EUVD-2023-42196

Malicious code in bioql PyPI...

CVE-2023-38378

The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application...

CVE-2023-38378

The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application...

CVE-2023-38379

The CVE concerns RIGOL MSO5000 (firmware 00.01.03.00.03). The web interface’s webcontrol changepwd.cgi allows remote admin password changes because the entered password only must match the first zero characters of the saved password (zero-length password check). Impact is remote admin credential ...

CVE-2023-38378

CVE-2023-38378 concerns the RIGOL MSO5000 digital oscilloscope web interface. Affects firmware 00.01.03.00.03. The issue arises in the webcontrol changepwd.cgi handler, where shell metacharacters in pass1 enable remote arbitrary code execution. The CVSSv3.1 vector provided (AV:N/AC:L/PR:N/UI:N/S:...

CVE-2023-38379

The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to change the admin password via a zero-length pass0 to the webcontrol changepwd.cgi application, i.e., the entered password only needs to match the first zero characters of the saved...

Siglent Technologies SDS 1202X-E Digital Oscilloscope 5.1.3.13 Hardcoded Credentials

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Vulnerabilities product: Siglent Technologies SDS 1202X-E Digital Oscilloscope vulnerable version: V5.1.3.13 fixed version: - CVE number: - impact: High homepage...