27 matches found
EUVD-2018-8978
Malware in sbrugna...
EUVD-2018-8979
Malware in sbrugna...
EUVD-2018-12667
Malware in sbrugna...
EUVD-2018-8980
Malware in sbrugna...
CVE-2024-40395
An Insecure Direct Object Reference IDOR in PTC ThingWorx v9.5.0 allows attackers to view sensitive information, including PII, regardless of access level...
CVE-2024-40395
An Insecure Direct Object Reference IDOR in PTC ThingWorx v9.5.0 allows attackers to view sensitive information, including PII, regardless of access level...
CVE-2024-40395
An Insecure Direct Object Reference IDOR in PTC ThingWorx v9.5.0 allows attackers to view sensitive information, including PII, regardless of access level...
CVE-2024-40395
An Insecure Direct Object Reference IDOR in PTC ThingWorx v9.5.0 allows attackers to view sensitive information, including PII, regardless of access level...
CVE-2024-40395
CVE-2024-40395 : Concrete details across multiple connected sources confirm an Insecure Direct Object Reference (IDOR) in PT C ThingWorx v9.5.0 that lets an attacker view sensitive information, including PII, regardless of access level. The root cause is an IDOR in ThingWorx 9.5.0; impact is expo...
SRC-2023-0001 : PTC Thingworx Edge C-SDK twHeader_fromStream Integer Overflow Remote Code Execution Vulnerability
Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PTC Thingworx Edge C-SDK. Authentication is not required to exploit this vulnerability. The specific flaw exists within the twHeaderfromStream function. An integer wrap occurs...
PTC OPC UA Server Multiple vulnerabilities
Binary data ptcopcuamultivulns.nbin...
CVE-2018-20092
PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory traversal attack on ZIP files via a POST request...
Directory traversal
PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory traversal attack on ZIP files via a POST request...
CVE-2018-20092
PTC ThingWorx Platform through 8.3.0 is vulnerable to a directory traversal attack on ZIP files via a POST request...
CVE-2018-20092
CVE-2018-20092 affects PTC ThingWorx Platform up to version 8.3.0. The vulnerability is a directory traversal flaw in ZIP file handling via a POST request. The underlying impact, as stated, is partial confidentiality with no other impacts (integrity/availability not affected) and no user interact...
PTC ThingWorx Password Disclosure / Cross Site Scripting Vulnerabilities
PTC ThingWorx suffers from cross site scripting and password disclosure vulnerabilities. Versions affected include 6.5 through 7.4, 8.0.x, 8.1.x, and 8.2.x. ======================================================================= title: Password disclosure vulnerability & XSS product: PTC ThingWor...
Design/Logic Flaw
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is password hash exposure to privileged users...
CVE-2018-17216
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is password hash exposure to privileged users...
CVE-2018-17218
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is reflected XSS in the SQUEAL search function...
Hardcoded credentials
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is a hardcoded encryption key...