Lucene search
K

43 matches found

Tenable Nessus
Tenable Nessus
added 2025/02/25 12:0 a.m.6 views

Siemens SIMATIC Devices Linux Kernel Use After Free (CVE-2022-47946)

An issue was discovered in the Linux kernel 5.10.x before 5.10.155. A use-after-free in iosqpollwaitsq in fs/iouring.c allows an attacker to crash the kernel, resulting in denial of service. finishwait can be skipped. An attack can occur in some situations by forking a process and then quickly...

5.5CVSS6.4AI score0.00373EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2024/10/23 12:0 a.m.17 views

Rockwell Automation Logix Controllers Uncontrolled Resource Consumption (CVE-2024-8626)

Due to a memory leak, a denial-of-service vulnerability exists in the affected products. A malicious actor could exploit this vulnerability by performing multiple actions on certain webpages of the product causing the affected products to become fully unavailable and require a power cycle to...

8.7CVSS5.5AI score0.00496EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.18 views

Qnap QTS OS Command Injection (CVE-2023-23368)

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.0.1.2376 build 20230421 and later...

9.8CVSS8.7AI score0.18687EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.17 views

Qnap QTS Path Traversal (CVE-2023-45026)

A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and expose sensitive data via a network. We have already fixed the vulnerability in...

5.5CVSS5.3AI score0.00454EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.21 views

Qnap QTS Classic Buffer Overflow (CVE-2023-45035)

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS7.5AI score0.0058EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.25 views

Qnap QTS OS Command Injection (CVE-2023-39300)

An OS command injection vulnerability has been reported to affect legacy QTS. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 4.3.6.2805 build 20240619 and later QTS...

7.2CVSS5.7AI score0.01212EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.13 views

Qnap QTS Open Redirect (CVE-2021-44054)

An open redirect vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero and QTS. If exploited, this vulnerability allows attackers to redirect users to an untrusted page that contains malware. We have already fixed this vulnerability in the following versions of...

6.1CVSS6.5AI score0.00544EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.8 views

Qnap QTS Out-of-bounds Read (CVE-2022-27598)

A vulnerability has been reported to affect QNAP operating systems. If exploited, the out-of-bounds read vulnerability allows remote authenticated administrators to get secret values. The vulnerability affects the following QNAP operating systems: QTS, QuTS hero, QuTScloud, QVP QVR Pro appliances...

2.7CVSS4.9AI score0.00658EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.26 views

Qnap QTS Improper Authorization (CVE-2023-50363)

An incorrect authorization vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to bypass intended access restrictions via a network. We have already fixed the vulnerability in the following versions: QTS...

8.1CVSS5.5AI score0.00419EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.20 views

Qnap QTS Classic Buffer Overflow (CVE-2023-45040)

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS7.5AI score0.0064EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/09 12:0 a.m.77 views

Nexans FTTO GigaSwitch Backdoor Account (CVE-2022-32985)

libnxapl.so on Nexans FTTO GigaSwitch before 6.02N and 7.x before 7.02 implements a Backdoor Account for SSH logins on port 50200 or 50201. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

9.8CVSS7.3AI score0.01073EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2024/09/04 12:0 a.m.13 views

SEH Computertechnik UTN Server PRO and INU-100 Stored Cross-Site Scripting (CVE-2024-5420)

Missing input validation in the SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 web-interface allows stored Cross-Site Scripting XSS. This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below. This plugin only works...

8.3CVSS5.3AI score0.055EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2024/07/22 12:0 a.m.149 views

Hikvision Multiple Products Command Injection (CVE-2021-36260)

A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands. This plugin only works with Tenable.ot. Please vis...

9.8CVSS7.4AI score0.99869EPSS
Exploits23References6
Tenable Nessus
Tenable Nessus
added 2024/07/22 12:0 a.m.40 views

Hikvision Cameras Password in Configuration File (CVE-2017-7923)

While processing a specified request code, the user privilege-escalating vulnerability may occur for select Hikvision IP cameras with particular firmware version. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

8.8CVSS7.9AI score0.0233EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/06/20 12:0 a.m.9 views

Arecont Vision AV1355DN MegaDome camera Denial of Service (CVE-2013-0139)

The Arecont Vision AV1355DN MegaDome camera allows remote attackers to cause a denial of service video-capture outage via a packet to UDP port 69. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable,...

7.8CVSS5.5AI score0.01465EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/04/13 12:0 a.m.61 views

Siemens Scalance W1750D Buffer Copy without Checking Size of Input (CVE-2023-45615)

There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities resul...

9.8CVSS8.1AI score0.02132EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/04/03 12:0 a.m.19 views

Westermo MRD-315 ASP Source Code Disclosure (CVE-2020-7227)

Westermo MRD-315 1.7.3 and 1.7.4 devices have an information disclosure vulnerability that allows an authenticated remote attacker to retrieve the source code of different functions of the web application via requests that lack certain mandatory parameters. This affects ifaces-diag.asp, system.as...

6.5CVSS6.8AI score0.01311EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/03/22 12:0 a.m.36 views

Siemens SCALANCE, SIMATIC and RUGGEDCOM Products Command Injection (CVE-2022-0778)

The BNmodsqrt function in openSSL, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve paramete...

7.5CVSS6.6AI score0.70561EPSS
Exploits2References54
Tenable Nessus
Tenable Nessus
added 2024/03/21 12:0 a.m.20 views

Siemens SCALANCE W1750D Buffer Overflow (CVE-2023-22782)

There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation of these vulnerabilities...

9.8CVSS9.6AI score0.02068EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.28 views

Rockwell Automation Stratix Industrial Managed Ethernet Switch 7Pk Errors (CVE-2018-0155)

A vulnerability in the Bidirectional Forwarding Detection BFD offload implementation could allow an unauthenticated remote attacker to cause a crash of the iosd process, causing a DoS condition. The vulnerability is due to insufficient error handling when the BFD header in a BFD packet is...

8.6CVSS7.5AI score0.08369EPSS
Exploits0References4
Rows per page
Query Builder