170 matches found
Siemens多款产品 代码问题漏洞
The Siemens RUGGEDCOM RM1224 is a wireless router produced by the German company Siemens. It provides data communication for roaming locations, with the capability to connect via 4G LTE and automatically fall back to 3G UMTS or EVDO cellular networks. Several Siemens products have code...
CVE-2026-31616
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fphonet: fix skb frags overflow in pnrxcomplete A broken/bored/mean USB host can overflow the skbsharedinfo-frags array on a Linux gadget exposing a Phonet function by sending an unbounded sequence of full-page OUT...
WordPress Users manager - PN plugin <= 1.1.15 - Unauthenticated Privilege Escalation via Account Takeover via 'userspn_form_save' AJAX Action vulnerability
WordPress Users manager - PN plugin = 1.1.15 - Unauthenticated Privilege Escalation via Account Takeover via 'userspnformsave' AJAX Action vulnerability discovered by BaroHaf - fpt in WordPress Plugin Users manager – PN versions = 1.1.15...
CVE-2023-7339
Stack-based buffer overflow vulnerability in Softing Industrial Automation GmbH gateways allows overflow buffers. This issue affects pnGate: through 1.30 epGate: through 1.30 mbGate: through 1.30 smartLink HW-DP: through 1.30 smartLink HW-PN: through 1.01...
CVE-2023-7339
Stack-based buffer overflow vulnerability in Softing Industrial Automation GmbH gateways allows overflow buffers. This issue affects pnGate: through 1.30 epGate: through 1.30 mbGate: through 1.30 smartLink HW-DP: through 1.30 smartLink HW-PN: through 1.01...
CVE-2024-14028
CVE-2024-14028 describes a use-after-free vulnerability in Softing smartLink HW-DP and HW-PN webservers that can lead to HTTP DoS. Affected products are smartLink HW-DP up to version 1.31 and HW-PN up to version 1.02. The issue is triggered by a use-after-free in the webserver’s handling of HTTP ...
CVE-2024-14028 Multiple implicit reads in parallel can result in a crash or denial of service
Use after free vulnerability in Softing smartLink HW-DP or smartLink HW-PN webserver allows HTTP DoS. This issue affects: smartLink HW-DP: through 1.31 smartLink HW-PN: before 1.02...
PT-2026-28269
CVE-2024-14028 Use after free vulnerability in Softing smartLink HW-DP or smartLink HW-PN webserver allows HTTP DoS. This issue affects: smartLink HW-DP: through 1.31 smartLink HW-P… https://t.co/xfrfN9Qbrx...
Softing多款产品 安全漏洞
Softing pnGate is a product of the German company Softing. Softing pnGate is a gateway device that enables the conversion between industrial Ethernet and PROFINET network communications. Softing epGate is a communication gateway device that facilitates the conversion of industrial network protoco...
CVE-2025-10461
The CVE-2025-10461 affects Softing Industrial Automation GmbH smartLinks running in Docker (filesystem modules), where improper URL checks enable global file reads. Affected versions: smartLink SW-HT up to 1.42 and smartLink SW-PN up to 1.03. Root cause is insufficient URL validation allowing acc...
CVE-2025-10685 HTTP POST with specific higher content length leads into heap corruption
Heap-based buffer overflow vulnerability in Softing Industrial Automation GmbH smartLink SW-PN and smartLink SW-HT Webserver modules allows overflow buffers.This issue affects: smartLink SW-PN: through 1.03 smartLink SW-HT: through 1.42...
Siemens多款产品 资源管理错误漏洞
Siemens SIMATIC ET 200AL and others are products of Siemens, Germany.Siemens SIMATIC ET 200AL is a distributed I/O system module.Siemens SIMATIC ET 200MP is a modular I/O system module for use in control cabinets for high-density channel applications. Siemens SIMATIC ET 200SP is a distributed I/O...
CVE-2022-50708 HSI: ssi_protocol: fix potential resource leak in ssip_pn_open()
In the Linux kernel, the following vulnerability has been resolved: HSI: ssiprotocol: fix potential resource leak in ssippnopen ssippnopen claims the HSI client's port with hsiclaimport. When hsiregisterportevent gets some error and returns a negetive value, the HSI client's port should be releas...
CVE-2022-50708 HSI: ssi_protocol: fix potential resource leak in ssip_pn_open()
In the Linux kernel, the following vulnerability has been resolved: HSI: ssiprotocol: fix potential resource leak in ssippnopen ssippnopen claims the HSI client's port with hsiclaimport. When hsiregisterportevent gets some error and returns a negetive value, the HSI client's port should be releas...
CVE-2022-50708
The CVE-2022-50708 entry concerns the Linux kernel: HSI ssi_protocol in ssip_pn_open() may leak resources if hsi_register_port_event() fails after hsi_claim_port(). The fix is explicit: release the HSI client port with hsi_release_port() when hsi_register_port_event() errors. Public details acros...
CVE-2025-66575
VeeVPN 1.6.1 contains an unquoted service path vulnerability in the VeePNService that allows remote attackers to execute code during startup or reboot with escalated privileges. Attackers can exploit this by providing a malicious service name, allowing them to inject commands and run as LocalSyst...
CVE-2025-10150
Webserver crash caused by scanning on TCP port 80 in Softing Industrial Automation GmbH gateways and switch.This issue affects smartLink HW-PN: from 1.02 through 1.03 smartLink HW-DP: 1.31...
SmartLink HW-PN和SmartLink HW-DP 安全漏洞
SmartLink HW-PN and SmartLink HW-DP are both edge gateway products for industrial automation from SmartLink USA. A security vulnerability exists in SmartLink HW-PN version 1.03 and earlier and SmartLink HW-DP version 1.31, which stems from a scan of TCP port 80 could cause the web server to crash...
SmartLink HW-PN和SmartLink HW-DP 安全漏洞
SmartLink HW-PN and SmartLink HW-DP are both edge gateway products for industrial automation from SmartLink USA. A security vulnerability exists in SmartLink HW-PN version 1.03 and earlier and SmartLink HW-DP version 1.31, which stems from improper locking and could result in a memory or resource...
EUVD-2007-1140
Malware in sbrugna...