EUVD-2017-7874

Malware in sbrugna...

EUVD-2023-34278

Malicious code in bioql PyPI...

CVE-2023-2827

SAP Plant Connectivity - version 15.5 PCo or the Production Connector for SAP Digital Manufacturing - version 1.0, do not validate the signature of the JSON Web Token JWT in the HTTP request sent from SAP Digital Manufacturing. Therefore, unauthorized callers from the internal network could send...

The vulnerabilities of SAP Plant Connectivity and Production Connector software components, which are used for managing production operations and processes in SAP Digital Manufacturing, allow attackers to execute arbitrary code.

The vulnerability of SAP Plant Connectivity and Production Connector software components, which are used for managing production operations and processes in SAP Digital Manufacturing, stems from the lack of authentication for a critical function. Exploiting this vulnerability could allow an...

CVE-2023-2827

SAP Plant Connectivity - version 15.5 PCo or the Production Connector for SAP Digital Manufacturing - version 1.0, do not validate the signature of the JSON Web Token JWT in the HTTP request sent from SAP Digital Manufacturing. Therefore, unauthorized callers from the internal network could send...

Design/Logic Flaw

SAP Plant Connectivity - version 15.5 PCo or the Production Connector for SAP Digital Manufacturing - version 1.0, do not validate the signature of the JSON Web Token JWT in the HTTP request sent from SAP Digital Manufacturing. Therefore, unauthorized callers from the internal network could send...

CVE-2023-2827 Missing Authentication in SAP Plant Connectivity and Production Connector for SAP Digital

SAP Plant Connectivity - version 15.5 PCo or the Production Connector for SAP Digital Manufacturing - version 1.0, do not validate the signature of the JSON Web Token JWT in the HTTP request sent from SAP Digital Manufacturing. Therefore, unauthorized callers from the internal network could send...

CVE-2023-2827

CVE-2023-2827 concerns SAP Plant Connectivity (PCo) v15.5 and Production Connector for SAP Digital Manufacturing v1.0, where the JSON Web Token (JWT) in HTTP requests is not validated. Root cause: lack of JWT signature validation enabling unauthorized callers from the internal network to issue se...

CVE-2023-2827 Missing Authentication in SAP Plant Connectivity and Production Connector for SAP Digital

SAP Plant Connectivity - version 15.5 PCo or the Production Connector for SAP Digital Manufacturing - version 1.0, do not validate the signature of the JSON Web Token JWT in the HTTP request sent from SAP Digital Manufacturing. Therefore, unauthorized callers from the internal network could send...

Web和ecto 访问控制错误漏洞

SAP Plant Connectivity is a bridge between devices and MES for exchanging data between standard data sources from SAP, Germany. An access control error vulnerability exists in SAP Plant Connectivity version 15.5 and SAP Digital Manufacturing version 1.0, which stems from not validating JWT...

CVE-2017-16690

A malicious DLL preload attack possible on NwSapSetup and Installation self-extracting program for SAP Plant Connectivity 2.3 and 15.0. It is possible that SAPSetup / NwSapSetup.exe loads system DLLs like DWMAPI.dll located in your Syswow64 / System32 folder from the folder the executable is in a...

CVE-2017-16690

A malicious DLL preload attack possible on NwSapSetup and Installation self-extracting program for SAP Plant Connectivity 2.3 and 15.0. It is possible that SAPSetup / NwSapSetup.exe loads system DLLs like DWMAPI.dll located in your Syswow64 / System32 folder from the folder the executable is in a...

Code injection

A malicious DLL preload attack possible on NwSapSetup and Installation self-extracting program for SAP Plant Connectivity 2.3 and 15.0. It is possible that SAPSetup / NwSapSetup.exe loads system DLLs like DWMAPI.dll located in your Syswow64 / System32 folder from the folder the executable is in a...

CVE-2017-16690

A malicious DLL preload attack possible on NwSapSetup and Installation self-extracting program for SAP Plant Connectivity 2.3 and 15.0. It is possible that SAPSetup / NwSapSetup.exe loads system DLLs like DWMAPI.dll located in your Syswow64 / System32 folder from the folder the executable is in a...

CVE-2017-16690

CVE-2017-16690 describes a DLL preloading vulnerability in SAP Plant Connectivity (NwSapSetup/SAPSetup) where DLLs (e.g., DWMAPI.dll) may be loaded from the executable’s folder rather than system folders. Root cause: the loader uses the local folder before system directories, enabling code execut...

SAP Plant Connectivity Arbitrary Code Execution Vulnerability

SAP Plant Connectivity PCo is a set of next-generation, high-performance production plant connectivity software from SAP, which can communicate with different industrial software platforms. A security vulnerability exists in SAP PCo versions 2.3 and 15.0. A remote attacker could exploit the...

SAP Plant Connectivity拒绝服务漏洞

No description provided by source...

SAP Plant Connectivity Denial of Service Vulnerability

SAP Plant Connectivity PCo is a set of next-generation, high-performance production plant connectivity software from SAP, which can communicate with different industrial software platforms. A security vulnerability exists in the PCo agent of SAP PCo. A remote attacker could exploit this...

CVE-2015-8330

The PCo agent in SAP Plant Connectivity PCo allows remote attackers to cause a denial of service memory corruption and agent crash via crafted xMII requests, aka SAP Security Note 2238619...

Memory corruption

The PCo agent in SAP Plant Connectivity PCo allows remote attackers to cause a denial of service memory corruption and agent crash via crafted xMII requests, aka SAP Security Note 2238619...