2 matches found
CVE-2024-58300
The CVE-2024-58300 affects Siklu MultiHaul TG series devices before version 2.0.0. An unauthenticated vulnerability allows remote attackers to retrieve randomly generated credentials by sending a specific hex-encoded command to port 12777, yielding the username and password and enabling direct SS...
ABB Cylon Aspect 3.08.01 (jsonProxy.php) Unauthenticated Credentials Disclosure
Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description The ABB BMS/BAS controller allows an unauthenticated attacker to...