Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.10 views

Siemens SCALANCE X-200RNA Switch Devices Improper Input Validation (CVE-2015-6563)

The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITORREQPAMINITCTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafte...

6.4CVSS6.2AI score0.00378EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/04/22 12:0 a.m.40 views

Siemens SIMATIC Devices Out-of-bounds Write (CVE-2023-6931)

A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to achieve local privilege escalation. A perfevent's readsize can overflow, leading to an heap out-of-bounds increment or write in perfreadgroup. This plugin only works with...

7.8CVSS6.7AI score0.00715EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.27 views

Siemens SIMATIC S7-1500 Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2020-0591)

Improper buffer restrictions in BIOS firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

6.7CVSS7AI score0.00308EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.33 views

Siemens (CVE-2021-37716)

A remote buffer overflow vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software versions: Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.2, 8.6.0.8, 8.5.0.12, 8.3.0.15. Aruba has released patches for Aruba SD-WAN Software and Gateways and ArubaOS that addres...

10CVSS7.1AI score0.02409EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.23 views

Siemens SCALANCE Command Injection (CVE-2021-37723)

A remote arbitrary command execution vulnerability was discovered in Aruba Operating System Software versions: Prior to 8.7.1.2, 8.6.0.8, 8.5.0.12, 8.3.0.16. Aruba has released patches for ArubaOS that address this security vulnerability. This plugin only works with Tenable.ot. Please visit...

9CVSS7.2AI score0.03055EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.26 views

Siemens SCALANCE Command Injection (CVE-2021-37720)

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software versions: Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.4, 8.6.0.9, 8.5.0.13, 8.3.0.16, 6.5.4.20, 6.4.4.25. Aruba has released patches for Aruba SD-WAN Software and...

9CVSS7.2AI score0.03055EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2022/06/20 12:0 a.m.355 views

SIEMENS-SINEMA Remote Connect 3.0.1.0-01.01.00.02 Cross Site Scripting

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Reflected Cross Site Scripting product: SIEMENS-SINEMA Remote Connect vulnerable version: =V3.0.1.0-01.01.00.02 fixed version: V3.1.0 CVE number: CVE-2022-29034 impact:...

6.7AI score0.28261EPSS
Exploits3
ICS
ICS
added 2019/09/10 12:0 a.m.84 views

ICSA-19-253-05 Siemens SIMATIC TDC CP51M1

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC TDC CP51M1 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could create a denial-of-service condition within UDP...

7.5CVSS7.7AI score0.01461EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2012/07/11 12:0 a.m.15 views

PT-2013-25: Information Disclosure in Siemens Simatic WinCC and PCS 7

The specialists of the Positive Research center have detected "Information Disclosure" vulnerability in Siemens Simatic WinCC and PCS 7. WebNavigator passwords stored in the SQL database are only obfuscated. How to fix Update your software up to the latest version Advisory status 11.07.2012 -...

4CVSS6.9AI score0.01515EPSS
Exploits0References6
Rows per page
Query Builder