Lucene search
K

153 matches found

BDU FSTEC
BDU FSTEC
added 2022/06/29 12:0 a.m.9 views

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional monitoring devices, related to deficiencies in authentication procedures, allows attackers to delete security log files.

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multi-functional measuring devices is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker to remotely delete security log files...

5.3CVSS6.6AI score0.00951EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/06/29 12:0 a.m.6 views

The vulnerability of the configuration interface of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices allows attackers to carry out cross-site scripting attacks.

The vulnerability of the configuration interface of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

6.5CVSS6.4AI score0.00594EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/06/29 12:0 a.m.7 views

The vulnerability of the web interface for controlling Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices allows a intruder to disclose protected information.

The vulnerability of the web interface for controlling Siemens SICAM P850 and SICAM P855 multifunctional measuring devices is related to the lack of authentication for critical functions. Exploiting this vulnerability can allow an attacker to disclose protected information...

5.3CVSS6.6AI score0.00993EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/06/03 12:0 a.m.7 views

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices lies in the lack of protective measures for the website structure, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multi-functional measuring devices is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a remote attacker to perform cross-site scripting attacks...

7.5CVSS6.7AI score0.00804EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/06/03 12:0 a.m.8 views

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices lies in the insufficient cleaning of user data in the GET request parameter, allowing attackers to perform cross-site scripting attacks.

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices lies in insufficient cleaning of user data in the GET request parameter. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks using a specially created link...

7.5CVSS6.7AI score0.00804EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/06/01 12:0 a.m.7 views

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices arises from incorrect validation of certain GET and POST requests. This allows a perpetrator to trigger a service failure or execute arbitrary code.

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices is related to the improper verification of certain GET and POST requests. Exploiting this vulnerability can allow an attacker to trigger service failures or execute arbitrary codes...

10CVSS8.1AI score0.01766EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/06/01 12:0 a.m.8 views

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices lies in their ability to bypass the authentication process using capture-replay techniques for intercepted parameters. This allows attackers to gain access to the device’s control interface.

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices lies in the ability to bypass the authentication process by using capture-replay techniques to intercept and replay captured parameters. Exploiting this vulnerability can allow an intruder to gain...

7.6CVSS7.7AI score0.01041EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/06/01 12:0 a.m.8 views

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices, which stems from the transmission of data in an open manner via the HTTP protocol, allows attackers to intercept traffic and disrupt the operation of the devices.

The vulnerability of Siemens SICAM P850 and Siemens SICAM P855 multifunctional measuring devices lies in the transmission of data in an open manner via the HTTP protocol. Exploiting this vulnerability can allow a remote attacker to intercept traffic and disrupt the operation of the device...

10CVSS7.4AI score0.00685EPSS
Exploits0References5Affected Software2
NVD
NVD
added 2022/05/20 1:15 p.m.19 views

CVE-2022-29883

A vulnerability has been identified in SICAM T All versions V3.0. Affected devices do not restrict unauthenticated access to certain pages of the web interface. This could allow an attacker to delete log files without authentication...

6.9CVSS0.00951EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/05/20 1:15 p.m.2 views

CVE-2022-29877

A vulnerability has been identified in SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850...

6.5CVSS6.4AI score0.0062EPSS
Exploits0References2
OSV
OSV
added 2022/05/20 1:15 p.m.4 views

CVE-2022-29877

A vulnerability has been identified in SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850...

6.5CVSS6.5AI score0.0062EPSS
Exploits0References1
NVD
NVD
added 2022/05/20 1:15 p.m.20 views

CVE-2022-29876

A vulnerability has been identified in SICAM T All versions V3.0. Affected devices do not properly handle the input of a GET request parameter. The provided argument is directly reflected in the web server response. This could allow an unauthenticated attacker to perform reflected XSS attacks...

7.1CVSS0.00804EPSS
Exploits0References3
NVD
NVD
added 2022/05/20 1:15 p.m.31 views

CVE-2022-29880

A vulnerability has been identified in SICAM T All versions V3.0. Affected devices do not properly validate input in the configuration interface. This could allow an authenticated attacker to place persistent XSS attacks to perform arbitrary actions in the name of a logged user which accesses the...

6.5CVSS0.00594EPSS
Exploits0References3
NVD
NVD
added 2022/05/20 1:15 p.m.25 views

CVE-2022-29877

A vulnerability has been identified in SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850 All versions V3.00, SICAM P850...

6.5CVSS0.0062EPSS
Exploits0References1
NVD
NVD
added 2022/05/20 1:15 p.m.25 views

CVE-2022-29874

A vulnerability has been identified in SICAM T All versions V3.0. Affected devices do not encrypt web traffic with clients but communicate in cleartext via HTTP. This could allow an unauthenticated attacker to capture the traffic and interfere with the functionality of the device...

8.8CVSS0.00685EPSS
Exploits0References3
NVD
NVD
added 2022/05/20 1:15 p.m.26 views

CVE-2022-29878

A vulnerability has been identified in SICAM T All versions V3.0. Affected devices use a limited range for challenges that are sent during the unencrypted challenge-response communication. An unauthenticated attacker could capture a valid challenge-response pair generated by a legitimate user, an...

8.1CVSS0.01041EPSS
Exploits0References3
NVD
NVD
added 2022/05/20 1:15 p.m.31 views

CVE-2022-29879

A vulnerability has been identified in SICAM T All versions V3.0. The web based management interface of affected devices does not employ special access protection for certain internal developer views. This could allow authenticated users to access critical device information...

6.5CVSS0.00782EPSS
Exploits0References3
NVD
NVD
added 2022/05/20 1:15 p.m.30 views

CVE-2022-29881

A vulnerability has been identified in SICAM T All versions V3.0. The web based management interface of affected devices does not employ special access protection for certain internal developer views. This could allow unauthenticated users to extract internal configuration details...

6.9CVSS0.00993EPSS
Exploits0References3
NVD
NVD
added 2022/05/20 1:15 p.m.26 views

CVE-2022-29882

A vulnerability has been identified in SICAM T All versions V3.0. Affected devices do not handle uploaded files correctly. An unauthenticated attacker could take advantage of this situation to store an XSS attack, which could - when a legitimate user accesses the error logs - perform arbitrary...

7.1CVSS0.00804EPSS
Exploits0References3
NVD
NVD
added 2022/05/20 1:15 p.m.20 views

CVE-2022-29872

A vulnerability has been identified in SICAM T All versions V3.0. Affected devices do not properly validate parameters of POST requests. This could allow an authenticated attacker to set the device to a denial of service state or to control the program counter and, thus, execute arbitrary code on...

8.8CVSS0.01371EPSS
Exploits0References3
Rows per page
Query Builder