Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2025-10336

Malicious code in bioql PyPI...

6.9CVSS5.5AI score0.0035EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/04/10 9:3 a.m.6 views

CVE-2024-41792

A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager All versions. The web interface of affected devices contains a path traversal vulnerability. This could allow an unauthenticated attacker it to access arbitrary files on the device with root privileges...

9.2CVSS7.2AI score0.00601EPSS
Exploits0References1
NVD
NVDadded 2025/04/08 9:15 a.m.6 views

CVE-2024-41796

A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager All versions. The web interface of affected devices allows to change the login password without knowing the current password. In combination with a prepared CSRF attack CVE-2024-41795 an unauthenticated attacker could be able...

6.9CVSS0.0035EPSS
Exploits0References1
CVE
CVEadded 2025/04/08 8:22 a.m.49 views

CVE-2024-41795

The CVE concerns Siemens SENTRON 7KT PAC1260 Data Manager (All versions) whose web interface is vulnerable to CSRF, enabling an unauthenticated attacker to alter device settings by tricking an admin into a malicious link. Several connected sources corroborate that the vulnerability involves chang...

6.9CVSS7.4AI score0.00342EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/04/08 8:22 a.m.4 views

CVE-2024-41793

A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager All versions. The web interface of affected devices provides an endpoint that allows to enable the ssh service without authentication. This could allow an unauthenticated remote attacker to enable remote access to the device...

8.6CVSS7.3AI score0.00233EPSS
Exploits0References1
CVE
CVEadded 2025/04/08 8:22 a.m.45 views

CVE-2024-41792

CVE-2024-41792 affects Siemens SENTRON 7KT PAC1260 Data Manager (All versions). The vulnerability is a path traversal issue in the device’s web interface that allows an unauthenticated attacker to access arbitrary files with root privileges, due to improper input filtering in GET/POST handling. S...

9.2CVSS7.4AI score0.00601EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/04/08 8:22 a.m.7 views

CVE-2024-41790

A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager All versions. The web interface of affected devices does not sanitize the region parameter in specific POST requests. This could allow an authenticated remote attacker to execute arbitrary code with root privileges...

9.4CVSS0.00548EPSS
Exploits0References1
CVE
CVEadded 2025/04/08 8:22 a.m.49 views

CVE-2024-41789

Siemens SENTRON 7KT PAC1260 Data Manager (all versions) is affected by an OS command injection vulnerability caused by inadequate sanitization of the language parameter in certain POST requests, enabling an authenticated attacker to execute arbitrary code with root privileges. Multiple sources (N...

9.4CVSS8AI score0.00548EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2025/04/08 12:0 a.m.20 views

Siemens SENTRON 7KT PAC1260 Data Manager 操作系统命令注入漏洞

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens Germany. The Siemens SENTRON 7KT PAC1260 Data Manager suffers from an OS command injection vulnerability that stems from not cleaning up the language parameter of a specific POST request,...

9.4CVSS8.3AI score0.00548EPSS
Exploits0References3
Rows per page
Query Builder