Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 3 days ago7 views

Siemens SENTRON 7KT PAC1261 HTTP Request/Response Smuggling (CVE-2025-22871)

The Go net/http package incorrectly treats a bare line feed LF as a valid line terminator in chunked transfer data. This flaw can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as a line terminator. This plugin only works with...

9.1CVSS6.8AI score0.00724EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.12 views

Siemens SENTRON PAC Out-of-bounds Read (CVE-2020-13987)

The TCP/IP stack uIP in affected devices is vulnerable to out-of-bounds read when calculating the checksum for IP packets. An attacker located in the same network could trigger a Denial-of-Service condition on the device by sending a specially crafted IP packet. This plugin only works with...

7.5CVSS6.9AI score0.03194EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.9 views

Siemens SENTRON PAC Out-of-bounds Write (CVE-2020-17437)

The TCP/IP stack uIP in affected devices is vulnerable to out-of-bounds write when processing TCP packets with urgent pointer URG where the location of the TCP data payload is calculated improperly. An attacker located in the same network could trigger a Denial-of-Service condition on the device ...

8.2CVSS7.5AI score0.02751EPSS
Exploits0References4
CNVD
CNVD
added 2025/04/18 12:0 a.m.5 views

Siemens SENTRON 7KT PAC1260 Data Manager Access Control Error Vulnerability (CNVD-2025-07812)

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens Germany. An access control error vulnerability exists in the Siemens SENTRON 7KT PAC1260 Data Manager, which originates from an unauthenticated report creation request, and can be exploite...

7.3CVSS6.7AI score0.00366EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.4 views

Unspecified Vulnerability in Siemens SENTRON 7KT PAC1260 Data Manager (CNVD-2025-07815)

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens Germany. A security vulnerability exists in the Siemens SENTRON 7KT PAC1260 Data Manager that stems from a web interface of the affected device that allows the login password to be changed...

6.9CVSS6.5AI score0.00361EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.6 views

Siemens SENTRON 7KT PAC1260 Data Manager Path Traversal Vulnerability

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens Germany. A path traversal vulnerability exists in Siemens SENTRON 7KT PAC1260 Data Manager, which arises from the program failing to correctly filter special elements in the path of a...

9.2CVSS6.8AI score0.00545EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.4 views

Siemens SENTRON 7KT PAC1260 Data Manager OS Command Injection Vulnerability (CNVD-2025-07809)

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens Germany. The Siemens SENTRON 7KT PAC1260 Data Manager suffers from an OS command injection vulnerability that stems from not cleaning up the language parameter of a specific POST request,...

9.4CVSS8AI score0.00831EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.4 views

Siemens SENTRON 7KT PAC1260 Data Manager OS Command Injection Vulnerability (CNVD-2025-07810)

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens Germany. The Siemens SENTRON 7KT PAC1260 Data Manager suffers from an OS command injection vulnerability that stems from not cleaning up the region parameter of a specific POST request,...

9.4CVSS8AI score0.00831EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.3 views

Unspecified Vulnerability in Siemens SENTRON 7KT PAC1260 Data Manager

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens Germany. A security vulnerability exists in the Siemens SENTRON 7KT PAC1260 Data Manager that stems from a web interface of the affected device that allows the login password to be changed...

6.9CVSS6.5AI score0.00205EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.5 views

Siemens SENTRON 7KT PAC1260 Data Manager Access Control Error Vulnerability

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens Germany. An Access Control Error vulnerability exists in the Siemens SENTRON 7KT PAC1260 Data Manager, which originates from an unauthenticated SSH service enabled endpoint, and can be...

8.6CVSS6.8AI score0.00518EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260, a multi-functional instrument for measuring parameters of electrical circuits, allows a hacker to gain access to read, modify, and delete data.

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260 multi-functional measurement instruments for electrical networks lies in the lack of authentication for a critical function. Exploiting this vulnerability can allow an attacker to gain access to read, modify, and delet...

7.5CVSS5.9AI score0.00366EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.9 views

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260 multi-functional measurement instruments for electrical networks allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260 multi-functional measurement instruments related to an incorrect restriction on the path name to the restricted access catalog. Exploiting this vulnerability could allow an attacker to gain unauthorized access to...

8.6CVSS5.9AI score0.00545EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260, a multi-functional device for measuring parameters of electrical circuits, allows a hacker to gain unauthorized access to the device.

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260 multi-functional measurement devices for electrical networks lies in the lack of authentication for a critical function. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to t...

8.6CVSS5.9AI score0.00518EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/12 12:0 a.m.9 views

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260, a multi-functional device for measuring parameters of electrical circuits, allows a hacker to perform a CSRF attack.

The vulnerability of the Data Manager component in the microprogramming software for multifunctional measurement instruments for measuring electrical network parameters from Siemens SENTRON 7KT PAC1260 is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a...

7.8CVSS5.9AI score0.00205EPSS
Exploits0References2
CISA
CISA
added 2025/04/10 12:0 p.m.3 views

CISA Releases Ten Industrial Control Systems Advisories

CISA released ten Industrial Control Systems ICS advisories on April 10, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-100-01 Siemens License Server ICSA-25-100-02 Siemens SIDIS Prime ICSA-25-100-03 Siemens...

7AI score
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.6 views

The vulnerability of the software for multifunctional measuring instruments used to measure parameters of electrical networks from Siemens SENTRON 7KT PAC1260 lies in the lack of measures to neutralize special elements, allowing a violator to execute arbitrary codes.

The vulnerability of the software for multifunctional measuring instruments used to measure parameters of electrical networks from Siemens SENTRON 7KT PAC1260 is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability can allow a remote attacker to...

9.1CVSS6.4AI score0.00831EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.7 views

The vulnerability of the Data Manager component of Siemens SENTRON 7KT PAC1260, a multi-functional device for measuring parameters of electrical circuits, allows a hacker to gain unauthorized access to the device.

The vulnerability of the Data Manager component in the microprogramming software for multifunctional measurement devices for measuring electrical network parameters from Siemens SENTRON 7KT PAC1260 is related to the use of rigidly encrypted account data. Exploiting this vulnerability can allow an...

10CVSS5.9AI score0.00591EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.20 views

The vulnerability of the software for multifunctional measuring instruments used to measure parameters of electrical networks from Siemens SENTRON 7KT PAC1260 lies in the lack of measures to neutralize special elements, allowing a violator to execute arbitrary codes.

The vulnerability of the software for multifunctional measuring instruments used to measure parameters of electrical networks from Siemens SENTRON 7KT PAC1260 is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability can allow a remote attacker to...

9.1CVSS6.4AI score0.00831EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.4 views

Siemens SENTRON 7KT PAC1260 Data Manager 访问控制错误漏洞

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens Germany. An access control error vulnerability exists in the Siemens SENTRON 7KT PAC1260 Data Manager, which originates from an unauthenticated report creation request, and can be exploite...

7.3CVSS6.8AI score0.00366EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.4 views

Siemens SENTRON 7KT PAC1260 Data Manager 跨站请求伪造漏洞

Siemens SENTRON 7KT PAC1260 Data Manager is a device for power monitoring and energy management from Siemens, Germany. A cross-site request forgery vulnerability exists in the Siemens SENTRON 7KT PAC1260 Data Manager, which stems from a cross-site request forgery vulnerability in the web interfac...

6.9CVSS5.5AI score0.00205EPSS
Exploits0References3
Rows per page
Query Builder