CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Prion•added 2023/04/11 9:15 a.m.•9 views

Xxe

National land numerical information data conversion tool all versions improperly restricts XML external entity references XXE. By processing a specially crafted XML file, arbitrary files on the PC may be accessed by an attacker...

1.9CVSS5.4AI score0.00086EPSS

Exploits0References2

Japan Vulnerability Notes•added 2023/04/04 12:0 a.m.•18 views

JVN#75742861: Improper restriction of XML external entity references (XXE) in National land numerical information data conversion tool

National land numerical information data conversion tool provided by MLIT improperly restricts XML external entity references XXE CWE-611. Impact By processing a specially crafted XML file, arbitrary files on the PC may be accessed by an attacker. Solution Stop using the product The developer...

5.5CVSS5.4AI score0.00086EPSS

Exploits0

NVD•added 2022/03/10 9:15 p.m.•11 views

CVE-2022-24750

UltraVNC is a free and open source remote pc access software. A vulnerability has been found in versions prior to 1.3.8.0 in which the DSM plugin module, which allows a local authenticated user to achieve local privilege escalation LPE on a vulnerable system. The vulnerability has been fixed to...

8.8CVSS0.00139EPSS

Exploits0References3

CVE•added 2017/05/11 10:0 a.m.•77 views

CVE-2017-6865

CVE-2017-6865 is a DoS vulnerability in Siemens PROFINET DCP handling affecting multiple Siemens products (WinCC, STEP 7/TIA Portal, PCS 7, WinAC/WinCC flexible, SCT, SINEMA, SINUMERIK, etc.). The root cause is improper input validation, where specially crafted PROFINET DCP broadcast packets on a...

6.5CVSS6AI score0.00084EPSS

Exploits0References2Affected Software16

ICS•added 2017/05/09 12:0 a.m.•29 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update G)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory...

6.5CVSS6.3AI score0.00084EPSS

Exploits0References42

NVD•added 2003/06/30 4:0 a.m.•8 views

CVE-2003-0415

Remote PC Access Server 2.2 allows remote attackers to cause a denial of service crash by receiving packets from the server and sending them back to the server...

5CVSS6.8AI score0.00886EPSS

Exploits1References3

CVE•added 2003/06/11 4:0 a.m.•38 views

CVE-2003-0415

CVE-2003-0415 affects Remote PC Access Server 2.2. The vulnerability allows a remote attacker to trigger a denial-of-service (crash) by sending packets to the server and having the server send them back to itself. The available description confirms the affected product and the general impact (ava...

5CVSS7.1AI score0.00886EPSS

Exploits1References3Affected Software1

Tenable Nessus•added 2003/05/29 12:0 a.m.•17 views

Remote PC Access Server detection.

The remote host is running Remote PC Access Server. It is, therefore, affected by an information disclosure vulnerability due to the protocol transmitting username and passwords in cleartext. A man-in-the-middle attacker can exploit this to disclose the credentials and then take control of the...

5.6AI score

Exploits0

securityvulns•added 2003/05/29 12:0 a.m.•33 views

Remote PC Access Server 2.2 Vulnerability

Dear Bugtraq Here is a full details information about the vulnerability of Remote PC Access Server 2.2, taken from our advisory includes the exploit code: http://www.ytech.co.il/advisories/rpca/rpcaccess.htm Best Regards, Yaron Tal YTECH.CO.IL -----------------------------------------------------...

0.5AI score

Exploits0

securityvulns•added 2003/05/29 12:0 a.m.•28 views

Remote PC Access Server DoS

Invalid packet causes server to crash...

3.2AI score

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by