Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
OpenautomationsoftwareOas Platform18.00.0072

8 matches found

CVE
CVEadded 2023/09/05 5:15 p.m.44 views

CVE-2023-34317

An improper input validation vulnerability exists in the OAS Engine User Creation functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to unexpected data in the configuration. An attacker can send a sequence of requests to trigg...

6.5CVSS7.7AI score0.00074EPSS
CVE
CVEadded 2023/09/05 5:15 p.m.41 views

CVE-2023-32615

A file write vulnerability exists in the OAS Engine configuration functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to arbitrary file creation or overwrite. An attacker can send a sequence of requests to trigger this vulnerab...

8.1CVSS8.8AI score0.00056EPSS
CVE
CVEadded 2023/09/05 5:15 p.m.40 views

CVE-2023-34994

An improper resource allocation vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to creation of an arbitrary directory. An attacker can send a sequence of reque...

4.3CVSS5.5AI score0.00056EPSS
CVE
CVEadded 2023/09/05 5:15 p.m.39 views

CVE-2023-34353

An authentication bypass vulnerability exists in the OAS Engine authentication functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted network sniffing can lead to decryption of sensitive information. An attacker can sniff network traffic to trigger this vulnerabilit...

7.5CVSS8.1AI score0.00047EPSS
CVE
CVEadded 2023/09/05 5:15 p.m.38 views

CVE-2023-35124

An information disclosure vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to a disclosure of sensitive information. An attacker can send a sequence of requests...

4.3CVSS5.1AI score0.00093EPSS
CVE
CVEadded 2023/09/05 5:15 p.m.33 views

CVE-2023-31242

An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platform v18.00.0072. A specially-crafted series of network requests can lead to arbitrary authentication. An attacker can send a sequence of requests to trigger this vulnerability.

9.8CVSS9.5AI score0.00019EPSS
CVE
CVEadded 2023/09/05 5:15 p.m.33 views

CVE-2023-34998

An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to arbitrary authentication. An attacker can sniff network traffic to trigger this vulnerability.

8.1CVSS9AI score0.00009EPSS
CVE
CVEadded 2023/09/05 5:15 p.m.30 views

CVE-2023-32271

An information disclosure vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to a disclosure of sensitive information. An attacker can send a sequence of requests...

6.5CVSS7.4AI score0.00103EPSS