Lucene search
K

8 matches found

BDU FSTEC
BDU FSTEC
added 2025/01/27 12:0 a.m.4 views

The vulnerability of microprogrammed software in PLANET Technology switches arises from the failure to take measures to neutralize special elements, allowing attackers to execute arbitrary code.

The vulnerability of PLANET Technology’s microprogrammed software exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created malicious HTTP request...

10CVSS8.6AI score0.02341EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/15 12:0 a.m.4 views

PT-2024-10297 · Planet Technology · Planet Switches

Name of the Vulnerable Software and Affected Versions: Planet Switches affected versions not specified Description: The issue exists due to the lack of measures to neutralize special elements in the firmware of PLANET Technology switches. An unauthenticated attacker could send commands through a...

9.8CVSS10AI score0.02341EPSS
Exploits0References19
OSV
OSV
added 2024/09/30 7:15 a.m.4 views

CVE-2024-8449

Certain switch models from PLANET Technology have a Hard-coded Credential in the password recovering functionality, allowing an unauthenticated attacker to connect to the device via the serial console and use this credential to reset any user's password...

6.8CVSS5.8AI score0.0026EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/30 12:0 a.m.2 views

PLANET switch devices 安全漏洞

PLANET switch devices are a series of switch devices from PLANET China. A security vulnerability exists in PLANET switch devices that stems from the fact that the SNMPv3 service only supports outdated authentication protocols and encryption protocols, allowing an attacker to potentially obtain...

7.5CVSS6.9AI score0.00174EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/09/30 12:0 a.m.3 views

PLANET switch devices 信任管理问题漏洞

PLANET switch devices are a series of switch devices from PLANET Corporation in China. A trust management issue vulnerability exists in PLANET switch devices, which originates from a hard-coded group string in the SNMPv1 service, allowing unauthorized remote attackers to use this group string to...

9.8CVSS9.2AI score0.00373EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/09/30 12:0 a.m.3 views

PLANET switch devices 跨站脚本漏洞

PLANET switch devices are a series of switch devices from the Chinese company PLANET. A cross-site scripting vulnerability exists in PLANET switch devices, which stems from improper validation of web application parameters and is susceptible to stored cross-site scripting attacks...

4.8CVSS5.9AI score0.00284EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/09/30 12:0 a.m.4 views

PLANET switch devices 访问控制错误漏洞

PLANET switch devices are a series of switch devices from PLANET Corporation in China. An access control error vulnerability exists in PLANET switch devices, which stems from a lack of proper access control for the firmware upload and download functions, allowing an unauthenticated, remote attack...

9.8CVSS7.2AI score0.00579EPSS
Exploits0References3
securityvulns
securityvulns
added 2003/11/14 12:0 a.m.33 views

Planet switches - 2 серия

Добрый день. Если помните, http://www.security.nnov.ru/search/news.asp?binid=3174 Та же "закладка" присутствует в Planet WSW-2401. Тот же пользователь, тот же пароль. Проблема усугубляется тем, что управляющий IP-интерфейс доступен через ЛЮБОЙ 802.1q-VLAN, присутствующий в свитче. Это касается и...

7.2AI score
Exploits0
Rows per page
Query Builder