Lucene search
K

258 matches found

ICS
ICS
added 2023/12/12 7:0 a.m.30 views

Schneider Electric Easy UPS Online Monitoring Software

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION : Vendor : Schneider Electric Equipment : Easy UPS Online Monitoring Software Vulnerability : Path Traversal 2. RISK EVALUATION Successful exploitation of this vulnerability could allow elevation of privileges which could result in arbitrary...

7.1CVSS6.7AI score0.00238EPSS
Exploits0References10
CNNVD
CNNVD
added 2023/12/07 12:0 a.m.4 views

Number withdrawn

Iconics SCADA Suite is a PC-based monitoring and data acquisition software suite from Iconics USA. This CVE number has been withdrawn...

7.6AI score
Exploits0References3
CNVD
CNVD
added 2023/11/27 12:0 a.m.3 views

Fuji Electric Tellus Lite V-Simulator Improper Access Control Vulnerability

Fuji Electric Tellus Lite V-Simulator is a remote monitoring software for industrial environments developed by FujiElectric Japan, which is mainly used to collect real-time data from PLCs Programmable Logic Controllers, temperature controllers, inverters, and other devices. Fuji Electric Tellus...

8.8CVSS6.9AI score0.00484EPSS
Exploits0References1
CNVD
CNVD
added 2023/11/27 12:0 a.m.2 views

Fuji Electric Tellus Lite V-Simulator Out-of-Bounds Write Vulnerability

Fuji Electric Tellus Lite V-Simulator is a remote monitoring software for industrial environments from Fuji Electric Japan. An out-of-bounds write vulnerability exists in Fuji Electric Tellus Lite V-Simulator that originates from an out-of-bounds write when parsing a specially crafted input file...

7.8CVSS8AI score0.00335EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/22 12:0 a.m.4 views

Fuji Electric Tellus Lite V-Simulator 安全漏洞

Fuji Electric Tellus Lite V-Simulator is a remote monitoring software for industrial environments developed by FujiElectric Japan, which is mainly used to collect real-time data from PLCs Programmable Logic Controllers, temperature controllers, inverters, and other devices. Fuji Electric Tellus...

8.8CVSS6.8AI score0.00484EPSS
Exploits0References3
ICS
ICS
added 2023/11/21 7:0 a.m.54 views

Fuji Electric Tellus Lite V-Simulator

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Fuji Electric Equipment : Tellus Lite V-Simulator Vulnerabilities : Stack-based Buffer Overflow, Out-of-bounds Write, Improper Access Control 2. RISK EVALUATION Successful exploitation of these vulnerabilities...

8.8CVSS8.6AI score0.00484EPSS
Exploits0References10
CNNVD
CNNVD
added 2023/11/15 12:0 a.m.5 views

Fuji Electric V-Server 缓冲区错误漏洞

Fuji Electric V-Server and Fuji Electric V-Server Lite are both products of Fuji Electric, Japan.Fuji Electric V-Server is a software package for collecting and managing real-time field data.Fuji Electric V-Server Lite is a remote monitoring software for industrial environments. Server Lite is a...

7.8CVSS7.9AI score0.00265EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/11/15 12:0 a.m.5 views

The vulnerability of the monitoring software for PLK TELLUS and TELLUS Lite, related to reading data beyond the memory limit, allows a hacker to execute arbitrary code.

The vulnerability of the monitoring software for PLK TELLUS and TELLUS Lite lies in the reading of data beyond the memory limit. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted file...

7.8CVSS7.7AI score0.00265EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/11/15 12:0 a.m.5 views

The vulnerability of the monitoring software for PLK V-Sever and V-Sever Lite lies in the ability to write beyond the buffer boundaries, allowing a hacker to execute arbitrary code.

The vulnerability of the monitoring software for V-Sever and V-Sever Lite lies in the fact that it allows data to be written beyond the buffer boundaries. Exploiting this vulnerability enables a remote attacker to execute arbitrary code using a specially crafted file...

7.8CVSS7.9AI score0.00265EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/11/15 12:0 a.m.6 views

The vulnerability of the monitoring software for PLK TELLUS and TELLUS Lite lies in the use of an uninitialized pointer, which allows a hacker to execute arbitrary code.

The vulnerability of the monitoring software for PLK TELLUS and TELLUS Lite lies in the use of an uninitialized pointer. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted file...

