Lucene search
+L

310 matches found

CVE
CVE
added 2022/10/14 12:0 a.m.62 views

CVE-2022-38980

CVE-2022-38980 describes a heap overflow in the Huawei HarmonyOS HwAirlink module when processing data packets of its proprietary protocol. The vulnerability could allow an attacker to obtain process control permissions, as indicated by the provided descriptions. The available connected documents...

9.8CVSS9.4AI score0.0051EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2022/10/11 12:0 a.m.55 views

Unspecified Vulnerability in Wyse ThinOS

Wyse ThinOS is a specialized operating system for Dell servers from Dell USA. A security vulnerability exists in Wyse ThinOS that stems from the inclusion of a regular expression denial of service vulnerability in the UI, which can be exploited by an administrator privileged attacker to cause a...

6.8CVSS5.2AI score0.00595EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/06 12:0 a.m.8 views

PT-2022-24862 · Unknown · Loramac-Node

Name of the Vulnerable Software and Affected Versions: LoRaMac-node versions prior to 4.7.0 Description: The issue is caused by improper size validation of incoming radio frames, which can lead to a buffer overflow. Specifically, the function ProcessRadioRxDone expects incoming radio frames to ha...

9.8CVSS9.4AI score0.01492EPSS
Exploits1References5
CNVD
CNVD
added 2022/08/29 12:0 a.m.13 views

Command Execution Vulnerability in the T+ Proprietary Cloud

Smooth T+ Exclusive Cloud is a cloud ERP system that integrates the whole scenario of doing business, managing business and watching business. A command execution vulnerability exists in Smooth Jietong T+ Exclusive Cloud, which can be exploited by an attacker to execute arbitrary commands...

7.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/08/26 10:0 a.m.13 views

Source code of password manager LastPass stolen by attacker

In a security incident notice from LastPass the company informed the public know that an unauthorized party gained access to portions of the LastPass development environment through a single compromised developer account. There is no evidence that this incident involved any access to customer dat...

Exploits0
NVD
NVD
added 2022/07/28 4:15 p.m.25 views

CVE-2022-30313

Honeywell Experion PKS Safety Manager through 2022-05-06 has Missing Authentication for a Critical Function. According to FSCT-2022-0051, there is a Honeywell Experion PKS Safety Manager multiple proprietary protocols with unauthenticated functionality issue. The affected components are...

7.5CVSS0.00767EPSS
Exploits0References2
Prion
Prion
added 2022/07/28 4:15 p.m.19 views

Design/Logic Flaw

Honeywell Experion PKS Safety Manager through 2022-05-06 has Missing Authentication for a Critical Function. According to FSCT-2022-0051, there is a Honeywell Experion PKS Safety Manager multiple proprietary protocols with unauthenticated functionality issue. The affected components are...

5CVSS8AI score0.00767EPSS
Exploits0References2
Microsoft Secure
Microsoft Secure
added 2022/07/28 4:0 p.m.31 views

Industrial systems: What it takes to secure and staff them

The security community is continuously changing, growing, and learning from each other to better position the world against cyberthreats. In the latest post of our Community Voices blog series, Microsoft Security Senior Product Marketing Manager Brooke Lynn Weenig talks with Patrick C. Miller,...

6.9AI score
Exploits0
Cvelist
Cvelist
added 2022/07/28 3:41 p.m.37 views

CVE-2022-30313

Honeywell Experion PKS Safety Manager through 2022-05-06 has Missing Authentication for a Critical Function. According to FSCT-2022-0051, there is a Honeywell Experion PKS Safety Manager multiple proprietary protocols with unauthenticated functionality issue. The affected components are...

8.2AI score0.00767EPSS
Exploits0References2
CVE
CVE
added 2022/07/28 3:41 p.m.98 views

CVE-2022-30313

CVE-2022-30313 affects Honeywell Experion PKS Safety Manager (prior to 2022-05-06). The issue is missing authentication for critical functions in proprietary Safe Builder and Experion TCP (51000/TCP) protocols, enabling unauthenticated access to commands such as IO manipulation, file read/write, ...

