53 matches found
The vulnerability of MediaTek’s microprogramming software components in the GPS module allows hackers to enhance their privileges.
The vulnerability of the GPS component of MediaTek’s microprogramming software chips is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the keyinstall component in MediaTek’s microprogramming software allows a hacker to trigger a service failure.
The vulnerability of the keyinstall component in MediaTek’s microprogramming software is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to cause malfunctions in the system...
The vulnerability of the ABB eSOMS software for managing production processes, related to insufficient verification of input data, allows a perpetrator to execute arbitrary code.
The vulnerability of the ABB eSOMS software for managing production processes is related to insufficient verification of input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the microprogramming software for WAGO CC100 programmable logic controllers and the microprogramming software for WAGO Touch Panel 600 sensors is related to insufficient verification of input data.
The vulnerability of the microprogramming software used in WAGO CC100 programmable logic controllers and the microprogramming software for WAGO Touch Panel 600 sensors is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to gain access to...
The vulnerability of the BIOS microprogramming software in Dell laptops allows a hacker to execute arbitrary code.
The vulnerability of BIOS microprogramming software in Dell laptops is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the design and preparation of 3D-printing objects, related to insufficient verification of input data, allows a perpetrator to execute arbitrary code.
The vulnerability of the design and preparation tools for 3D printing is related to insufficient verification of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...
The vulnerability of Huawei BiSheng-WNM printer’s microprogramming software, related to insufficient input data verification, allows attackers to trigger service failures.
The vulnerability of Huawei BiSheng-WNM printer’s microprogramming software is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures using specially created data...
The vulnerability of the virtual learning environment Moodle, related to insufficient verification of input data, allows a perpetrator to disclose protected information.
The vulnerability in the virtual learning environment Moodle is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose protected information...
The vulnerability of the implementation of IEC 104 industrial protocols in the software environment for controlling and managing equipment in Hitachi Energy’s MicroSCADA X SYS600 system allows a intruder to carry out maintenance-related malfunctions.
The vulnerability of the implementation of IEC 104 industrial protocols in the Hitachi Energy MicroSCADA X SYS600 system management and control software exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to perform maintenance action...
Vulnerability of microprogramming software for Siemens STEP 7 programmable logic controllers, systems for manufacturing process control such as Opcenter Execution Discrete, Opcenter Execution Process, Opcenter Execution Foundation, Opcenter Intelligence, Opcenter Quality, SIMATIC IT Production Suite, the system diagnostic tool SIMOCODE ES, the software for parameterizing, diagnosing, and documenting the startup status of SIRIUS Soft Starter ES, technological process management systems like SIMATIC PCS neo, the Opcenter RD&L software platform, and the software for analyzing equipment efficiency and key indicators like SIMATIC IT LMS. These vulnerabilities allow attackers to trigger malfunctions during maintenance operations due to insufficient input data verification.
The vulnerabilities of the microprogramming software for Siemens STEP 7 programmable logic controllers, the systems for managing production processes such as Opcenter Execution Discrete, Opcenter Execution Process, Opcenter Execution Foundation, Opcenter Intelligence, Opcenter Quality, SIMATIC IT...
The vulnerability of microprogrammed software in Schneider Electric Easergy P5 relay protection and control devices, related to insufficient verification of input data, allows a intruder to disable the device’s control function.
The vulnerability of the microprogramming software in Schneider Electric Easergy P5 relay protection and control devices is related to insufficient verification of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to disable the device’s control functions...
The vulnerability of the Siebel Core – Server Infrastructure component of the Oracle Siebel CRM system allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Siebel Core – Server Infrastructure component of the Oracle Siebel CRM system exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information through...
The vulnerability of the CPU FX5U(C) and FX5UJ modules of MELSEC iQ-F series PLCs, which stems from insufficient input data verification, allows attackers to trigger malfunctions during maintenance operations.
The vulnerability of the CPU FX5UC and FX5UJ modules of the MELSEC iQ-F series is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system...
The vulnerability of the Adobe Photoshop graphic editor lies in the lack of thorough verification of input data, which allows attackers to exploit the system to disclose protected information.
The vulnerability of the Adobe Photoshop graphic editor is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially crafted file...
The vulnerabilities of the programmable logic controllers MELSEC iQ-R, MELSEC Q, and MELSEC L stem from insufficient checks on input data. This allows attackers to trigger malfunctions during maintenance operations.
The vulnerability of the programmable logic controllers MELSEC iQ-R, MELSEC Q, and MELSEC L exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause malfunctions through a specially crafted package...
The vulnerability of the 3D viewer, which involves a lack of input data verification, allows a perpetrator to execute arbitrary code.
The vulnerability of the 3D viewer software is related to the lack of checks on input data during the processing of 3MF files. Exploiting this vulnerability can allow attackers to execute arbitrary code using a specially created malicious file or a specially created malicious link...
Cross site scripting
An Out-of-bounds Read vulnerability exists in the DGN file reading procedure in Open Design Alliance Drawings SDK before 2022.11. Crafted data in a DGN file and lack of verification of input data can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability t...
The vulnerability of the microprogramming software in the Server Board S2600ST Family and S2600WF Family arises due to insufficient verification of input data. This vulnerability allows attackers to increase their privileges.
The vulnerability of the microprogramming software in the Server Board S2600ST Family and S2600WF Family exists due to insufficient testing of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the qmail-verify module in the netqmail email client allows a hacker to compromise data integrity.
The vulnerability of the qmail-verify module in the netqmail email client is related to the lack of a mechanism for verifying input data. Exploiting this vulnerability allows an attacker to compromise the integrity of data...
The vulnerability of the EKOM-3000 data collection and transmission device, which arises due to insufficient verification of input data, allows a perpetrator to cause temporary service interruption of the device’s web service.
The vulnerability of the ECOOM-3000 data collection and transmission device exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to temporarily disrupt the web service of the device’s operation...