Lucene search
K

734 matches found

OSV
OSV
added 2020/10/15 3:15 p.m.5 views

CVE-2020-11646

A log information disclosure vulnerability in B&R GateManager 4260 and 9250 versions 9.0.20262 and GateManager 8250 versions 9.2.620236042 allows authenticated users to view log information reserved for other users...

4.3CVSS6AI score0.00999EPSS
Exploits0References2
OSV
OSV
added 2020/10/15 3:15 p.m.3 views

CVE-2020-11643

An information disclosure vulnerability in B&R GateManager 4260 and 9250 versions 9.0.20262 and GateManager 8250 versions 9.2.620236042 allows authenticated users to view information of devices belonging to foreign domains...

6.5CVSS6.6AI score0.0127EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2020/10/01 8:27 a.m.4 views

Critical Flaws Discovered in Popular Industrial Remote Access Systems

Cybersecurity researchers have found critical security flaws in two popular industrial remote access systems that can be exploited to ban access to industrial production floors, hack into company networks, tamper with data, and even steal sensitive business secrets. The flaws, discovered by Tel...

7.7CVSS6.9AI score0.01213EPSS
Exploits0
Prion
Prion
added 2020/09/24 3:15 p.m.16 views

Cross site request forgery (csrf)

iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to open/close a specified garage door/gate via /isg/opendoor.php...

4.3CVSS6.5AI score0.00494EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2020/09/24 3:1 p.m.47 views

CVE-2020-12280

Summary: CVE-2020-12280 affects iSmartgate PRO 1.5.9 and is described as a CSRF vulnerability. The issue allows remote attackers to open or close a specified garage door/gate by accessing the endpoint /isg/opendoor.php. The core detail across sources (NVD, Red Hat, CNVD, etc.) is the CSRF risk en...

6.5CVSS6.5AI score0.00494EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/09/24 3:1 p.m.23 views

CVE-2020-12280

iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to open/close a specified garage door/gate via /isg/opendoor.php...

6.5AI score0.00494EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2020/09/24 12:0 a.m.6 views

The vulnerabilities of the MAX 10 FPGA programmable logic circuit, related to configuration errors in its design, allow attackers to gain unauthorized access to protected information.

The vulnerability of the MAX 10 FPGA programmable logic circuit lies in configuration errors in its design. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

6.6CVSS6.2AI score0.00364EPSS
Exploits0References3
OSV
OSV
added 2020/09/10 2:15 p.m.2 views

DEBIAN-CVE-2020-25221

getgatepage in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting caused by gate page mishandling of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be triggered by any 64-bit...

7.8CVSS6.4AI score0.00668EPSS
Exploits0References1
OSV
OSV
added 2020/09/10 2:15 p.m.2 views

UBUNTU-CVE-2020-25221

getgatepage in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting caused by gate page mishandling of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be triggered by any 64-bit...

7.8CVSS6.7AI score0.00668EPSS
Exploits0References7
Cvelist
Cvelist
added 2020/09/10 1:39 p.m.42 views

CVE-2020-25221

getgatepage in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting caused by gate page mishandling of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be triggered by any 64-bit...

7.6AI score0.00668EPSS
Exploits0References6
CVE
CVE
added 2020/09/10 1:39 p.m.87 views

CVE-2020-25221

CVE-2020-25221 affects Linux kernel 5.7.x and 5.8.x before 5.8.7. The vulnerability arises in get_gate_page() implemented in mm/gup.c, due to incorrect reference counting of the backing struct page for the vsyscall page, causing a refcount underflow. It can be triggered by any 64-bit process that...

7.8CVSS7.5AI score0.00668EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2020/09/10 12:0 a.m.12 views

PT-2020-16024 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 5.7.x through 5.8.6 Description: The issue is related to incorrect reference counting of the struct page that backs the vsyscall page, caused by gate page mishandling in the get gate page function in mm/gup.c. This resul...

8.8CVSS7.2AI score0.07693EPSS
Exploits37References200
OSV
OSV
added 2020/08/25 2:15 p.m.3 views

CVE-2020-14508

GateManager versions prior to 9.2c, The affected product is vulnerable to an off-by-one error, which may allow an attacker to remotely execute arbitrary code or cause a denial-of-service condition...

9.8CVSS7.5AI score0.02017EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/07/23 12:0 a.m.6 views

The vulnerability of the microprogrammed industrial Ethernet switch Moxa MGate 5105-MB-EIP, related to the bypassing of authentication through capture/replay, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the microprogrammed industrial Ethernet switch Moxa MGate 5105-MB-EIP lies in its ability to bypass authentication through capture/replay. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

7.8CVSS5.5AI score
Exploits0References3Affected Software1
CNVD
CNVD
added 2020/07/12 12:0 a.m.2 views

Red Gate Software Redgate SQL Monitor Information Disclosure Vulnerability

Red Gate Software Redgate SQL Monitor is a database monitoring tool from Red Gate Software, UK. The product supports Microsoft SQL Server monitoring, alerting, analysis and more. A security vulnerability exists in Red Gate Software Redgate SQL Monitor versions 7.1.4 through 10.1.6, which originat...

5.9CVSS7.2AI score0.00499EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2020/04/21 9:55 a.m.6 views

Unpatchable 'Starbleed' Bug in FPGA Chips Exposes Critical Devices to Hackers

A newly discovered unpatchable hardware vulnerability in Xilinx programmable logic products could allow an attacker to break bitstream encryption, and clone intellectual property, change the functionality, and even implant hardware Trojans. The details of the attacks against Xilinx 7-Series and...

5.9AI score
Exploits0
OSV
OSV
added 2020/03/11 3:15 p.m.5 views

CVE-2019-9097

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. A high rate of transit traffic may cause a low-memory condition and a denial of service...

5.3CVSS6.7AI score
Exploits0References2
Malwarebytes
Malwarebytes
added 2020/03/10 3:46 p.m.63 views

Rocket Loader skimmer impersonates CloudFlare library in clever scheme

Update: The digital certificate issued for https.ps has been revoked by GlobalSign. Fraudsters are known for using social engineering tricks to dupe their victims, often times by impersonating authority figures to instill trust. In a recent blog post, we noted how criminals behind Magecart skimme...

6.9AI score
Exploits0
NVD
NVD
added 2020/02/20 9:15 p.m.11 views

CVE-2020-9318

Red Gate SQL Monitor 9.0.13 through 9.2.14 allows an administrative user to perform a SQL injection attack by configuring the SNMP alert settings in the UI. This is fixed in 9.2.15...

7.2CVSS7.2AI score0.00897EPSS
Exploits0References1
OSV
OSV
added 2020/02/20 9:15 p.m.2 views

CVE-2020-9318

Red Gate SQL Monitor 9.0.13 through 9.2.14 allows an administrative user to perform a SQL injection attack by configuring the SNMP alert settings in the UI. This is fixed in 9.2.15...

7.2CVSS7.1AI score0.00897EPSS
Exploits0References1
Rows per page
Query Builder