7.5CVSS7.9AI score0.00767EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/07/28 3:41 p.m.14 views

CVE-2022-30313

Honeywell Experion PKS Safety Manager through 2022-05-06 has Missing Authentication for a Critical Function. According to FSCT-2022-0051, there is a Honeywell Experion PKS Safety Manager multiple proprietary protocols with unauthenticated functionality issue. The affected components are...

6.9AI score0.00767EPSS
Exploits0References2
NVD
NVD
added 2022/07/26 10:15 p.m.34 views

CVE-2022-29957

The Emerson DeltaV Distributed Control System DCS through 2022-04-29 mishandles authentication. It utilizes several proprietary protocols for a wide variety of functionality. These protocols include Firmware upgrade 18508/TCP, 18518/TCP; Plug-and-Play 18510/UDP; Hawk services 18507/UDP; Managemen...

7.8CVSS0.00212EPSS
Exploits0References2
OSV
OSV
added 2022/07/26 10:15 p.m.6 views

CVE-2022-29957

The Emerson DeltaV Distributed Control System DCS through 2022-04-29 mishandles authentication. It utilizes several proprietary protocols for a wide variety of functionality. These protocols include Firmware upgrade 18508/TCP, 18518/TCP; Plug-and-Play 18510/UDP; Hawk services 18507/UDP; Managemen...

7.8CVSS5.8AI score0.00212EPSS
Exploits0References2
Prion
Prion
added 2022/07/26 10:15 p.m.23 views

Authentication flaw

The Emerson DeltaV Distributed Control System DCS through 2022-04-29 mishandles authentication. It utilizes several proprietary protocols for a wide variety of functionality. These protocols include Firmware upgrade 18508/TCP, 18518/TCP; Plug-and-Play 18510/UDP; Hawk services 18507/UDP; Managemen...

4.3CVSS7.6AI score0.00212EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/07/26 9:14 p.m.37 views

CVE-2022-29957

The Emerson DeltaV Distributed Control System DCS through 2022-04-29 mishandles authentication. It utilizes several proprietary protocols for a wide variety of functionality. These protocols include Firmware upgrade 18508/TCP, 18518/TCP; Plug-and-Play 18510/UDP; Hawk services 18507/UDP; Managemen...

7.8AI score0.00212EPSS
Exploits0References2
CVE
CVE
added 2022/07/26 9:14 p.m.77 views

CVE-2022-29957

The CVE concerns Emerson DeltaV Distributed Control System (DCS) prior to/through 2022-04-29 where authentication is mishandled across multiple proprietary protocols: Firmware upgrade (18508/18518 TCP), Plug‑and‑Play (18510 UDP), Hawk services (18507 UDP), Management (18519 TCP), Cold restart (18...

7.8CVSS7.5AI score0.00212EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2022/06/30 9:7 p.m.76 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.7AI score0.05524EPSS
Exploits2References3
AlmaLinux
AlmaLinux
added 2022/06/30 12:0 a.m.66 views

Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: buffer overflow in IPsec ESP transformation code CVE-2022-27666 kernel: out-of-bounds read in fbcongetfont function CVE-2020-28915 For more details about the security issues, including th...

7.8CVSS7.7AI score0.05524EPSS
Exploits2References6
Rockylinux
Rockylinux
added 2022/06/28 10:52 a.m.59 views

kernel security and bug fix update

An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

7.8CVSS7.7AI score0.05524EPSS
Exploits2
GithubExploit
GithubExploit
added 2022/06/10 11:39 a.m.45 views

Exploit for CVE-2022-1966

It is an exploit module for a vulnerability in a proprietary sof...

8.6AI score
Exploits5
Rows per page
Query Builder