Lucene search
K

50 matches found

CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

PHOENIX CONTACT FL SWITCH 跨站脚本漏洞

The PHOENIX CONTACT FL SWITCH is an industrial grade Ethernet switch from PHOENIX CONTACT, Germany. A cross-site scripting vulnerability exists in Phoenix Contact FL SWITCH versions prior to 3.50, which stems from a cross-site scripting attack that could result in modification of device...

7.1CVSS6AI score0.00569EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.6 views

PHOENIX CONTACT FL SWITCH 跨站脚本漏洞

PHOENIX CONTACT FL SWITCH is an industrial-grade Ethernet switch from PHOENIX CONTACT, Germany. A cross-site scripting vulnerability exists in PHOENIX CONTACT FL SWITCH versions prior to 3.50, which originates from a cross-site scripting attack that could result in modification of device...

7.1CVSS6AI score0.08549EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-44520

Malicious code in bioql PyPI...

5.4CVSS5AI score0.01028EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2022-43962

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.01458EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-44521

Malicious code in bioql PyPI...

5.4CVSS5AI score0.01084EPSS
Exploits1References2
CVE
CVE
added 2025/05/27 8:38 a.m.46 views

CVE-2025-41653

CVE-2025-41653 affects Weidmueller Interface industrial Ethernet switches, with a DoS vulnerability in the device web server triggered by unauthenticated remote HTTP requests carrying a malicious header. Public details in connected records identify several affected models and versions: E-SW-VL08M...

7.5CVSS7.6AI score0.00497EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:41 p.m.5 views

CVE-2022-40693

A cleartext transmission vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this vulnerability...

7.5CVSS5.8AI score0.00646EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:24 p.m.10 views

CVE-2022-40224

A denial of service vulnerability exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP message header can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

7.5CVSS5.6AI score0.64686EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:51 p.m.20 views

CVE-2022-41313

A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this vulnerability.Form fiel...

5.4CVSS6.1AI score0.01084EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/09 6:8 p.m.13 views

CVE-2025-20164

A vulnerability in the Cisco Industrial Ethernet Switch Device Manager DM of Cisco IOS Software could allow an authenticated, remote attacker to elevate privileges. This vulnerability is due to insufficient validation of authorizations for authenticated users. An attacker could exploit this...

8.3CVSS6.8AI score0.00294EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 6:15 p.m.13 views

CVE-2025-20164

A vulnerability in the Cisco Industrial Ethernet Switch Device Manager DM of Cisco IOS Software could allow an authenticated, remote attacker to elevate privileges. This vulnerability is due to insufficient validation of authorizations for authenticated users. An attacker could exploit this...

8.3CVSS0.00294EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 5:36 p.m.10 views

CVE-2025-20164

A vulnerability in the Cisco Industrial Ethernet Switch Device Manager DM of Cisco IOS Software could allow an authenticated, remote attacker to elevate privileges. This vulnerability is due to insufficient validation of authorizations for authenticated users. An attacker could exploit this...

8.3CVSS8.2AI score0.00294EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 5:36 p.m.18 views

CVE-2025-20164

A vulnerability in the Cisco Industrial Ethernet Switch Device Manager DM of Cisco IOS Software could allow an authenticated, remote attacker to elevate privileges. This vulnerability is due to insufficient validation of authorizations for authenticated users. An attacker could exploit this...

8.3CVSS0.00294EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.7 views

PT-2025-20255 · Cisco · Cisco Ios +1

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software affected versions not specified Description: A vulnerability in the Cisco Industrial Ethernet Switch Device Manager DM could allow an authenticated, remote attacker to elevate privileges due to insufficient validation of...

8.3CVSS6.1AI score0.00294EPSS
Exploits0References3
NVD
NVD
added 2023/02/07 5:15 p.m.26 views

CVE-2022-41312

A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this vulnerability.Form fiel...

5.4CVSS4.8AI score0.01084EPSS
Exploits1References3
NVD
NVD
added 2023/02/07 5:15 p.m.32 views

CVE-2022-41313

A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this vulnerability.Form fiel...

5.4CVSS4.8AI score0.01084EPSS
Exploits1References3
NVD
NVD
added 2023/02/07 5:15 p.m.31 views

CVE-2022-40224

A denial of service vulnerability exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP message header can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...

7.5CVSS5.9AI score0.64686EPSS
Exploits1References3
OSV
OSV
added 2023/02/07 5:15 p.m.6 views

CVE-2022-40693

A cleartext transmission vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this vulnerability...

7.5CVSS5.8AI score0.00646EPSS
Exploits1References3
OSV
OSV
added 2023/02/07 5:15 p.m.7 views

CVE-2022-40691

An information disclosure vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability...

5.3CVSS5.8AI score0.01458EPSS
Exploits1References3
OSV
OSV
added 2023/02/07 5:15 p.m.3 views

CVE-2022-41311

A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this vulnerability.Form fiel...

5.4CVSS5.8AI score0.01028EPSS
Exploits1References3
Rows per page
Query Builder