Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/02/12 1:4 a.m.11 views

CVE-2024-50618

A Use of Single-factor Authentication vulnerability in the Authentication component of CIPPlanner CIPAce before 9.17 allows attackers to bypass a protection mechanism. When the system is configured to allow login with internal accounts, an attacker can possibly obtain full authentication if the...

4.3CVSS5.6AI score0.00243EPSS
Exploits0References1
CVE
CVE
added 2026/02/11 12:0 a.m.10 views

CVE-2024-50618

CVE-2024-50618 affects CIPPlanner CIPAce prior to version 9.17. The authentication component relies on single-factor authentication, and when internal accounts login is enabled, an attacker could bypass protection and potentially obtain full authentication if the secret of the single-factor schem...

4.3CVSS5.6AI score0.00243EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/11 12:0 a.m.3 views

CVE-2024-50618

A Use of Single-factor Authentication vulnerability in the Authentication component of CIPPlanner CIPAce before 9.17 allows attackers to bypass a protection mechanism. When the system is configured to allow login with internal accounts, an attacker can possibly obtain full authentication if the...

5.6AI score0.00243EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.4 views

PT-2026-7655

Name of the Vulnerable Software and Affected Versions CIPPlanner CIPAce versions prior to 9.17 Description A weakness exists in the Authentication component of CIPPlanner CIPAce that allows attackers to bypass a security measure. Specifically, the system’s reliance on single-factor authentication...

4.3CVSS5.4AI score0.00243EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/11 12:0 a.m.21 views

CVE-2024-50618

A Use of Single-factor Authentication vulnerability in the Authentication component of CIPPlanner CIPAce before 9.17 allows attackers to bypass a protection mechanism. When the system is configured to allow login with internal accounts, an attacker can possibly obtain full authentication if the...

0.00243EPSS
Exploits0References1
Prion
Prion
added 2022/03/11 9:15 a.m.21 views

Design/Logic Flaw

The following Yokogawa Electric products do not change the passwords of the internal Windows accounts from the initial configuration: CENTUM VP versions from R5.01.00 to R5.04.20 and versions from R6.01.00 to R6.08.0, Exaopc versions from R3.72.00 to R3.79.00...

6.8CVSS9.4AI score0.00931EPSS
Exploits0References1Affected Software3
The Hacker News
The Hacker News
added 2021/01/01 4:50 a.m.8 views

Microsoft Says SolarWinds Hackers Accessed Some of Its Source Code

Microsoft on Thursday revealed that the threat actors behind the SolarWinds supply chain attack were able to gain access to a small number of internal accounts and escalate access inside its internal network. The "very sophisticated nation-state actor" used the unauthorized access to view, but no...

5.9AI score
Exploits0
Prion
Prion
added 2017/01/12 10:59 p.m.14 views

Privilege escalation

Privilege Escalation in Lenovo XClarity Administrator earlier than 1.2.0, if LXCA is used to manage rack switches or chassis with embedded input/output modules IOMs, certain log files viewable by authenticated users may contain passwords for internal administrative LXCA accounts with temporary...

1.9CVSS6.9AI score0.00307EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder