CVE-2025-41723 Sauter: Directory Traversal in importFile SOAP Method

The importFile SOAP method is vulnerable to a directory traversal attack. An unauthenticated remote attacker bypass the path restriction and upload files to arbitrary locations...

Sauter modu680-AS 信任管理问题漏洞

Sauter modu680-AS is a modular automation station cum web server from Sauter, Switzerland. A trust management issue vulnerability exists in Sauter modu680-AS, which stems from the use of hard-coded certificates to verify the authenticity of SOAP messages, which could lead to private key disclosur...

Sauter modu680-AS 命令注入漏洞

Sauter modu680-AS is a modular automation station cum web server from Sauter, Switzerland. A command injection vulnerability exists in Sauter modu680-AS that stems from improper neutralization of special elements when adding password-protected self-signed certificates, which could allow an elevat...

SAUTER多款产品 安全漏洞

SAUTER EY-modulo 5 Building Automation Station is a complete building management solution from SAUTER.Sauter modu680-AS is a modular automation station cum web server from Sauter, Switzerland. A security vulnerability exists in several SAUTER products. The vulnerability stems from the importFile...

Sauter modu680-AS 安全漏洞

Sauter modu680-AS is a modular automation station cum web server from Sauter, Switzerland. A security vulnerability exists in the Sauter modu680-AS that originates from a low-privileged remote attacker who can corrupt the web server user store on the appliance by setting a series of unsupported...

Sauter modu680-AS 安全漏洞

Sauter modu680-AS is a modular automation station cum web server from Sauter, Switzerland. A security vulnerability exists in Sauter modu680-AS, which stems from validating only file extensions and could lead to the upload of arbitrary data by a low-privileged remote attacker...

EUVD-2015-7812

Malware in sbrugna...

EUVD-2015-7814

Malware in sbrugna...

EUVD-2016-1409

Malware in sbrugna...

EUVD-2015-7813

Malware in sbrugna...

EUVD-2023-12155

Malicious code in bioql PyPI...

sauter-controls.com Cross Site Scripting vulnerability OBB-3342566

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

sauter-building-control.ch Cross Site Scripting vulnerability OBB-3335164

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

SAUTER EY-modulo 5 Building Automation Stations

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: SAUTER Equipment: EY-modulo 5 Building Automation Stations Vulnerabilities: Cross-site Scripting, Cleartext Transmission of Sensitive Information, and Unrestricted Upload of File with Dangerous Type 2...

SAUTER EY-modulo 5 Building Automation Station 代码问题漏洞

SAUTER EY-modulo 5 Building Automation Station is a complete building management solution from SAUTER. A security vulnerability exists in SAUTER EY-modulo 5 Building Automation Station. An authenticated attacker could exploit the vulnerability to upload a malicious image, resulting in a denial of...

SAUTER EY-modulo 5 Building Automation Station 跨站脚本漏洞

SAUTER EY-modulo 5 Building Automation Station is a complete building management solution from SAUTER. A security vulnerability exists in SAUTER EY-modulo 5 Building Automation Station. An attacker can exploit the vulnerability to execute malicious JavaScript in the target's security environment...

SAUTER EY-modulo 5 Building Automation Station 跨站脚本漏洞

SAUTER EY-modulo 5 Building Automation Station is a complete building management solution from SAUTER. A security vulnerability exists in SAUTER EY-modulo 5 Building Automation Station. An attacker can exploit the vulnerability to force all authenticated users to perform unauthorized actions by...

SAUTER EY-modulo 5 Building Automation Station 跨站脚本漏洞

SAUTER EY-modulo 5 Building Automation Station is a complete building management solution from SAUTER. A security vulnerability exists in SAUTER EY-modulo 5 Building Automation Station. An attacker could use this vulnerability to elevate privileges or perform unauthorized actions in the target...

SAUTER EY-modulo 5 Building Automation Station 安全漏洞

SAUTER EY-modulo 5 Building Automation Station is a complete building management solution from SAUTER. A security vulnerability exists in SAUTER EY-modulo 5 Building Automation Station, which results from sensitive information being transmitted in clear text...

CVE-2023-0053

SAUTER Controls Nova 200–220 Series with firmware version 3.3-006 and prior and BACnetstac version 4.2.1 and prior have only FTP and Telnet available for device management. Any sensitive information communicated through these protocols, such as credentials, is sent in cleartext. An attacker could...