7.8CVSS7.7AI score0.00265EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2023/11/13 12:0 a.m.8 views

The vulnerability of the SolarWinds Orion Platform’s network monitoring software lies in its deserialization mechanism flaws, which allows a hacker to execute arbitrary commands from the web console.

The vulnerability of the SolarWinds Orion Platform’s network monitoring software is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow a remote attacker to execute arbitrary commands from the web console...

9CVSS7.7AI score0.80298EPSS
Exploits0References3Affected Software1
The Hacker News
The Hacker News
added 2023/11/07 5:8 a.m.53 views

Critical Flaws Discovered in Veeam ONE IT Monitoring Software – Patch Now

Veeam has released security updates to address four flaws in its ONE IT monitoring and analytics platform, two of which are rated critical in severity. The list of vulnerabilities is as follows - CVE-2023-38547 CVSS score: 9.9 - An unspecified flaw that can be leveraged by an unauthenticated user...

7.7AI score0.19125EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/10/25 12:0 a.m.9 views

The vulnerability of the Advantech WebAccess remote monitoring software lies in the lack of protection for operational data, which allows a intruder to disclose the protected information.

The vulnerability of Advantech WebAccess remote monitoring software lies in the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

7.8CVSS7.2AI score0.00465EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2023/10/18 12:0 a.m.5 views

Advantech R-SeeNet 安全漏洞

Advantech R-SeeNet is an industrial monitoring software from Advantech, China. An information disclosure vulnerability exists in Advantech R-SeeNet, which can be exploited by an attacker to obtain login credentials and the default SNMP group string from the snmpmon.ini file and use this informati...

9.8CVSS6.2AI score0.16652EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2023/10/11 12:0 a.m.9 views

The vulnerability of the software for energy monitoring systems, including EcoStruxure Power Monitoring Expert, EcoStruxure Power Operation (EPO) with Advanced Reports, and EcoStruxure Power SCADA Operation with Advanced Reports, is related to deficiencies in the deserialization mechanism. This allows attackers to execute arbitrary code.

The vulnerabilities of the software for energy monitoring, including EcoStruxure Power Monitoring Expert, EcoStruxure Power Operation EPO with Advanced Reports, and EcoStruxure Power SCADA Operation with Advanced Reports, are related to deficiencies in the deserialization mechanism. Exploiting...

10CVSS8.3AI score0.00844EPSS
Exploits0References2
OSV
OSV
added 2023/10/03 9:15 p.m.7 views

CVE-2023-33273

An issue was discovered in DTS Monitoring 3.57.0. The parameter url within the WGET check function is vulnerable to OS command injection blind...

9.8CVSS5.8AI score0.02503EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2023/10/03 12:0 a.m.5 views

The vulnerability of the SolarWinds Orion Platform’s network monitoring software lies in the use of dangerous methods or functions, allowing a malicious actor to execute arbitrary commands with privileges of NETWORK SERVICE.

The vulnerability of the SolarWinds Orion Platform’s network monitoring software is related to the use of dangerous methods or functions. Exploiting this vulnerability could allow a hacker to execute arbitrary commands with privileges of NETWORK SERVICE...

9CVSS7.6AI score0.05433EPSS
Exploits0References4Affected Software1
The Hacker News
The Hacker News
added 2023/09/20 12:38 p.m.55 views

Critical Security Flaws Exposed in Nagios XI Network Monitoring Software

Multiple security flaws have been disclosed in the Nagios XI network monitoring software that could result in privilege escalation and information disclosure. The four security vulnerabilities, tracked from CVE-2023-40931 through CVE-2023-40934, impact Nagios XI versions 5.11.1 and lower. Followi...

8AI score0.11278EPSS
Exploits3
Talos Blog
Talos Blog
added 2023/08/09 12:0 p.m.14 views

What is commercial spyware?

Weve talked quite a bit about spyware recently, with very good reason. Recently, concerns have grown regarding the rapid growth of commercial spyware tools, and the way in which they are being used against their intended victims. This Need to Know article talk about the broader effects of spyware...

6.7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/07/20 12:0 a.m.6 views

The vulnerability of the monitoring software for the status and functions of Advantech R-SeeNet routers allows a intruder to gain unauthorized access to local files.

The vulnerability of the monitoring software for the functions and status of Advantech R-SeeNet routers is related to improper external manipulation of the file name or file path. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to local...

9CVSS7.4AI score0.00647EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder