15 matches found
EUVD-2023-58356
Malicious code in bioql PyPI...
CVE-2023-6100
A vulnerability classified as problematic was found in Maiwei Safety Production Control Platform 4.1. This vulnerability affects unknown code of the file /api/DataDictionary/GetItemList. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...
CVE-2023-6102
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent.; The manipulation leads to unrestricted upload. It is possible...
The vulnerability of the Opcenter Quality production process management system, the SIMATIC PCS neo technological process management web system, the SINUMERIK Integrate RunMyHMI/Automotive production process automation and management software, and the Totally Integrated Automation Portal (Portal TIA) – all of which are related to insufficient data validation – allow a malicious individual to trigger service failures.
The vulnerabilities of the Opcenter Quality production process management system, the SIMATIC PCS neo technological process management web system, the SINUMERIK Integrate RunMyHMI/Automotive production process automation and management software, and the Totally Integrated Automation Portal Portal...
CVE-2023-6102
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent. The manipulation leads to unrestricted upload. It is possible ...
Design/Logic Flaw
A vulnerability, which was classified as problematic, was found in Maiwei Safety Production Control Platform 4.1. Affected is an unknown function of the file /Content/Plugins/uploader/FileChoose.html?fileUrl=/Upload/File/Pics/&parent. The manipulation leads to unrestricted upload. It is possible ...
CVE-2023-6101
A vulnerability, which was classified as problematic, has been found in Maiwei Safety Production Control Platform 4.1. This issue affects some unknown processing of the file /TC/V2.7/ha.html of the component Intelligent Monitoring. The manipulation leads to information disclosure. The attack may ...
Information disclosure
A vulnerability classified as problematic was found in Maiwei Safety Production Control Platform 4.1. This vulnerability affects unknown code of the file /api/DataDictionary/GetItemList. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...
CVE-2023-6101
CVE-2023-6101 affects Maiwei Safety Production Control Platform 4.1, specifically the Intelligent Monitoring component and the processing of the file /TC/V2.7/ha.html. Descriptions across sources indicate a remotely initiable issue that leads to information disclosure. The vulnerability is public...
CVE-2023-6100 Maiwei Safety Production Control Platform GetItemList information disclosure
A vulnerability classified as problematic was found in Maiwei Safety Production Control Platform 4.1. This vulnerability affects unknown code of the file /api/DataDictionary/GetItemList. The manipulation leads to information disclosure. The attack can be initiated remotely. The exploit has been...
CVE-2023-6100
Maiwei Safety Production Control Platform 4.1 is affected via the /api/DataDictionary/GetItemList API, where manipulation can disclose information. The issue is reported as remote-exploitable with publicly disclosed exploit details. Several connected sources confirm the exact endpoint and impact,...
The vulnerability of the KR C4 production automation control system and the operating system KSS, related to the use of pre-installed account data, allows a perpetrator to gain full access to the vulnerable system.
The vulnerability of the KR C4 production automation control system and the KSS operating system is related to the use of pre-installed account data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain full access to the vulnerable systems...
Denial of Service Vulnerability in GE PACsystem RX7i
PACsystem RX7i is an intelligent platform product from General Electric, often used for production control in steel, aluminum plants, automotive plants, nuclear power, and high-speed production lines. A denial of service vulnerability exists in GE PACsystem RX7i, which can be exploited by attacke...
Buffer Overflows Patched in Yokogawa Control System Products
Patches for critical vulnerabilities in production control system software built by Yokogawa Electric Corp. of Japan are available, according to an advisory issued Tuesday by the Industrial Control System Cyber Emergency Response Team ICS-CERT. The advisory warns that there are publicly available...
Yokogawa Multiple Products Vulnerabilities
OVERVIEW Yokogawa reports that several buffer overflow vulnerabilities affect several of its products. Juan Vazquez of Rapid7 Inc.,Rapid7 Inc., http://www.rapid7.com, web site last accessed May 13, 2014. and independent researcher Julian Vilas Diaz reported to CERT/CC that they identified several...