EUVD-2024-54009

Malicious code in bioql PyPI...

EUVD-2024-19642

Malicious code in bioql PyPI...

CVE-2024-12146

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Finder Fire Safety Finder ERP/CRM New System allows SQL Injection. This issue affects Finder ERP/CRM New System: before 18.12.2024...

CVE-2024-12144

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Finder Fire Safety Finder ERP/CRM Old System allows SQL Injection. This issue affects Finder ERP/CRM Old System: before 18.12.2024...

CVE-2024-12144

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Finder Fire Safety Finder ERP/CRM Old System allows SQL Injection. This issue affects Finder ERP/CRM Old System: before 18.12.2024...

CVE-2024-12146 SQLi in Finder Fire Safety's Finder ERP/CRM (New System)

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Finder Fire Safety Finder ERP/CRM New System allows SQL Injection.This issue affects Finder ERP/CRM New System: before 18.12.2024...

CVE-2024-12146

The CVE-2024-12146 entry describes an SQL Injection vulnerability in Finder Fire Safety Finder ERP/CRM (New System), caused by improper neutralization of special elements in SQL commands. Affected software is Finder ERP/CRM (New System) prior to version 18.12.2024. The issue enables potential dat...

CVE-2024-12146 SQLi in Finder Fire Safety's Finder ERP/CRM (New System)

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Finder Fire Safety Finder ERP/CRM New System allows SQL Injection. This issue affects Finder ERP/CRM New System: before 18.12.2024...

CVE-2024-12144

CVE-2024-12144 affects Finder ERP/CRM (Old System) and is caused by improper neutralization of special elements in SQL commands, enabling SQL injection. The issue applies to Finder ERP/CRM (Old System) versions before 18.12.2024. The description documents a high-severity impact (C/H/I/A) with a n...

CVE-2024-12144 SQLi in Finder Fire Safety's Finder ERP/CRM (Old System)

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Finder Fire Safety Finder ERP/CRM Old System allows SQL Injection. This issue affects Finder ERP/CRM Old System: before 18.12.2024...

CVE-2024-12144 SQLi in Finder Fire Safety's Finder ERP/CRM (Old System)

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Finder Fire Safety Finder ERP/CRM Old System allows SQL Injection. This issue affects Finder ERP/CRM Old System: before 18.12.2024...

CVE-2024-22041

A vulnerability has been identified in Cerberus PRO EN Engineering Tool All versions, Cerberus PRO EN Fire Panel FC72x IP6 All versions, Cerberus PRO EN Fire Panel FC72x IP7 All versions, Cerberus PRO EN Fire Panel FC72x IP8 All versions IP8 SR4, Cerberus PRO EN X200 Cloud Distribution IP7 All...

CVE-2024-22039

A vulnerability has been identified in Cerberus PRO EN Engineering Tool All versions IP8, Cerberus PRO EN Fire Panel FC72x IP6 All versions IP6 SR3, Cerberus PRO EN Fire Panel FC72x IP7 All versions IP7 SR5, Cerberus PRO EN X200 Cloud Distribution IP7 All versions V3.0.6602, Cerberus PRO EN X200...

Siemens Desigo Fire Safety UL and Cerberus PRO UL Fire Protection Systems

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

The vulnerability of the network communication library of the software-hardware systems for Siemens Fire Safety products, namely Siemens Cerberus PRO EN, Sinteso EN, and Sinteso Mobile, allows a perpetrator to cause service interruptions.

The vulnerability of the network communication library of the Siemens Cerberus PRO EN, Sinteso EN, and Sinteso Mobile fire safety systems relates to the issue where the operation data escapes from the buffer in memory during the analysis of X.509 certificates. Exploiting this vulnerability could...

CVE-2024-22039

A vulnerability has been identified in Cerberus PRO EN Engineering Tool All versions IP8, Cerberus PRO EN Fire Panel FC72x IP6 All versions IP6 SR3, Cerberus PRO EN Fire Panel FC72x IP7 All versions IP7 SR5, Cerberus PRO EN X200 Cloud Distribution IP7 All versions V3.0.6602, Cerberus PRO EN X200...

CVE-2024-22039

A vulnerability has been identified in Cerberus PRO EN Engineering Tool All versions IP8, Cerberus PRO EN Fire Panel FC72x IP6 All versions IP6 SR3, Cerberus PRO EN Fire Panel FC72x IP7 All versions IP7 SR5, Cerberus PRO EN X200 Cloud Distribution IP7 All versions V3.0.6602, Cerberus PRO EN X200...

PT-2024-2314 · Siemens · Cerberus Pro En Fire Panel Fc72X Ip7 +21

Name of the Vulnerable Software and Affected Versions: Cerberus PRO EN Engineering Tool versions prior to MP4 Cerberus PRO EN Fire Panel FC72x IP6 versions prior to IP8 SR4 Cerberus PRO EN Fire Panel FC72x IP7 versions prior to IP8 SR4 Cerberus PRO EN Fire Panel FC72x IP8 versions prior to IP8 SR...

eclipsefiresafetyltd.ca Cross Site Scripting vulnerability OBB-3847430

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Siemens Desigo CC Series CCOM Communication Component Deserialization Vulnerability

Cerberus DMS is a hazard management station that helps users manage fire safety and security incidents.Desigo CC is an integrated building management platform for managing high-performance buildings.Desigo CC Compact expands the portfolio with solutions tailored for small and medium-sized...