16 matches found
Automated Logic Zone Controllers 安全漏洞
Automated Logic Zone Controllers is a hardware controller in a building automation system from Automated Logic USA. A security vulnerability exists in Automated Logic Zone Controllers that stems from the BACnet protocol causing the device to crash and may require manual power cycling to recover...
EUVD-2024-31887
Malicious code in bioql PyPI...
CVE-2024-3297 Session establishment lock-up during replay of CASE Sigma1 messages
An issue in the Certificate Authenticated Session Establishment CASE protocol for establishing secure sessions between two devices, as implemented in the Matter protocol versions before Matter 1.1 allows an attacker to replay manipulated CASE Sigma1 messages to make the device unresponsive...
Important: Red Hat Security Advisory: Fence Agents Remediation Operator 0.2.1 security update
This is an updated version for the fence-agents-remediation-operator-bundle-container and the fence-agents-remediation-operator-container. It is now available for Fence Agents Remediation 0.2 for RHEL 8. Red Hat Product Security has rated this update as having a security impact of Important. A...
Siemens LOGO! 8 BM Devices Improper Input Validation (CVE-2022-36362)
A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions. Affected devices do not conduct certain validations when interacting with them. This could allow an unauthenticated remote attacker to manipulate the devices IP address, which means the device would not be...
Siemens LOGO! 8 BM Input Validation Error Vulnerability (CNVD-2022-89766)
A security vulnerability exists in Siemens LOGO! 8 BM, a programming software for industrial environments for the Windows platform from Siemens, Germany, which stems from the fact that certain authentication is not performed when interacting with them. An unauthenticated remote attacker could...
CVE-2022-36362
A vulnerability has been identified in LOGO! 12/24RCE 6ED1052-1MD08-0BA1 All versions, LOGO! 12/24RCE 6ED1052-1MD08-0BA2 All versions, LOGO! 12/24RCEo 6ED1052-2MD08-0BA1 All versions, LOGO! 12/24RCEo 6ED1052-2MD08-0BA2 All versions, LOGO! 230RCE 6ED1052-1FB08-0BA1 All versions, LOGO! 230RCE...
Design/Logic Flaw
A vulnerability has been identified in LOGO! 12/24RCE All versions, LOGO! 12/24RCE All versions, LOGO! 12/24RCEo All versions, LOGO! 12/24RCEo All versions, LOGO! 230RCE All versions, LOGO! 230RCE All versions, LOGO! 230RCEo All versions, LOGO! 230RCEo All versions, LOGO! 24CE All versions, LOGO!...
CVE-2022-36362
A vulnerability has been identified in LOGO! 12/24RCE 6ED1052-1MD08-0BA1 All versions, LOGO! 12/24RCE 6ED1052-1MD08-0BA2 All versions, LOGO! 12/24RCEo 6ED1052-2MD08-0BA1 All versions, LOGO! 12/24RCEo 6ED1052-2MD08-0BA2 All versions, LOGO! 230RCE 6ED1052-1FB08-0BA1 All versions, LOGO! 230RCE...
Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20180313) (Meltdown) (Spectre)
Security Fixes : - hw: cpu: speculative execution branch target injection s390-only CVE-2017-5715, Important - hw: cpu: speculative execution bounds-check bypass s390 and powerpc CVE-2017-5753, Important - hw: cpu: speculative execution permission faults handling powerpc-only CVE-2017-5754 Bug...
D-Link Dl-704 2.56 b5 IP Fragment Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3306/info The DLink Dl-704 is a DSL/Cable router and switch designed for home network use. A problem has been discovered in the Dl-704 router. Upon receiving a high amount of fragmented IP packets, the router begins to...
Arecont Vision model AV1355DN camera vulnerable to denial of service
Overview The Arecont Vision model AV1355DN MegaDome surveillance camera is reported to be affected by a denial-of-service vulnerability by sending a UDP packet to port 69 on the device. Description The Arecont Vision model AV1355DN MegaDome surveillance camera is reported to be affected by a...
The Five Key Things to Know About the Security of Your Networking Gear
Measuring the performance and security of your network equipment has never been more important than it is today. While there will always be tradeoffs between maximum throughput and maximum security, I want to emphasize the “and” in “performance and security.” Your devices must perform while...
Cisco IOS Malicious IPV4 Packet Sequence Denial Of Service Vulnerability
Description A denial of service vulnerability has been reported to exist in all hardware platforms that run Cisco IOS versions 11.x through 12.x. This issue may be triggered by a sequence of specifically crafted IPV4 packets. A power cycling of an affected device is required to regain normal...
Belkin F5D6130 Wireless Network Access Point SNMP Request Denial Of Service Vulnerability
Just picked one of these AP's up the other day and during a quick fiddle noticed a remote DoS. It is possible to disable the Belkin F5D6130 802.11b AP by issuing a small number of SNMP GetNextRequest requests to the AP. The attack results in the AP dropping all wireless connections and ceasing to...
D-Link Dl-704 2.56 b5 - IP Fragment Denial of Service
D-Link Dl-704 2.56 b5 - IP Fragment Denial of Service // source: https://www.securityfocus.com/bid/3306/info The DLink Dl-704 is a DSL/Cable router and switch designed for home network use. A problem has been discovered in the Dl-704 router. Upon receiving a high amount of fragmented IP packets,...