17 matches found
EUVD-2023-36460
Malicious code in bioql PyPI...
EUVD-2023-42239
Malicious code in bioql PyPI...
CVE-2023-38422
Walchem Intuition 9 firmware versions prior to v4.21 are missing authentication for some of the API routes of the management web server. This could allow an attacker to download and export sensitive data...
CVE-2023-38422
Walchem Intuition 9 firmware versions prior to v4.21 are missing authentication for some of the API routes of the management web server. This could allow an attacker to download and export sensitive data...
CVE-2023-32202
Walchem Intuition 9 firmware versions prior to v4.21 are vulnerable to improper authentication. Login credentials are stored in a format that could allow an attacker to use them as-is to login and gain access to the device...
Authentication flaw
Walchem Intuition 9 firmware versions prior to v4.21 are vulnerable to improper authentication. Login credentials are stored in a format that could allow an attacker to use them as-is to login and gain access to the device...
Authentication flaw
Walchem Intuition 9 firmware versions prior to v4.21 are missing authentication for some of the API routes of the management web server. This could allow an attacker to download and export sensitive data...
CVE-2023-38422 Walchem Intuition Missing Authentication for Critical Function
Walchem Intuition 9 firmware versions prior to v4.21 are missing authentication for some of the API routes of the management web server. This could allow an attacker to download and export sensitive data...
CVE-2023-38422
CVE-2023-38422 affects Walchem Intuition 9 firmware versions prior to v4.21. The issue is missing authentication for some API routes of the management web server, allowing an attacker to download/export sensitive data. CVSS v3 base score is 7.5 (Network, Low complexity, No privileges required). M...
CVE-2023-38422 Walchem Intuition Missing Authentication for Critical Function
Walchem Intuition 9 firmware versions prior to v4.21 are missing authentication for some of the API routes of the management web server. This could allow an attacker to download and export sensitive data...
CVE-2023-32202 Walchem Intuition Improper Authentication
Walchem Intuition 9 firmware versions prior to v4.21 are vulnerable to improper authentication. Login credentials are stored in a format that could allow an attacker to use them as-is to login and gain access to the device...
CVE-2023-32202
Walchem Intuition 9 firmware versions prior to v4.21 are affected by improper authentication (CVE-2023-32202). The issue, confirmed by multiple sources, is that login credentials are stored in a format that could allow an attacker to login and access the device. Affected product: Intuition 9 cont...
CVE-2023-32202 Walchem Intuition Improper Authentication
Walchem Intuition 9 firmware versions prior to v4.21 are vulnerable to improper authentication. Login credentials are stored in a format that could allow an attacker to use them as-is to login and gain access to the device...
PT-2023-26416 · Walchem · Walchem Intuition 9
Name of the Vulnerable Software and Affected Versions: Walchem Intuition 9 firmware versions prior to v4.21 Description: The issue is related to missing authentication for some API routes of the management web server. This could allow an attacker to download and export sensitive data...
PT-2023-23660 · Walchem · Walchem Intuition 9
Name of the Vulnerable Software and Affected Versions: Walchem Intuition 9 firmware versions prior to v4.21 Description: The issue concerns improper authentication in the Walchem Intuition 9 firmware. Login credentials are stored in a format that could allow an attacker to use them as-is to login...
Walchem Intuition 访问控制错误漏洞
Walchem Intuition is a controller from Walchem. An Access Control Error vulnerability exists in versions prior to Walchem Intuition 9 v4.21 that stems from a lack of authentication and could allow an attacker to download and export sensitive data...
Walchem Intuition 9
1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Walchem Equipment: Intuition 9 Vulnerabilities: Missing Authentication for Critical Function, Improper Authentication 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an...