59 matches found
EUVD-2015-1147
Malware in sbrugna...
EUVD-2015-1145
Malware in sbrugna...
EUVD-2017-5510
Malware in sbrugna...
EUVD-2024-33033
Malicious code in bioql PyPI...
Exploit for CVE-2024-8232
CVE-2024-8232 – SpiderControl SCADA Web Server File Upload Vul...
CVE-2024-10313
iniNet Solutions SpiderControl SCADA PC HMI Editor has a path traversal vulnerability. When the software loads a malicious ‘ems' project template file constructed by an attacker, it can write files to arbitrary directories. This can lead to overwriting system files, causing system paralysis, or...
CVE-2024-10313 iniNet Solutions SpiderControl SCADA PC HMI Editor Path Traversal
iniNet Solutions SpiderControl SCADA PC HMI Editor has a path traversal vulnerability. When the software loads a malicious ‘ems' project template file constructed by an attacker, it can write files to arbitrary directories. This can lead to overwriting system files, causing system paralysis, or...
CVE-2024-10313 iniNet Solutions SpiderControl SCADA PC HMI Editor Path Traversal
iniNet Solutions SpiderControl SCADA PC HMI Editor has a path traversal vulnerability. When the software loads a malicious ‘ems' project template file constructed by an attacker, it can write files to arbitrary directories. This can lead to overwriting system files, causing system paralysis, or...
CVE-2024-10313
CVE-2024-10313 affects iniNet Solutions SpiderControl SCADA PC HMI Editor. The vulnerability is an improper restriction of a pathname to a restricted directory (path traversal) that is triggered when loading a malicious ‘ems’ project template, allowing writing files to arbitrary directories. Repo...
PT-2024-16180 · Ininet Solutions · Ininet Solutions Spidercontrol Scada Pc Hmi Editor
Name of the Vulnerable Software and Affected Versions: iniNet Solutions SpiderControl SCADA PC HMI Editor affected versions not specified Description: The issue is related to a path traversal vulnerability. When the software loads a malicious ems project template file created by an attacker, it c...
CVE-2024-8232 iniNet Solutions SpiderControl SCADA Web Server Unrestricted Upload of File with Dangerous Type
SpiderControl SCADA Web Server has a vulnerability that could allow an attacker to upload specially crafted malicious files without authentication...
iniNet Solutions SpiderControl SCADA Web Server
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity Vendor : iniNet Solutions GmbH Equipment : SpiderControl SCADA Web Server Vulnerabilities : Unrestricted Upload of File with Dangerous Type 2. RISK EVALUATION Successful exploitation of this...
iniNet SpiderControl SCADA WebServer Cross-Site Scripting Vulnerability
The iniNet SpiderControl SCADA WebServer is a SCADA system server from iniNet Solutions, Switzerland. A cross-site scripting vulnerability exists in iniNet SpiderControl SCADA WebServer versions prior to 2.03.0001. A remote attacker can exploit this vulnerability by sending a specially crafted UR...
CVE-2017-13995
An Improper Authentication issue was discovered in iniNet Solutions iniNet Webserver, all versions prior to V2.02.0100. The webserver does not properly authenticate users, which may allow a malicious attacker to access sensitive information such as HMI pages or modify PLC variables...
CVE-2017-13995
An Improper Authentication issue was discovered in iniNet Solutions iniNet Webserver, all versions prior to V2.02.0100. The webserver does not properly authenticate users, which may allow a malicious attacker to access sensitive information such as HMI pages or modify PLC variables...
Authentication flaw
An Improper Authentication issue was discovered in iniNet Solutions iniNet Webserver, all versions prior to V2.02.0100. The webserver does not properly authenticate users, which may allow a malicious attacker to access sensitive information such as HMI pages or modify PLC variables...
CVE-2017-13995
An Improper Authentication issue was discovered in iniNet Solutions iniNet Webserver, all versions prior to V2.02.0100. The webserver does not properly authenticate users, which may allow a malicious attacker to access sensitive information such as HMI pages or modify PLC variables...
CVE-2017-13995
CVE-2017-13995 affects iniNet Webserver (all versions prior to V2.02.0100). It is an improper authentication flaw (CWE-287) that may allow an unauthenticated remote attacker to access HMI pages or modify PLC variables. Per the connected documents, the vulnerability has a CVSS v3 base score of 10....
iniNet Solutions GmbH SCADA Webserver
CVSS v3 10.0 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: iniNet Solutions GmbH Equipment: SCADA Webserver Vulnerability: Improper Authentication AFFECTED PRODUCTS The following versions of iniNet Solutions GmbH’s SCADA Webserver, a third-party web-based server software, ar...
SpiderControl SCADA Webserver iniNet Directory Traversal Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of SpiderControl SCADA. Authentication is not required to exploit this vulnerability. The specific flaw exists within web server access to the scdefault directory. The issue results from the...