Lucene search
K

53 matches found

BDU FSTEC
BDU FSTEC
added 2023/10/03 12:0 a.m.6 views

The vulnerability of MediaTek’s microprogramming software components in the GPS module allows hackers to enhance their privileges.

The vulnerability of the GPS component of MediaTek’s microprogramming software chips is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.8CVSS6.6AI score0.00089EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/08/11 12:0 a.m.7 views

The vulnerability of the keyinstall component in MediaTek’s microprogramming software allows a hacker to trigger a service failure.

The vulnerability of the keyinstall component in MediaTek’s microprogramming software is related to insufficient verification of input data. Exploiting this vulnerability can allow attackers to cause malfunctions in the system...

4.4CVSS5.5AI score0.00084EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/07/26 12:0 a.m.6 views

The vulnerability of the ABB eSOMS software for managing production processes, related to insufficient verification of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the ABB eSOMS software for managing production processes is related to insufficient verification of input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

5.4CVSS6.3AI score0.00625EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/06/07 12:0 a.m.9 views

The vulnerability of the microprogramming software for WAGO CC100 programmable logic controllers and the microprogramming software for WAGO Touch Panel 600 sensors is related to insufficient verification of input data.

The vulnerability of the microprogramming software used in WAGO CC100 programmable logic controllers and the microprogramming software for WAGO Touch Panel 600 sensors is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to gain access to...

10CVSS7.7AI score0.82037EPSS
Exploits5References3
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.7 views

The vulnerability of the BIOS microprogramming software in Dell laptops allows a hacker to execute arbitrary code.

The vulnerability of BIOS microprogramming software in Dell laptops is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.5CVSS7.5AI score0.002EPSS
Exploits0References3Affected Software26
BDU FSTEC
BDU FSTEC
added 2023/02/17 12:0 a.m.8 views

The vulnerability of the design and preparation of 3D-printing objects, related to insufficient verification of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the design and preparation tools for 3D printing is related to insufficient verification of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

7.8CVSS6.9AI score0.00657EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/02/08 12:0 a.m.7 views

The vulnerability of Huawei BiSheng-WNM printer’s microprogramming software, related to insufficient input data verification, allows attackers to trigger service failures.

The vulnerability of Huawei BiSheng-WNM printer’s microprogramming software is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures using specially created data...

7.8CVSS7.2AI score0.00468EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/10/21 12:0 a.m.7 views

The vulnerability of the virtual learning environment Moodle, related to insufficient verification of input data, allows a perpetrator to disclose protected information.

The vulnerability in the virtual learning environment Moodle is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose protected information...

7.8CVSS6.1AI score0.49102EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/10/13 12:0 a.m.6 views

The vulnerability of the implementation of IEC 104 industrial protocols in the software environment for controlling and managing equipment in Hitachi Energy’s MicroSCADA X SYS600 system allows a intruder to carry out maintenance-related malfunctions.

The vulnerability of the implementation of IEC 104 industrial protocols in the Hitachi Energy MicroSCADA X SYS600 system management and control software exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to perform maintenance action...

7.8CVSS7.1AI score0.00633EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/12 12:0 a.m.11 views

Vulnerability of microprogramming software for Siemens STEP 7 programmable logic controllers, systems for manufacturing process control such as Opcenter Execution Discrete, Opcenter Execution Process, Opcenter Execution Foundation, Opcenter Intelligence, Opcenter Quality, SIMATIC IT Production Suite, the system diagnostic tool SIMOCODE ES, the software for parameterizing, diagnosing, and documenting the startup status of SIRIUS Soft Starter ES, technological process management systems like SIMATIC PCS neo, the Opcenter RD&L software platform, and the software for analyzing equipment efficiency and key indicators like SIMATIC IT LMS. These vulnerabilities allow attackers to trigger malfunctions during maintenance operations due to insufficient input data verification.

The vulnerabilities of the microprogramming software for Siemens STEP 7 programmable logic controllers, the systems for managing production processes such as Opcenter Execution Discrete, Opcenter Execution Process, Opcenter Execution Foundation, Opcenter Intelligence, Opcenter Quality, SIMATIC IT...

