Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-40612

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00658EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-40613

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01274EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:2 a.m.8 views

CVE-2023-36670

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device...

9.8CVSS8.1AI score0.01274EPSS
Exploits0
NVD
NVD
added 2023/07/18 7:15 p.m.22 views

CVE-2023-36670

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device...

9.8CVSS0.01274EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/07/18 7:15 p.m.5 views

CVE-2023-36670

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device...

9.8CVSS7.6AI score0.01274EPSS
Exploits0References3
OSV
OSV
added 2023/07/18 7:15 p.m.5 views

CVE-2023-36670

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device...

9.8CVSS6AI score0.01274EPSS
Exploits0References2
Prion
Prion
added 2023/07/18 7:15 p.m.15 views

Command injection

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device...

7.5CVSS9.8AI score0.01274EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2023/07/18 6:15 p.m.23 views

CVE-2023-36669

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit IDU before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Any attacker with layer-3 network access to the IDU can impersonate the Touch Panel Unit TPU within the IDU by sending crafte...

9.8CVSS0.00658EPSS
Exploits0References2
Prion
Prion
added 2023/07/18 6:15 p.m.15 views

Authentication flaw

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit IDU before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Any attacker with layer-3 network access to the IDU can impersonate the Touch Panel Unit TPU within the IDU by sending crafte...

7.5CVSS9.3AI score0.00658EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/18 12:0 a.m.23 views

CVE-2023-36670

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device...

10AI score0.01274EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/18 12:0 a.m.14 views

CVE-2023-36669

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit IDU before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Any attacker with layer-3 network access to the IDU can impersonate the Touch Panel Unit TPU within the IDU by sending crafte...

7.2AI score0.00658EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/18 12:0 a.m.4 views

PT-2023-25672 · Kratos · Kratos Ngc-Idu

Name of the Vulnerable Software and Affected Versions: Kratos NGC-IDU version 9.1.0.4 Description: A remotely exploitable command injection issue was discovered, allowing an attacker to execute arbitrary Linux commands as root by sending crafted TCP requests to the device. Recommendations: For...

9.8CVSS9.8AI score0.01274EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/07/18 12:0 a.m.9 views

CVE-2023-36670

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device...

8.3AI score0.01274EPSS
Exploits0References2
CVE
CVE
added 2023/07/18 12:0 a.m.35 views

CVE-2023-36670

CVE-2023-36670 affects Kratos NGC-IDU 9.1.0.4. The connected documents describe a remote command-injection vulnerability that allows an attacker to execute arbitrary Linux commands as root by sending crafted TCP requests to the device. The root cause and exact vulnerable component are tied to the...

9.8CVSS9.8AI score0.01274EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/07/18 12:0 a.m.25 views

CVE-2023-36669

Missing Authentication for a Critical Function within the Kratos NGC Indoor Unit IDU before 11.4 allows remote attackers to obtain arbitrary control of the IDU/ODU system. Any attacker with layer-3 network access to the IDU can impersonate the Touch Panel Unit TPU within the IDU by sending crafte...

9.6AI score0.00658EPSS
Exploits0References2
CVE
CVE
added 2023/07/18 12:0 a.m.44 views

CVE-2023-36669

CVE-2023-36669 (Kratos NGC IDU) affects Kratos NGC Indoor Unit prior to 11.4, where missing authentication for a critical function allows remote attackers with layer-3 network access to impersonate the Touch Panel Unit (TPU) by sending crafted TCP requests, granting arbitrary control of the IDU/O...

9.8CVSS9.3AI score0.00658EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder