EUVD-2023-35488

Malicious code in bioql PyPI...

EUVD-2023-35485

Malicious code in bioql PyPI...

CVE-2023-31171

An Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See...

Sql injection

An Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See...

CVE-2023-31172 Incomplete Filtering of Special Elements

An Incomplete Filtering of Special Elements vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated...

CVE-2023-31172

The CVE-2023-31172 issue affects Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software up to version 7.1.3.0. The vulnerability stems from incomplete filtering of certain elements, which could permit an attacker to embed commands that could be executed by an authorized device...

CVE-2023-31171 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

An Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See...

CVE-2023-31171

CVE-2023-31171 affects SEL-5030 acSELerator QuickSet Software up to 7.1.3.0. Root cause: Improper Neutralization of Special Elements in SQL commands (SQL injection) that could allow an attacker to cause arbitrary code execution on the engineering workstation. Exploitation vector described in conn...

CVE-2023-31170

SEL-5030 acSELerator QuickSet Software is affected up to version 7.1.3.0 by CVE-2023-31170, described as an Inclusion of Functionality from Untrusted Control Sphere issue. The vulnerability could allow an attacker to embed instructions that could be executed by an authorized device operator. Conn...

CVE-2023-31170 Inclusion of Functionality from Untrusted Control Sphere

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and...

CVE-2023-31169 Improper Handling of Unicode Encoding

An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated...

CVE-2023-31169 Improper Handling of Unicode Encoding

An Improper Handling of Unicode Encoding vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated...

CVE-2023-31169

Summary (CVE-2023-31169) : The issue is an improper handling of Unicode encoding in Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software, affecting versions up to 7.1.3.0. The vulnerability could allow an attacker to embed instructions that could be executed by an authorized...

CVE-2023-31168

The CVE-2023-31168 issue affects Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software up to version 7.1.3.0. Root cause: Inclusion of Functionality from Untrusted Control Sphere, enabling an attacker to embed instructions that could be executed by an authorized device operat...

CVE-2023-31168 Inclusion of Functionality from Untrusted Control Sphere

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and...