Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-19894

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00245EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/05 5:19 p.m.6 views

CVE-2025-6074

Use of Hard-coded Cryptographic Key vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to source code and control network, the attacker can bypass the REST interface authentication and gain access to MQTT configuration data...

6.5CVSS6.8AI score0.00245EPSS
Exploits0References1
NVD
NVD
added 2025/07/03 5:15 p.m.9 views

CVE-2025-6074

Use of Hard-coded Cryptographic Key vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to source code and control network, the attacker can bypass the REST interface authentication and gain access to MQTT configuration data...

6.5CVSS0.00245EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/03 4:46 p.m.4 views

CVE-2025-6074 Authentication Bypass to the MQTT configuration Web Interface

Use of Hard-coded Cryptographic Key vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to source code and control network, the attacker can bypass the REST interface authentication and gain access to MQTT configuration data...

6.5CVSS6.9AI score0.00245EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/03 4:46 p.m.9 views

CVE-2025-6074 Authentication Bypass to the MQTT configuration Web Interface

Use of Hard-coded Cryptographic Key vulnerability in ABB RMC-100, ABB RMC-100 LITE. When the REST interface is enabled by the user, and an attacker gains access to source code and control network, the attacker can bypass the REST interface authentication and gain access to MQTT configuration data...

6.5CVSS0.00245EPSS
Exploits0References1
CVE
CVE
added 2025/07/03 4:46 p.m.18 views

CVE-2025-6074

CVE-2025-6074 concerns ABB RMC-100 and ABB RMC-100 LITE. The issue is a use of a hard-coded cryptographic key that enables bypassing REST interface authentication, allowing an attacker who has access to the source code and control network to gain access to MQTT configuration data when the REST in...

6.5CVSS7.8AI score0.00245EPSS
Exploits0References1
ICS
ICS
added 2025/07/03 12:30 a.m.6 views

ABB RMC-100 (Update A)

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to gain unauthenticated access to the MQTT configuration data, cause a denial-of-service condition on the MQTT configuration web server REST interface, or decrypt encrypted MQTT broker credentials. 2...

8.2CVSS6AI score0.00326EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/07/03 12:0 a.m.3 views

PT-2025-27818 · Abb · Abb Rmc-100 +1

Name of the Vulnerable Software and Affected Versions: ABB RMC-100 versions 2105457-043 through 2105457-045 ABB RMC-100 LITE versions 2106229-015 through 2106229-016 Description: The issue is related to the use of a hard-coded cryptographic key. When the REST interface is enabled and an attacker...

6.5CVSS6.8AI score0.00245EPSS
Exploits0References7
ICS
ICS
added 2025/03/11 12:30 a.m.7 views

ABB RMC-100

SUMMARY An update is available that resolves a vulnerability in the product versions listed as affected in this advisory. An attacker who successfully exploited this vulnerability could cause the web UI to stop. 2. WORKAROUNDS The vulnerability is only present when the REST interface is enabled...

7.5CVSS6.8AI score0.14663EPSS
Exploits2References10
Vulnrichment
Vulnrichment
added 2024/04/09 8:25 a.m.17 views

CVE-2023-1083 Welotec: improper access control in TK500v1 router series

An unauthenticated remote attacker who is aware of a MQTT topic name can send and receive messages, including GET/SET configuration commands, reboot commands and firmware updates...

9.8CVSS9.8AI score0.00679EPSS
Exploits0References1
Rows per page
Query Builder