5.3CVSS6.7AI score0.02151EPSS
Exploits0References2Affected Software7
BDU FSTEC
BDU FSTEC
added 2022/07/15 12:0 a.m.7 views

The vulnerability of microprogrammed software in Schneider Electric Easergy P5 relay protection and control devices, related to insufficient verification of input data, allows a intruder to disable the device’s control function.

The vulnerability of the microprogramming software in Schneider Electric Easergy P5 relay protection and control devices is related to insufficient verification of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to disable the device’s control functions...

5.2CVSS5.6AI score0.00416EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/15 12:0 a.m.8 views

The vulnerability of the Siebel Core – Server Infrastructure component of the Oracle Siebel CRM system allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Siebel Core – Server Infrastructure component of the Oracle Siebel CRM system exists due to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information through...

7.5CVSS6.8AI score0.01517EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/01 12:0 a.m.6 views

The vulnerability of the CPU FX5U(C) and FX5UJ modules of MELSEC iQ-F series PLCs, which stems from insufficient input data verification, allows attackers to trigger malfunctions during maintenance operations.

The vulnerability of the CPU FX5UC and FX5UJ modules of the MELSEC iQ-F series is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system...

8.6CVSS7.6AI score0.03924EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/04/25 12:0 a.m.8 views

The vulnerability of the Adobe Photoshop graphic editor lies in the lack of thorough verification of input data, which allows attackers to exploit the system to disclose protected information.

The vulnerability of the Adobe Photoshop graphic editor is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially crafted file...

3.3CVSS5.3AI score0.01752EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/12/20 12:0 a.m.7 views

The vulnerabilities of the programmable logic controllers MELSEC iQ-R, MELSEC Q, and MELSEC L stem from insufficient checks on input data. This allows attackers to trigger malfunctions during maintenance operations.

The vulnerability of the programmable logic controllers MELSEC iQ-R, MELSEC Q, and MELSEC L exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause malfunctions through a specially crafted package...

7.8CVSS7.2AI score0.02988EPSS
Exploits0References4Affected Software10
BDU FSTEC
BDU FSTEC
added 2021/11/25 12:0 a.m.8 views

The vulnerability of the 3D viewer, which involves a lack of input data verification, allows a perpetrator to execute arbitrary code.

The vulnerability of the 3D viewer software is related to the lack of checks on input data during the processing of 3MF files. Exploiting this vulnerability can allow attackers to execute arbitrary code using a specially created malicious file or a specially created malicious link...

7.8CVSS7.8AI score0.04938EPSS
Exploits0References6
Prion
Prion
added 2021/11/14 9:15 p.m.14 views

Cross site scripting

An Out-of-bounds Read vulnerability exists in the DGN file reading procedure in Open Design Alliance Drawings SDK before 2022.11. Crafted data in a DGN file and lack of verification of input data can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability t...

4.3CVSS4AI score0.01405EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/12/01 12:0 a.m.4 views

The vulnerability of the microprogramming software in the Server Board S2600ST Family and S2600WF Family arises due to insufficient verification of input data. This vulnerability allows attackers to increase their privileges.

The vulnerability of the microprogramming software in the Server Board S2600ST Family and S2600WF Family exists due to insufficient testing of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.5CVSS6.6AI score0.00342EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/08/19 12:0 a.m.9 views

The vulnerability of the qmail-verify module in the netqmail email client allows a hacker to compromise data integrity.

The vulnerability of the qmail-verify module in the netqmail email client is related to the lack of a mechanism for verifying input data. Exploiting this vulnerability allows an attacker to compromise the integrity of data...

7.8CVSS7.2AI score0.01768EPSS
Exploits2References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/07/14 12:0 a.m.4 views

The vulnerability of the EKOM-3000 data collection and transmission device, which arises due to insufficient verification of input data, allows a perpetrator to cause temporary service interruption of the device’s web service.

The vulnerability of the ECOOM-3000 data collection and transmission device exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to temporarily disrupt the web service of the device’s operation...

5.3CVSS5.5AI score
Exploits0Affected Software1
Rows per page
Query Builder