PT-2026-27115

Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 stores administrative authentication material in the ecos pw cookie using a reversible Base64-encoded format with a static suffix. An attacker who obtains or derives this cookie value can forge a valid administrative session and gai...

PT-2025-37061

Name of the Vulnerable Software and Affected Versions: Tenda F3 versions 12.01.01.48 multi and after Description: Tenda F3 versions 12.01.01.48 multi and after are susceptible to a buffer overflow issue through the onlineList parameter in the goform/setParentControl component. Recommendations: At...

CVE-2022-22282

SonicWall SMA1000 series firmware 12.4.0, 12.4.1-02965 and earlier versions incorrectly restricts access to a resource using HTTP connections from an unauthorized actor leading to Improper Access Control vulnerability...

Hitachi Energy RTU500 输入验证错误漏洞

Hitachi Energy RTU500 is a series of industrial control components from Hitachi, Ltd Hitachi, Japan. The Hitachi Energy RTU500 suffers from an input validation error vulnerability that stems from a length information validation error carried in MBAP. An attacker could exploit the vulnerability by...

PT-2019-15271 · Wago · Wago Series Pfc200 +1

Name of the Vulnerable Software and Affected Versions: WAGO Series PFC100 and PFC200 devices versions prior to FW12 Description: The issue allows for Information Disclosure due to improper access control. A remote attacker can exploit this by sending crafted HTTP requests to check for the existen...