18 matches found
EUVD-2020-24945
Malware in sbrugna...
EUVD-2017-1181
Malware in sbrugna...
EUVD-2024-34472
Malicious code in bioql PyPI...
Siemens Teamcenter
SUMMARY The SSO login service in Teamcenter contains an open redirect vulnerability that could allow an attacker to redirect the legitimate user to an attacker-chosen URL to steal valid session data. Siemens has released a new version for Teamcenter and recommends to update to the latest...
Siemens Teamcenter Visualization and JT2Go
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
Siemens PS/IGES Parasolid Translator Component
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
Siemens SIMATIC and SIPLUS Products
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
Siemens SIMATIC S7-1500
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
Siemens SIMATIC IPCs
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
Siemens RUGGEDCOM ROS
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
CVE-2023-0425 Buffer overflow in global memory region
ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vulnerabilities in the product versions under maintenance. An attacker who successfully exploited one or more of these vulnerabilities could cause the product to stop or make th...
Vulnerabilities fixed in several Autodesk products
Autodesk has fixed vulnerabilities in several products. A malicious party can exploit the vulnerabilities to execute arbitrary code execute arbitrary code within the vulnerable application by injecting a rogue pskernel.dll. Inserting such a rogue .dll file requires social engineering, or...
JetBrains Security Bulletin Q1 2019
FYI Security JetBrains Security Bulletin Q1 2019 Robert Demmer This bulletin summarizes the security vulnerabilities detected in JetBrains products and remediated in the first quarter of 2019. These include issues reported by Jonathan Leitschuh potentially exposing a product user or a project’s...
Vulnerability disclosure buzzword bingo!
Play Buzzword Bingo With Us! In the last 5 or so years of research we’ve found a substantial number of products with vulnerabilities in their supporting apps and infrastructure, as well as in the devices themselves. Some were low-impact, some were just curiosities, but many critical flaws exposin...
CVE-2016-4692
An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of...
Cisco Warning of CSRF, XSS Vulnerabilities
UPDATE Cisco is warning users this week that several of its products — routers, gateways, and data center platforms — suffer from vulnerabilities, including one critical one. Cisco warned about the most pressing issue, a critical vulnerability in its Prime Collaboration Assurance software, shortl...
Multiple D-link Product Security Bypass Vulnerabilities
D-link specializes in the design and development of hardware products for wireless networks and Ethernet circuits. A security vulnerability exists in multiple D-link products that allows an attacker to exploit the vulnerability to bypass authentication mechanisms and gain unauthorized access...