PT-2024-20465 · Unknown · Raspberrymatic +1

Name of the Vulnerable Software and Affected Versions: RaspberryMatic / OCCU versions prior to 3.75.6.20240316 Description: RaspberryMatic is an open-source operating system for HomeMatic internet-of-things devices. The issue is caused by multiple problems within the Java-based HMIPServer.jar...

Improper Authentication

asyncua is vulnerable to Improper Authentication. The vulnerability is due to a missing active session check, which lets an attacker access an Address Space without encryption and authentication allowing an attacker to steal sensitive data...

The vulnerability of the Vesta Control Panel server’s control panel lies in the lack of checking for the presence of a user session. This allows attackers to perform various manipulations on files and directories located on the server.

The vulnerability of the Vesta Control Panel’s control panel lies in the lack of checking for the presence of a user session in the files.php file web/file-manager/, which is responsible for the operation of the control panel’s file manager. Exploiting this vulnerability allows an attacker to...