93 matches found
Sudo vulnerability affects Endress+Hauser MCS200HW
The display unit of the Endress+Hauser MCS200HW is affected by a sudo chroot vulnerability...
EUVD-2020-4798
Malware in sbrugna...
EUVD-2020-4797
Malware in sbrugna...
EUVD-2015-6404
Malware in sbrugna...
Vulnerabilities affecting Endress+Hauser SSG-E210GC
Several vulnerabilities in the Endress+Hauser SSG-E210GC product were discoverd. The advisory includes a total of 23 vulnerabilities, of which 14 are confirmed as affected and 9 as known not affected...
CVE-2025-41690 Endress+Hauser: Proline 10 Maintenance credentials may be exposed under certain conditions
A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege user Maintenance by viewing the device’s event log. This vulnerability could allow the Operator to authenticate as the Maintenance user, thereby gaining unauthorized access to sensitive...
CVE-2025-41690 Endress+Hauser: Proline 10 Maintenance credentials may be exposed under certain conditions
A low-privileged attacker in bluetooth range may be able to access the password of a higher-privilege user Maintenance by viewing the device’s event log. This vulnerability could allow the Operator to authenticate as the Maintenance user, thereby gaining unauthorized access to sensitive...
Endress+hauser Ecograph 日志信息泄露漏洞
The Endress+hauser Ecograph is a data logger from Endress+hauser, Switzerland. It is used to securely and completely record and visualize all process sequences. The Endress+hauser Ecograph suffers from a log information disclosure vulnerability that stems from a password disclosure that could lea...
Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16356)
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from the hard disk not using full volume encryption, which can be exploited by an attacker to bypas...
Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from a missing Secure attribute, which can be exploited by an attacker to cause session hijacking...
Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16345)
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4, which can be exploited by attackers to cause a brute force attack...
Endress+Hauser MEAC300-FNADE4 Cross-Site Scripting Vulnerability
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. The Endress+Hauser MEAC300-FNADE4 is vulnerable to a cross-site scripting vulnerability due to improper validation of user input via dashboard name. An attacker could exploit the...
Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16354)
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4, which can be exploited by attackers to conduct clickjacking attacks...
Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16347)
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4, which stems from an Apache misconfiguration, and can be exploited by an attacker to cause a directory to be...
Endress+Hauser MEAC300-FNADE4 Cross-Site Scripting Vulnerability (CNVD-2025-16357)
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. The Endress+Hauser MEAC300-FNADE4 suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-supplied dat...
Endress+Hauser MEAC300-FNADE4 SQL Injection Vulnerability
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. The Endress+Hauser MEAC300-FNADE4 suffers from a SQL injection vulnerability that stems from the application's lack of validation of externally entered SQL statements. An attacker...
Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16349)
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from the reuse of the same credentials across multiple services and different scopes within the sam...
Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16348)
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from the use of DES encryption to store passwords, which can be exploited by an attacker to cause...
Endress+Hauser MEAC300-FNADE4 Information Disclosure Vulnerability (CNVD-2025-16353)
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4, which stems from the fact that all communications are not encrypted, and can be exploited by an attacker to...
Endress+Hauser MEAC300-FNADE4 Cross-Site Request Forgery Vulnerability
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. The Endress+Hauser MEAC300-FNADE4 suffers from a cross-site request forgery vulnerability that arises from a WEB application that does not adequately validate that a request is...