258 matches found
Schneider Electric Easy UPS Online Monitoring Software
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION : Vendor : Schneider Electric Equipment : Easy UPS Online Monitoring Software Vulnerability : Path Traversal 2. RISK EVALUATION Successful exploitation of this vulnerability could allow elevation of privileges which could result in arbitrary...
Number withdrawn
Iconics SCADA Suite is a PC-based monitoring and data acquisition software suite from Iconics USA. This CVE number has been withdrawn...
Fuji Electric Tellus Lite V-Simulator Improper Access Control Vulnerability
Fuji Electric Tellus Lite V-Simulator is a remote monitoring software for industrial environments developed by FujiElectric Japan, which is mainly used to collect real-time data from PLCs Programmable Logic Controllers, temperature controllers, inverters, and other devices. Fuji Electric Tellus...
Fuji Electric Tellus Lite V-Simulator Out-of-Bounds Write Vulnerability
Fuji Electric Tellus Lite V-Simulator is a remote monitoring software for industrial environments from Fuji Electric Japan. An out-of-bounds write vulnerability exists in Fuji Electric Tellus Lite V-Simulator that originates from an out-of-bounds write when parsing a specially crafted input file...
Fuji Electric Tellus Lite V-Simulator 安全漏洞
Fuji Electric Tellus Lite V-Simulator is a remote monitoring software for industrial environments developed by FujiElectric Japan, which is mainly used to collect real-time data from PLCs Programmable Logic Controllers, temperature controllers, inverters, and other devices. Fuji Electric Tellus...
Fuji Electric Tellus Lite V-Simulator
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Fuji Electric Equipment : Tellus Lite V-Simulator Vulnerabilities : Stack-based Buffer Overflow, Out-of-bounds Write, Improper Access Control 2. RISK EVALUATION Successful exploitation of these vulnerabilities...
Fuji Electric V-Server 缓冲区错误漏洞
Fuji Electric V-Server and Fuji Electric V-Server Lite are both products of Fuji Electric, Japan.Fuji Electric V-Server is a software package for collecting and managing real-time field data.Fuji Electric V-Server Lite is a remote monitoring software for industrial environments. Server Lite is a...
The vulnerability of the monitoring software for PLK TELLUS and TELLUS Lite, related to reading data beyond the memory limit, allows a hacker to execute arbitrary code.
The vulnerability of the monitoring software for PLK TELLUS and TELLUS Lite lies in the reading of data beyond the memory limit. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted file...
The vulnerability of the monitoring software for PLK V-Sever and V-Sever Lite lies in the ability to write beyond the buffer boundaries, allowing a hacker to execute arbitrary code.
The vulnerability of the monitoring software for V-Sever and V-Sever Lite lies in the fact that it allows data to be written beyond the buffer boundaries. Exploiting this vulnerability enables a remote attacker to execute arbitrary code using a specially crafted file...
The vulnerability of the monitoring software for PLK TELLUS and TELLUS Lite lies in the use of an uninitialized pointer, which allows a hacker to execute arbitrary code.
The vulnerability of the monitoring software for PLK TELLUS and TELLUS Lite lies in the use of an uninitialized pointer. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file...
The vulnerability of the SolarWinds Orion Platform’s network monitoring software lies in its deserialization mechanism flaws, which allows a hacker to execute arbitrary commands from the web console.
The vulnerability of the SolarWinds Orion Platform’s network monitoring software is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow a remote attacker to execute arbitrary commands from the web console...
Critical Flaws Discovered in Veeam ONE IT Monitoring Software – Patch Now
Veeam has released security updates to address four flaws in its ONE IT monitoring and analytics platform, two of which are rated critical in severity. The list of vulnerabilities is as follows - CVE-2023-38547 CVSS score: 9.9 - An unspecified flaw that can be leveraged by an unauthenticated user...
The vulnerability of the Advantech WebAccess remote monitoring software lies in the lack of protection for operational data, which allows a intruder to disclose the protected information.
The vulnerability of Advantech WebAccess remote monitoring software lies in the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...
Advantech R-SeeNet 安全漏洞
Advantech R-SeeNet is an industrial monitoring software from Advantech, China. An information disclosure vulnerability exists in Advantech R-SeeNet, which can be exploited by an attacker to obtain login credentials and the default SNMP group string from the snmpmon.ini file and use this informati...
The vulnerability of the software for energy monitoring systems, including EcoStruxure Power Monitoring Expert, EcoStruxure Power Operation (EPO) with Advanced Reports, and EcoStruxure Power SCADA Operation with Advanced Reports, is related to deficiencies in the deserialization mechanism. This allows attackers to execute arbitrary code.
The vulnerabilities of the software for energy monitoring, including EcoStruxure Power Monitoring Expert, EcoStruxure Power Operation EPO with Advanced Reports, and EcoStruxure Power SCADA Operation with Advanced Reports, are related to deficiencies in the deserialization mechanism. Exploiting...
CVE-2023-33273
An issue was discovered in DTS Monitoring 3.57.0. The parameter url within the WGET check function is vulnerable to OS command injection blind...
The vulnerability of the SolarWinds Orion Platform’s network monitoring software lies in the use of dangerous methods or functions, allowing a malicious actor to execute arbitrary commands with privileges of NETWORK SERVICE.
The vulnerability of the SolarWinds Orion Platform’s network monitoring software is related to the use of dangerous methods or functions. Exploiting this vulnerability could allow a hacker to execute arbitrary commands with privileges of NETWORK SERVICE...
Critical Security Flaws Exposed in Nagios XI Network Monitoring Software
Multiple security flaws have been disclosed in the Nagios XI network monitoring software that could result in privilege escalation and information disclosure. The four security vulnerabilities, tracked from CVE-2023-40931 through CVE-2023-40934, impact Nagios XI versions 5.11.1 and lower. Followi...
What is commercial spyware?
Weve talked quite a bit about spyware recently, with very good reason. Recently, concerns have grown regarding the rapid growth of commercial spyware tools, and the way in which they are being used against their intended victims. This Need to Know article talk about the broader effects of spyware...
The vulnerability of the monitoring software for the status and functions of Advantech R-SeeNet routers allows a intruder to gain unauthorized access to local files.
The vulnerability of the monitoring software for the functions and status of Advantech R-SeeNet routers is related to improper external manipulation of the file name or file path. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to local...