Lucene search
K

34 matches found

Positive Technologies
Positive Technologies
added 2023/07/18 12:0 a.m.7 views

PT-2023-3574 · Keysight · Keysight Geolocation Server

Name of the Vulnerable Software and Affected Versions: Keysight Geolocation Server versions 2.4.2 and prior Description: The issue is related to improper path validation, which could allow an attacker to upload a specially crafted malicious file or delete any file or directory with SYSTEM...

7.8CVSS7.6AI score0.00239EPSS
Exploits0References9
ICS
ICS
added 2023/03/29 4:37 p.m.38 views

Keysight N6845A Geolocation Server

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Keysight Technologies Equipment: N6854A Geolocation Sever Vulnerability: Deserialization of Untrusted Data 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to escalate privileges in...

9.8CVSS9.4AI score0.00785EPSS
Exploits0References5
OSV
OSV
added 2023/03/27 4:15 p.m.5 views

CVE-2023-1399

N6854A Geolocation Server versions 2.4.2 are vulnerable to untrusted data deserialization, which may allow a malicious actor to escalate privileges in the affected device’s default configuration and achieve remote code execution...

9.8CVSS7.6AI score0.00785EPSS
Exploits0References1
Prion
Prion
added 2023/03/27 4:15 p.m.18 views

Deserialization of untrusted data

N6854A Geolocation Server versions 2.4.2 are vulnerable to untrusted data deserialization, which may allow a malicious actor to escalate privileges in the affected device’s default configuration and achieve remote code execution...

7.5CVSS9.8AI score0.00785EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/03/27 3:11 p.m.30 views

CVE-2023-1399

N6854A Geolocation Server versions 2.4.2 are vulnerable to untrusted data deserialization, which may allow a malicious actor to escalate privileges in the affected device’s default configuration and achieve remote code execution...

7.8CVSS10AI score0.00785EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/27 3:11 p.m.10 views

CVE-2023-1399

N6854A Geolocation Server versions 2.4.2 are vulnerable to untrusted data deserialization, which may allow a malicious actor to escalate privileges in the affected device’s default configuration and achieve remote code execution...

7.8CVSS8.2AI score0.00785EPSS
Exploits0References1
CVE
CVE
added 2023/03/27 3:11 p.m.46 views

CVE-2023-1399

The CVE-2023-1399 vulnerability affects Keysight N6854A Geolocation Server, version 2.4.2 (and earlier). It is described as a deserialization of untrusted data (CWE-502) that may allow a malicious actor to escalate privileges in the device’s default configuration and achieve remote code execution...

9.8CVSS9.8AI score0.00785EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/27 12:0 a.m.8 views

PT-2023-16956 · Unknown · N6854A Geolocation Server

Name of the Vulnerable Software and Affected Versions: N6854A Geolocation Server version 2.4.2 Description: The issue concerns untrusted data deserialization, which may allow a malicious actor to escalate privileges in the affected device's default configuration and achieve remote code execution...

9.8CVSS10AI score0.00785EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/03/22 12:0 a.m.6 views

Keysight Technologies N6854A Geolocation server 代码问题漏洞

Keysight Technologies N6854A Geolocation server is a geolocation server from Keysight Technologies. A security vulnerability in the Keysight Technologies N6854A Geolocation server version 2.4.2, which stems from the server's susceptibility to untrusted data deserialization, can be exploited by an...

9.8CVSS8.8AI score0.00785EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/05/31 7:36 p.m.43 views

CVE-2022-1661 Keysight N6854A Geolocation server and N6841A RF Sensor software

The affected products are vulnerable to directory traversal, which may allow an attacker to obtain arbitrary operating system files...

7.5CVSS7.7AI score0.1506EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/31 7:34 p.m.31 views

CVE-2022-1660 Keysight N6854A Geolocation server and N6841A RF Sensor software

The affected products are vulnerable of untrusted data due to deserialization without prior authorization/authentication, which may allow an attacker to remotely execute arbitrary code...

9.8CVSS9.9AI score0.15968EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/05/27 12:0 a.m.6 views

多款Keysight Technologies产品代码问题漏洞

Keysight Technologies N6854A Geolocation server and Keysight Technologies N6841A RF Sensor are both products of Keysight Technologies, Inc.Keysight Technologies Keysight Technologies N6854A Geolocation server is a geolocation server.Keysight Technologies N6841A RF Sensor is an RF sensor. It is us...

10CVSS8.9AI score0.15968EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/05/27 12:0 a.m.7 views

多款Keysight Technologies产品路径遍历漏洞

Keysight Technologies N6854A Geolocation server and Keysight Technologies N6841A RF Sensor are both products of Keysight Technologies, Inc.Keysight Technologies Keysight Technologies N6854A Geolocation server is a geolocation server.Keysight Technologies N6841A RF Sensor is an RF sensor. It is us...

7.5CVSS7.6AI score0.1506EPSS
Exploits0References4
ICS
ICS
added 2022/05/26 12:0 a.m.52 views

Keysight N6854A Geolocation server and N6841A RF Sensor software

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Keysight Technologies, Inc. Equipment: N6854A Geolocation server and N6841A RF Sensor software Vulnerabilities: Relative Path Traversal, Deserialization of Untrusted Data 2. RISK EVALUATION Successful...

10CVSS9.7AI score0.15968EPSS
Exploits0References5
Rows per page
Query Builder