EUVD-2023-29508

Malicious code in bioql PyPI...

CVE-2023-25556

A CWE-287: Improper Authentication vulnerability exists that could allow a device to be compromised when a key of less than seven digits is entered and the attacker has access to the KNX installation...

CVE-2023-25556

A CWE-287: Improper Authentication vulnerability exists that could allow a device to be compromised when a key of less than seven digits is entered and the attacker has access to the KNX installation...

Authentication flaw

A CWE-287: Improper Authentication vulnerability exists that could allow a device to be compromised when a key of less than seven digits is entered and the attacker has access to the KNX installation...

CVE-2023-25556

CVE-2023-25556 describes an improper authentication weakness in KNX-based devices where a key of fewer than seven digits can compromise a device if an attacker has KNX access. Connected sources tie this to Schneider Electric StruxureWare/KNX implementations and Merten KNX, noting the root cause a...

CVE-2023-25556

A CWE-287: Improper Authentication vulnerability exists that could allow a device to be compromised when a key of less than seven digits is entered and the attacker has access to the KNX installation...

Schneider Electric StruxureWare Data Center Expert 授权问题漏洞

Schneider Electric StruxureWare Data Center Expert StruxureWare Data Center Management Expert is a monitoring software from the French company Schneider Electric Schneider Electric. It is suitable for a variety of organizations to monitor their company-wide power, cooling, security,...