Lucene search
K

594 matches found

Cvelist
Cvelist
added 2024/10/10 12:21 p.m.12 views

CVE-2024-6157

An attacker who successfully exploited these vulnerabilities could cause the robot to stop. A vulnerability exists in the PROFINET stack included in the RobotWare versions listed below. This vulnerability arises under specific condition when specially crafted message is processed by the system...

5.1CVSS0.0015EPSS
Exploits0References1
CNVD
CNVD
added 2024/06/12 12:0 a.m.9 views

Siemens SINEC Traffic Analyzer Session Expires Insufficiently Vulnerable

SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. Siemens SINEC Traffic Analyzer suffers from an insufficient session...

8.8CVSS7.1AI score0.00328EPSS
Exploits0References1
CNVD
CNVD
added 2024/06/12 12:0 a.m.4 views

Siemens SINEC Traffic Analyzer Cross-Site Request Forgery Vulnerability

SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. A cross-site request forgery vulnerability exists in Siemens SINEC...

8.5CVSS6.9AI score0.00155EPSS
Exploits0References1
CNVD
CNVD
added 2024/06/12 12:0 a.m.4 views

Hazardous Method or Function Vulnerability Exposed by Siemens SINEC Traffic Analyzer

SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. Siemens SINEC Traffic Analyzer has an exposed dangerous method or...

7.5CVSS6.9AI score0.0032EPSS
Exploits0References1
CNVD
CNVD
added 2024/06/12 12:0 a.m.6 views

Siemens SINEC Traffic Analyzer Sensitive Information Plaintext Transfer Vulnerability

SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. Siemens SINEC Traffic Analyzer suffers from a sensitive information...

7.5CVSS6.5AI score0.00149EPSS
Exploits0References1
CNVD
CNVD
added 2024/06/12 12:0 a.m.4 views

Siemens SINEC Traffic Analyzer Input Validation Error Vulnerability

SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. An input validation error vulnerability exists in Siemens SINEC Traffi...

7.5CVSS7AI score0.00345EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/11 12:0 a.m.4 views

Siemens SINEC Traffic Analyzer 跨站请求伪造漏洞

SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. A cross-site request forgery vulnerability exists in Siemens SINEC...

8.5CVSS6.9AI score0.00155EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/06/11 12:0 a.m.6 views

Siemens SINEC Traffic Analyzer 代码问题漏洞

SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. Siemens SINEC Traffic Analyzer suffers from an insufficient session...

8.8CVSS7AI score0.00328EPSS
Exploits0References3
CNVD
CNVD
added 2024/03/27 12:0 a.m.4 views

Discovery and Basic Configuration Protocol Access Control Error Vulnerability

Discovery and Basic Configuration Protocol is a discovery and basic configuration protocol used by engineering tools and controllers to discover devices, identify device information, and configure device settings such as PROFINET device names, IP addresses, and so on in a PROFINET network. An...

7AI score
Exploits0References1
OSV
OSV
added 2024/02/26 4:27 p.m.3 views

CVE-2023-49960

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint...

7.5CVSS5.9AI score0.00664EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/02/26 4:27 p.m.2 views

CVE-2023-49959

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...

9.8CVSS6.2AI score0.01379EPSS
Exploits0References3
OSV
OSV
added 2024/02/26 4:27 p.m.3 views

CVE-2023-49959

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...

9.8CVSS6.1AI score0.01379EPSS
Exploits0References2
Prion
Prion
added 2024/02/26 4:27 p.m.14 views

Command injection

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...

8.4AI score0.01379EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/26 12:0 a.m.4 views

Indu-Sol PROFINET-INspektor NT Security Vulnerability

The Indu-Sol PROFINET-INspektor NT is an analysis and test set for PROFINET communication verification, acceptance, quality checking and monitoring from Indu-Sol, Germany. A security vulnerability exists in Indu-Sol PROFINET-INspektor NT version 2.4.0 and earlier, which stems from a command...

9.8CVSS8.2AI score0.01379EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/26 12:0 a.m.15 views

CVE-2023-49960

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint...

7.1AI score0.00664EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/26 12:0 a.m.11 views

CVE-2023-49959

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...

8.4AI score0.01379EPSS
Exploits0References2
CVE
CVE
added 2024/02/26 12:0 a.m.3440 views

CVE-2023-49960

CVE-2023-49960 affects Indo-Sol PROFINET-INspektor NT up to version 2.4.0. A path-traversal in the firmware’s httpuploadd service allows remote attackers to write arbitrary files via a crafted filename parameter in requests to the /upload endpoint. Connected sources confirm the details and indica...

7.5CVSS7.1AI score0.00664EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/02/26 12:0 a.m.12 views

CVE-2023-49959

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...

8.3AI score0.01379EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/26 12:0 a.m.12 views

CVE-2023-49960

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint...

7.4AI score0.00664EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/26 12:0 a.m.5 views

Indu-Sol PROFINET-INspektor NT Security Vulnerability

The Indu-Sol PROFINET-INspektor NT is an analysis and test set for PROFINET communication verification, acceptance, quality checking and monitoring from Indu-Sol, Germany. A security vulnerability exists in Indu-Sol PROFINET-INspektor NT version 2.4.0 and earlier, which stems from a path traversa...

7.5CVSS7AI score0.00664EPSS
Exploits0References3
Rows per page
Query Builder