Lucene search
K

36 matches found

Snyk
Snyk
added 2026/05/04 3:2 a.m.7 views

Malicious Package

Overview @alfa.life.mapp/app.web is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packa...

9.8CVSS5.8AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/24 8:6 p.m.9 views

Malicious code in @alfa.life.mapp/app.web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d31f4eb43fd465a585f96a6ae24d86885dcb21e0645e446d9831edce30250a9e The package @alfa.life.mapp/app.web was found to contain malicious code. Source: ghsa-malware...

5.8AI score
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-33499

Malicious code in bioql PyPI...

8.4CVSS6.6AI score0.00469EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/05 12:0 a.m.7 views

The vulnerability of the implementations of TLS and SSL protocols in the B&R Automation Runtime and B&R mapp View software for managing and controlling industrial processes allows a perpetrator to compromise the integrity of the protected information.

The vulnerability of the TLS and SSL protocol implementations in B&R Automation Runtime and B&R mapp View software for process control and management involves the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow a malicious actor to compromis...

7.8CVSS5.5AI score0.00325EPSS
Exploits0References3Affected Software2
Positive Technologies
Positive Technologies
added 2025/01/15 12:0 a.m.5 views

PT-2025-3702 · B&R · B&R Automation Runtime +1

Name of the Vulnerable Software and Affected Versions: B&R Automation Runtime versions prior to 6.1 B&R mapp View versions prior to 6.1 Description: A "Use of a Broken or Risky Cryptographic Algorithm" issue in the SSL/TLS component may be exploited by unauthenticated network-based attackers to...

8.2CVSS7.3AI score0.00325EPSS
Exploits0References8
NVD
NVD
added 2024/12/02 9:15 a.m.36 views

CVE-2024-10490

An “Authentication Bypass Using an Alternate Path or Channel” vulnerability in the OPC UA Server configuration required for B&R mapp Cockpit before 6.0, B&R mapp View before 6.0, B&R mapp Services before 6.0, B&R mapp Motion before 6.0 and B&R mapp Vision before 6.0 may be used by an...

8.4CVSS0.00469EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/02 8:46 a.m.16 views

CVE-2024-10490 Authentication bypass flaw in several mapp components

An “Authentication Bypass Using an Alternate Path or Channel” vulnerability in the OPC UA Server configuration required for B&R mapp Cockpit before 6.0, B&R mapp View before 6.0, B&R mapp Services before 6.0, B&R mapp Motion before 6.0 and B&R mapp Vision before 6.0 may be used by an...

8.4CVSS6.9AI score0.00469EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/02 8:46 a.m.23 views

CVE-2024-10490 Authentication bypass flaw in several mapp components

An “Authentication Bypass Using an Alternate Path or Channel” vulnerability in the OPC UA Server configuration required for B&R mapp Cockpit before 6.0, B&R mapp View before 6.0, B&R mapp Services before 6.0, B&R mapp Motion before 6.0 and B&R mapp Vision before 6.0 may be used by an...

8.4CVSS0.00469EPSS
Exploits0References1
CVE
CVE
added 2024/12/02 8:46 a.m.56 views

CVE-2024-10490

The CVE-2024-10490 issue affects B&R mapp Cockpit, View, Services, Motion, and Vision prior to version 6.0, due to an Authentication Bypass in the OPC UA Server configuration. The root cause is an authentication bypass that can be triggered by an unauthenticated network-based attacker, potentiall...

8.4CVSS6.6AI score0.00469EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/02 12:0 a.m.4 views

B&R Industrial Automation mapp 安全漏洞

B&R Industrial Automation mapp is a revolutionary software engineering platform from B&R Industrial Automation, Austria, that simplifies the development of new applications by integrating control process expertise into modular software, thereby shortening the development cycle of new machines and...

8.4CVSS6.8AI score0.00469EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/02 12:0 a.m.13 views

PT-2024-16313 · B&R · B&R Mapp Vision +5

Name of the Vulnerable Software and Affected Versions: B&R mapp Cockpit versions prior to 6.0 B&R mapp View versions prior to 6.0 B&R mapp Services versions prior to 6.0 B&R mapp Motion versions prior to 6.0 B&R mapp Vision versions prior to 6.0 Description: An "Authentication Bypass Using an...

8.4CVSS7.2AI score0.00469EPSS
Exploits0References9
NVD
NVD
added 2024/05/14 7:15 p.m.25 views

CVE-2024-2637

An Uncontrolled Search Path Element vulnerability in B&R Industrial Automation Scene Viewer, B&R Industrial Automation Automation Runtime, B&R Industrial Automation mapp Vision, B&R Industrial Automation mapp View, B&R Industrial Automation mapp Cockpit, B&R Industrial Automation mapp Safety, B&R...

7.2CVSS6.9AI score0.00168EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/14 6:49 p.m.34 views

CVE-2024-2637 Insecure Loading of Code in B&R Products

An Uncontrolled Search Path Element vulnerability in B&R Industrial Automation Scene Viewer, B&R Industrial Automation Automation Runtime, B&R Industrial Automation mapp Vision, B&R Industrial Automation mapp View, B&R Industrial Automation mapp Cockpit, B&R Industrial Automation mapp Safety, B&R...

7.2CVSS7.2AI score0.00168EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/14 6:49 p.m.25 views

CVE-2024-2637 Insecure Loading of Code in B&R Products

An Uncontrolled Search Path Element vulnerability in B&R Industrial Automation Scene Viewer, B&R Industrial Automation Automation Runtime, B&R Industrial Automation mapp Vision, B&R Industrial Automation mapp View, B&R Industrial Automation mapp Cockpit, B&R Industrial Automation mapp Safety, B&R...

7.2CVSS7AI score0.00168EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.3 views

B&R Industrial Automation多款产品 代码问题漏洞

B&R Industrial Automation Scene Viewer and others are products of B&R Industrial Automation, an Austrian company.B&R Industrial Automation Scene Viewer is a visualization tool for visualizing and simulating scenarios in industrial automation systems.B&R Industrial Automation Runtime is a real-tim...

7.2CVSS7AI score0.00168EPSS
Exploits0References3
Snyk
Snyk
added 2022/06/23 9:25 a.m.2 views

Malicious Package

Overview pm-web-mapp-shared is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this packag...

9.8CVSS7AI score
Exploits0References3
OSV
OSV
added 2022/05/31 1:22 p.m.10 views

MAL-2022-5380 Malicious code in pm-web-mapp-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6ac03172ff2d9c4945a67995634a88ef483ae3bdb87b941fb17ad92ca8b60408 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/05/31 1:22 p.m.3 views

Malicious code in pm-web-mapp-shared (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6ac03172ff2d9c4945a67995634a88ef483ae3bdb87b941fb17ad92ca8b60408 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/07/27 12:0 a.m.38 views

New Collaboration with Adobe and MAPP

Collaboration with industry partners is helping secure the digital world by distributing Trend Micro vulnerability information to security vendors more quickly so they can enhance protection for their customers...

2.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/03/16 6:6 a.m.700 views

Use This One-Click Mitigation Tool from Microsoft to Prevent Exchange Attacks

Microsoft on Monday released a one-click mitigation software that applies all the necessary countermeasures to secure vulnerable environments against the ongoing widespread ProxyLogon Exchange Server cyberattacks. Called Exchange On-premises Mitigation Tool EOMT, the PowerShell-based script serve...

9.8CVSS0.2AI score0.99999EPSS
Exploits63
Rows per page
Query Builder