EUVD-2021-28593

Malicious code in bioql PyPI...

CVE-2021-41578

mySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project files. If an attacker can trick a victim into importing a malicious mep file, then they gain the ability to write arbitrary files to OS locations where the user has permission. This would typically lead ...

CVE-2021-43555

mySCADA myDESIGNER Versions 8.20.0 and prior fails to properly validate contents of an imported project file, which may make the product vulnerable to a path traversal payload. This vulnerability may allow an attacker to plant files on the file system in arbitrary locations or overwrite existing...

CVE-2021-43555

mySCADA myDESIGNER Versions 8.20.0 and prior fails to properly validate contents of an imported project file, which may make the product vulnerable to a path traversal payload. This vulnerability may allow an attacker to plant files on the file system in arbitrary locations or overwrite existing...

Path traversal

mySCADA myDESIGNER Versions 8.20.0 and prior fails to properly validate contents of an imported project file, which may make the product vulnerable to a path traversal payload. This vulnerability may allow an attacker to plant files on the file system in arbitrary locations or overwrite existing...

CVE-2021-43555

CVE-2021-43555 affects mySCADA myDESIGNER up to version 8.20.0. The vulnerability arises from improper validation of contents in imported project files, enabling a path traversal payload that could plant or overwrite files on the file system and lead to remote code execution. Affected product: my...

CVE-2021-43555 mySCADA myDESIGNER

mySCADA myDESIGNER Versions 8.20.0 and prior fails to properly validate contents of an imported project file, which may make the product vulnerable to a path traversal payload. This vulnerability may allow an attacker to plant files on the file system in arbitrary locations or overwrite existing...

mySCADA myDESIGNER 路径遍历漏洞

MyScada MyDesigner is a rapid development platform for creating visualizations from the Czech company MyScada. A security vulnerability exists in mySCADA myDESIGNER that stems from the inability of mySCADA myDESIGNER version 8.20.0 and earlier to properly validate the contents of imported project...

mySCADA myDESIGNER

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low attack complexity Vendor: mySCADA Equipment: myDESIGNER Vulnerability: Relative Path Traversal 2. RISK EVALUATION Successful exploitation of this vulnerability could allow for remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The...

MyScada MyDesigner Directory Traversal Vulnerability

MyScada MyDesigner is a rapid development platform for creating visualizations from the Czech company MyScada. mySCADA myDESIGNER version 8.20.0 and below has a security vulnerability that could be exploited by attackers to trick victims into importing a malicious mep file, then they could write...

CVE-2021-41578

mySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project files. If an attacker can trick a victim into importing a malicious mep file, then they gain the ability to write arbitrary files to OS locations where the user has permission. This would typically lead ...

Directory traversal

mySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project files. If an attacker can trick a victim into importing a malicious mep file, then they gain the ability to write arbitrary files to OS locations where the user has permission. This would typically lead ...

CVE-2021-41578

mySCADA myDESIGNER 8.20.0 and below allows Directory Traversal attacks when importing project files. If an attacker can trick a victim into importing a malicious mep file, then they gain the ability to write arbitrary files to OS locations where the user has permission. This would typically lead ...

CVE-2021-41578

CVE-2021-41578 affects mySCADA’s desktop platform, specifically myDESIGNER versions 8.20.0 and earlier. The vulnerability is a directory traversal flaw triggered during importing project files (mep files). An attacker who can entice a victim to import a crafted mep could write arbitrary files to ...

MyScada MyDesigner 路径遍历漏洞

MyScada MyDesigner is a rapid development platform for creating visualizations from the Czech company MyScada. mySCADA myDESIGNER version 8.20.0 and below has a security vulnerability that could be exploited by attackers to trick victims into importing a malicious mep file, then they could write...