13 matches found
EUVD-2023-50358
Malicious code in bioql PyPI...
EUVD-2023-50357
Malicious code in bioql PyPI...
CVE-2023-46097
A vulnerability has been identified in SIMATIC PCS neo All versions V4.1. The PUD Manager of affected products does not properly neutralize user provided inputs. This could allow an authenticated adjacent attacker to execute SQL statements in the underlying database...
CVE-2023-46097
A vulnerability has been identified in SIMATIC PCS neo All versions V4.1. The PUD Manager of affected products does not properly neutralize user provided inputs. This could allow an authenticated adjacent attacker to execute SQL statements in the underlying database...
CVE-2023-46097
A vulnerability has been identified in SIMATIC PCS neo All versions V4.1. The PUD Manager of affected products does not properly neutralize user provided inputs. This could allow an authenticated adjacent attacker to execute SQL statements in the underlying database...
CVE-2023-46096
A vulnerability has been identified in SIMATIC PCS neo All versions V4.1. The PUD Manager of affected products does not properly authenticate users in the PUD Manager web service. This could allow an unauthenticated adjacent attacker to generate a privileged token and upload additional documents...
CVE-2023-46096
A vulnerability has been identified in SIMATIC PCS neo All versions V4.1. The PUD Manager of affected products does not properly authenticate users in the PUD Manager web service. This could allow an unauthenticated adjacent attacker to generate a privileged token and upload additional documents...
Design/Logic Flaw
A vulnerability has been identified in SIMATIC PCS neo All versions V4.1. The PUD Manager of affected products does not properly authenticate users in the PUD Manager web service. This could allow an unauthenticated adjacent attacker to generate a privileged token and upload additional documents...
Design/Logic Flaw
A vulnerability has been identified in SIMATIC PCS neo All versions V4.1. The PUD Manager of affected products does not properly neutralize user provided inputs. This could allow an authenticated adjacent attacker to execute SQL statements in the underlying database...
CVE-2023-46097
A vulnerability has been identified in SIMATIC PCS neo All versions V4.1. The PUD Manager of affected products does not properly neutralize user provided inputs. This could allow an authenticated adjacent attacker to execute SQL statements in the underlying database...
CVE-2023-46097
SIMATIC PCS neo SQL Injection (CVE-2023-46097) affects all versions prior to V4.1. The PUD Manager does not properly neutralize user inputs, allowing an authenticated adjacent attacker to execute SQL statements in the underlying database. Evidence in connected sources confirms the vulnerability a...
CVE-2023-46096
A vulnerability has been identified in SIMATIC PCS neo All versions V4.1. The PUD Manager of affected products does not properly authenticate users in the PUD Manager web service. This could allow an unauthenticated adjacent attacker to generate a privileged token and upload additional documents...
PT-2023-6999 · Siemens · Simatic Pcs Neo
Name of the Vulnerable Software and Affected Versions: SIMATIC PCS neo versions prior to V4.1 Description: A vulnerability has been identified in the PUD Manager of SIMATIC PCS neo, where it does not properly neutralize user-provided inputs. This could allow an authenticated adjacent attacker to...