CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

BDU FSTEC•added 2025/05/29 12:0 a.m.•6 views

The vulnerability of the UnlockOpcSettings method in the software for managing and monitoring remote devices in telemetering and telemechanics systems allows a hacker to circumvent security restrictions, read and write arbitrary files, and execute arbitrary code.

The vulnerability of the UnlockOpcSettings method in the software for managing and monitoring remote devices in telemetering and telemechanics systems is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass...

9CVSS6.1AI score0.0049EPSS

BDU FSTEC•added 2025/04/27 12:0 a.m.•4 views

The vulnerability of the LockDatabaseSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a hacker to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the LockDatabaseSettings method in software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security...

9CVSS5.7AI score0.00525EPSS

BDU FSTEC•added 2025/04/27 12:0 a.m.•4 views

The vulnerability of the UnlockDatabaseSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allows a hacker to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the UnlockDatabaseSettings method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows an attacker to bypass security...

9CVSS5.7AI score0.00525EPSS

BDU FSTEC•added 2025/04/27 12:0 a.m.•5 views

The vulnerability of the UnlockTcmSettings method in the software for managing and monitoring deleted objects in telemetering and telemechanics systems allows a perpetrator to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the UnlockTcmSettings method in the software for managing and monitoring removed objects in Telemetry and Telemechanics systems is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass securi...

9CVSS5.7AI score0.00525EPSS

BDU FSTEC•added 2025/04/27 12:0 a.m.•3 views

The vulnerability of the UnlockUser method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems of the TeleControl Server Basic allows a hacker to circumvent security restrictions and gain access to write and read arbitrary files.

The vulnerability of the UnlockUser method in software for managing and monitoring remote devices in telemetry and telemechanics systems related to the lack of security measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass security...

9CVSS5.8AI score0.00604EPSS

BDU FSTEC•added 2025/04/25 12:0 a.m.•5 views

The vulnerability of the GetGateways method in the software for managing and monitoring remote devices in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the GetGateways method in the software for managing and monitoring remote devices in telemetering and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromise the...

9CVSS5.7AI score0.00604EPSS

BDU FSTEC•added 2025/04/25 12:0 a.m.•8 views

The vulnerability of the ImportConnectionVariables method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ImportConnectionVariables method in software for managing and monitoring remote objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the...

9CVSS5.7AI score0.00604EPSS

BDU FSTEC•added 2025/04/25 12:0 a.m.•3 views

The vulnerability of the GetActiveConnectionVariables method in the software for managing and monitoring remote objects in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the GetActiveConnectionVariables method in software for managing and monitoring remote objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to compromis...

9CVSS5.7AI score0.00604EPSS

BDU FSTEC•added 2025/04/25 12:0 a.m.•4 views

The vulnerability of the UpdateProjectUserRights method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the UpdateProjectUserRights method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the...

9CVSS5.6AI score0.00604EPSS

BDU FSTEC•added 2025/04/23 12:0 a.m.•7 views

The vulnerability of the VerifyUser method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems of the TeleControl Server Basic allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the VerifyUser method in software for managing and monitoring deleted objects in telemetry and telemechanics systems related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the confidentiality,...

10CVSS7.9AI score0.00807EPSS

BDU FSTEC•added 2025/04/23 12:0 a.m.•4 views

The vulnerability of the UpdateUsers method in the software for managing and monitoring deleted objects in telemetry and telemechanics systems, allowing a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the UpdateUsers method in software for managing and monitoring removed objects in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the confidentiality,...

9CVSS6.7AI score0.00648EPSS

BDU FSTEC•added 2025/04/23 12:0 a.m.•6 views

The vulnerability of the ImportDatabase method in software for managing and monitoring deleted objects in telemetry and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ImportDatabase method in software for managing and monitoring removed objects in telemetry and telemechanics systems related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the confidentiality,...

9CVSS6.7AI score0.00648EPSS

BDU FSTEC•added 2025/04/23 12:0 a.m.•7 views

The vulnerability of the UpdateGateways method in the software for managing and monitoring remote devices in telemetering and telemechanics systems allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the UpdateGateways method in the software for managing and monitoring remote devices in telemetering and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to compromise the...

9CVSS6.7AI score0.00604EPSS

BDU FSTEC•added 2025/04/23 12:0 a.m.•5 views

The vulnerability of the software for managing and monitoring remote devices in telemetry and telemechanics systems, related to the lack of measures taken to protect the SQL query structure, allows a perpetrator to execute arbitrary SQL queries.

The vulnerability of software for managing and monitoring remote devices in telemetry and telemechanics systems is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

BDU FSTEC•added 2025/04/23 12:0 a.m.•8 views

BDU FSTEC•added 2025/04/23 12:0 a.m.•4 views

BDU FSTEC•added 2025/04/23 12:0 a.m.•7 views

BDU FSTEC•added 2025/04/23 12:0 a.m.•6 views

BDU FSTEC•added 2024/11/14 12:0 a.m.•3 views

The vulnerability of the software for managing and monitoring remote devices in telemetry and telemechanics systems, related to deficiencies in the deserialization mechanism, allows a perpetrator to execute arbitrary code.

The vulnerability of software for managing and monitoring remote objects in telemetry and telemechanics systems is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a malicious actor to execute arbitrary code with SYSTEM privileges by sending specially...

10CVSS8AI score0.01002EPSS