Lucene search
K

87 matches found

Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.2 views

Siemens TeleControl Server Basic VerifyUser SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the VerifyUser method. The issue results from the...

9.8CVSS8.1AI score0.00912EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.7 views

Siemens TeleControl Server Basic UpdateDatabaseSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic UpdateUsers SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.4 views

Siemens TeleControl Server Basic Authenticate SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the Authenticate method. The issue results from t...

9.8CVSS8.1AI score0.00912EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic UpdateBufferingSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic UpdateGateways SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00683EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.5 views

Siemens TeleControl Server Basic CreateProject SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.6 views

Siemens TeleControl Server Basic RestoreFromBackup SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8.8CVSS8.2AI score0.00805EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic UpdateTcmSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.4 views

Siemens TeleControl Server Basic UpdateProjectConnections SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.4 views

Siemens TeleControl Server Basic UpdateSmtpSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic ImportDatabase SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.7 views

Siemens TeleControl Server Basic UpdateConnectionVariables SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.2 views

Siemens TeleControl Server Basic UpdateOpcSettings SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00683EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.5 views

Siemens TeleControl Server Basic UpdateProject SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens TeleControl Server Basic. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6.5CVSS6.8AI score0.00683EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/06/16 12:0 a.m.3 views

Siemens TeleControl Server Basic CreateTrace SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the CreateTrace method. The issue results from th...

9.8CVSS8.1AI score0.00912EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.6 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08367)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an SQL injection in the GetLogs method, which can be exploited by an attacker to bypass authorization contro...

8.8CVSS8.2AI score0.00594EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.5 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08615)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method GetConnectionVariables, which can be exploited by an attacker to bypas...

8.8CVSS8.1AI score0.00683EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.5 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-08355)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method UpdateProjectConnections, which can be exploited by an attacker to...

8.8CVSS8.1AI score0.00732EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/22 12:0 a.m.5 views

Siemens TeleControl Server Basic SQL Injection Vulnerability (CNVD-2025-09140)

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that stems from the internally used 'UnlockProject' method. An attacker could exploit the vulnerability to cause bypass of...

8.8CVSS7.8AI score0.00683EPSS
Exploits0References1
Rows per page
Query Builder