7 matches found
CVE-2022-41648
The HEIDENHAIN Controller TNC 640 NC software Version 340590 07 SP5, is vulnerable to improper authentication in its DNC communication for CNC machines. Authentication is not enabled by default for DNC communication. This vulnerability may allow an attacker to deny service on the production line,...
Authentication flaw
Missing authentication for critical function exists in Seiko Solutions SkyBridge series, which may allow a remote attacker to obtain or alter the setting information of the product or execute some critical functions without authentication, e.g., rebooting the product. Affected products and versio...
CVE-2022-41648
The HEIDENHAIN Controller TNC 640 NC software Version 340590 07 SP5, is vulnerable to improper authentication in its DNC communication for CNC machines. Authentication is not enabled by default for DNC communication. This vulnerability may allow an attacker to deny service on the production line,...
Authentication flaw
The HEIDENHAIN Controller TNC 640, version 340590 07 SP5, running HEROS 5.08.3 controlling the HARTFORD 5A-65E CNC machine is vulnerable to improper authentication, which may allow an attacker to deny service to the production line, steal sensitive data from the production line, and alter any...
CVE-2022-41648
The CVE-2022-41648 vulnerability affects HEIDENHAIN Controller TNC 640 (software Version 340590 07 SP5, running HEROS 5.08.3) used in CNC/HARTFORD 5A-65E configurations. It is described as an improper authentication flaw in DNC communication that is not enabled by default, allowing potential remo...
HEIDENHAIN TNC 640 授权问题漏洞
The HEIDENHAIN TNC 640 is a machine tool controller from HEIDENHAIN. An authorization issue vulnerability exists in the HEIDENHAIN TNC 640 version 340590 07 SP5 that stems from vulnerability to incorrect authentication, which could allow an attacker to deny service to the production line, steal...
WordPress Plugin Ultimate Product Catalogue 3.1.2 - Multiple Persistent Cross-Site Scripting Cross-Site Request Forgery Arbitrary File Upload Vulnerabilities
WordPress Plugin Ultimate Product Catalogue 3.1.2 - Multiple Persistent Cross-Site Scripting Cross-Site Request Forgery Arbitrary File Upload Vulnerabilities Exploit Title: Multiple Persistent XSS & CSRF & File Upload on Ultimate Product Catalogue 3.1.2 Google Dork: inurl:"SingleProduct"...