connect to the device's web services and compromise the device...
CVE-2023-47867
CVE-2023-47867 affects MachineSense FeverWarn devices (ESP32, RaspberryPi, DataHub RaspberryPi). The shared details describe an improper access control flaw where FeverWarn devices are configured as Wi‑Fi hosts, enabling attackers within range to connect to the device’s web services and compromis...
CVE-2023-49115 MachineSense FeverWarn Missing Authentication for Critical Function
MachineSense devices use unauthenticated MQTT messaging to monitor devices and remote viewing of sensor data by users...
CVE-2023-49115 MachineSense FeverWarn Missing Authentication for Critical Function
MachineSense devices use unauthenticated MQTT messaging to monitor devices and remote viewing of sensor data by users...
CVE-2023-6221 MachineSense FeverWarn Missing Authentication for Critical Function
The cloud provider MachineSense uses for integration and deployment for multiple MachineSense devices, such as the programmable logic controller PLC, PumpSense, PowerAnalyzer, FeverWarn, and others is insufficiently protected against unauthorized access. An attacker with access to the internal...
MachineSense FeverWarn Trust Management Issues Vulnerability
MachineSense FeverWarn is a temperature detection device from MachineSense. MachineSense FeverWarn is vulnerable to a trust management issue that stems from the use of hard-coded credentials...
MachineSense FeverWarn Input Validation Error Vulnerability
MachineSense FeverWarn is a temperature detection device from MachineSense. MachineSense FeverWarn has an input validation error vulnerability that stems from incorrect validation of input...
MachineSense FeverWarn Security Vulnerability
MachineSense FeverWarn is a temperature detection device from MachineSense. A security vulnerability exists in MachineSense FeverWarn that stems from improper access control...
MachineSense FeverWarn Access Control Error Vulnerability
MachineSense FeverWarn is a temperature detection device from MachineSense. MachineSense FeverWarn suffers from an access control error vulnerability. An attacker could exploit the vulnerability to view source code, secret credentials, and more...