353 matches found
CVE-2025-46273
The CVE-2025-46273 entry concerns Planet UNI-NMS-Lite. Connected sources confirm a vulnerability in UNI-NMS-Lite involving hard-coded credentials that could allow an unauthenticated attacker to gain administrative privileges on all UNI-NMS managed devices, and also document a command-injection pa...
CVE-2025-46271
Planet UNI-NMS-Lite is affected by a command injection vulnerability (CVE-2025-46271). An unauthenticated attacker could read or manipulate device data via crafted requests. Public references include CSIS/Red Hat/NVD entries and multiple phonetic advisories, with discussion of risks and affected ...
PLANET UNI-NMS-Lite 信任管理问题漏洞
Planet UNI-NMS-Lite is a universal network management system from PLANET China that monitors all deployed wired or wireless PoE industrial grade network devices. Planet UNI-NMS-Lite suffers from a trust management issue vulnerability that can be exploited by an attacker to submit a special reques...
PT-2025-17862
Name of the Vulnerable Software and Affected Versions UNI-NMS-Lite affected versions not specified Description The issue concerns the use of hard-coded credentials in UNI-NMS-Lite, which could allow an unauthenticated attacker to gain administrative privileges to all UNI-NMS managed devices...
PT-2025-17860 · Unknown · Uni-Nms-Lite
Name of the Vulnerable Software and Affected Versions: UNI-NMS-Lite affected versions not specified Description: The issue allows an unauthenticated attacker to read or manipulate device data through a command injection attack. Recommendations: At the moment, there is no information about a newer...
PLANET UNI-NMS-Lite 信任管理问题漏洞
Planet UNI-NMS-Lite is a universal network management system from PLANET China that monitors all deployed wired or wireless PoE industrial grade network devices. Planet UNI-NMS-Lite is vulnerable to a trust management issue that can be exploited by an attacker to submit a special request that can...
PT-2025-17863 · Unknown · Uni-Nms-Lite
Name of the Vulnerable Software and Affected Versions: UNI-NMS-Lite affected versions not specified Description: The issue concerns the use of hard-coded credentials in UNI-NMS-Lite, which could allow an unauthenticated attacker to read, manipulate, and create entries in the managed database...
CISA Releases Two Industrial Control Systems Advisories
CISA released two Industrial Control Systems ICS advisories on March 11, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-070-01 Schneider Electric Uni-Telway Driver ICSA-25-070-02 Optigo Networks Visual BACnet...
pressemitteilungen.pr.uni-halle.de Cross Site Scripting vulnerability OBB-3953839
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
uni-due.de Cross Site Scripting vulnerability OBB-3953186
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
uni-sys.com Cross Site Scripting vulnerability OBB-3950815
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
gewiss.uni-leipzig.de Cross Site Scripting vulnerability OBB-3944590
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
univ-paris3.fr Cross Site Scripting vulnerability OBB-3927875
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
tincap.uni-tuebingen.de Cross Site Scripting vulnerability OBB-3925314
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
weiterbildung.uni-speyer.de Cross Site Scripting vulnerability OBB-3921578
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2023-49502
Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the ffbwdiffilterintrac function in the libavfilter/bwdifdsp.c:125:5 component...
opac.sinologie.uni-muenchen.de Cross Site Scripting vulnerability OBB-3888461
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
opac.sinologie.uni-muenchen.de Cross Site Scripting vulnerability OBB-3885486
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
users.fmi.uni-jena.de Cross Site Scripting vulnerability OBB-3880713
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
cup.uni-muenchen.de Cross Site Scripting vulnerability OBB-3869851
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...