18 matches found
CVE-2019-11528
An issue was discovered in Softing uaGate SI 1.60.01. A system default path for executables is user writable...
CVE-2019-11527
An issue was discovered in Softing uaGate SI 1.60.01. A CGI script is vulnerable to command injection with a maliciously crafted url parameter...
EUVD-2019-3197
Malware in sbrugna...
Softing uaGate SI Elevation of Privilege Vulnerability
Softing uaGate SI is a compact industrial gateway product from Softing Germany. An elevation of privilege vulnerability exists in the maintenance script in Softing uaGate SI version 1.60.01, which can be exploited by an attacker to write to a file with superuser privileges...
Softing uaGate SI Default Privileges Vulnerability
Softing uaGate SI is a compact industrial gateway product from Softing Germany. A security vulnerability exists in Softing uaGate SI version 1.60.01. The vulnerability can be exploited by an attacker to modify or add executable files in the system default path...
Softing uaGate SI, uaGate MB and uaGate 840D Command Injection Vulnerabilities
Softing uaGate SI and others are products of Softing Germany.Softing uaGate SI is a compact industrial gateway.Softing uaGate 840D is an IoT gateway.Softing uaGate MB is a gateway for Modbus TCP controllers. A command injection vulnerability exists in the CGI scripts in the Softing uaGate SI,...
CVE-2019-11527
An issue was discovered in Softing uaGate SI 1.60.01. A CGI script is vulnerable to command injection with a maliciously crafted url parameter...
CVE-2019-11528
An issue was discovered in Softing uaGate SI 1.60.01. A system default path for executables is user writable...
Default configuration
An issue was discovered in Softing uaGate SI 1.60.01. A system default path for executables is user writable...
CVE-2019-11527
An issue was discovered in Softing uaGate SI 1.60.01. A CGI script is vulnerable to command injection with a maliciously crafted url parameter...
CVE-2019-11527
CVE-2019-11527 involves Softing uaGate SI 1.60.01, where a CGI script is vulnerable to command injection via a maliciously crafted URL parameter. The vulnerability is documented across multiple sources (NVD, Red Hat, CNVD, CVE lists). CVSSv3.1 vectors indicate an attack vector of NETWORK with low...
CVE-2019-11528
CVE-2019-11528 affects Softing uaGate SI 1.60.01. The issue is that a system default path for executables is user-writable, allowing an attacker to modify or add executables in that path. No remediation details are provided in the connected documents. If exploiting details are present, they are n...
CVE-2019-11528
An issue was discovered in Softing uaGate SI 1.60.01. A system default path for executables is user writable...
CVE-2019-11526
An issue was discovered in Softing uaGate SI 1.60.01. A maintenance script, that is executable via sudo, is vulnerable to file path injection. This enables the Attacker to write files with superuser privileges in specific locations...
CVE-2019-11526
An issue was discovered in Softing uaGate SI 1.60.01. A maintenance script, that is executable via sudo, is vulnerable to file path injection. This enables the Attacker to write files with superuser privileges in specific locations...
Path traversal
An issue was discovered in Softing uaGate SI 1.60.01. A maintenance script, that is executable via sudo, is vulnerable to file path injection. This enables the Attacker to write files with superuser privileges in specific locations...
CVE-2019-11526
Softing uaGate SI 1.60.01 contains a privilege-elevation issue in its maintenance script that runs via sudo. The maintenance script is vulnerable to file path injection, allowing an attacker to write files with superuser privileges in specific locations. This CVE (CVE-2019-11526) is documented ac...
CVE-2019-11526
An issue was discovered in Softing uaGate SI 1.60.01. A maintenance script, that is executable via sudo, is vulnerable to file path injection. This enables the Attacker to write files with superuser privileges in specific locations...