A denial of service (DoS) attack targeting port 80 (http service) can overload the device (CWE-770). This behaviour has been observed when running network security scanners.
Improper file permission handling allows an authenticated low privileged user to gain root access.
A vulnerability has been found in a cryptographic library of Infineon Technologies that is part of the firmware of the CmDongles. The exploitation of this vulnerability has been classified as complex: potential attackers need physical access and require special equipment to exploit the vulnerability. In general, this vulnerability affects only ECC keys used to calculate signatures with the ECDSA algorithm.
Multiple Linux component vulnerabilities fixed in latest PLCnext Firmware release 2024.0.6 LTS
Multiple Linux component vulnerabilities fixed in latest PLCnext Firmware release 2024.0.6 LTS
Vulnerabilities in .NET and Visual Studio functions System.Text.Json, System.Formats.Asn1, OPCFoundation.NetStandard.Opc.Ua.Core allow an remote attacker to execute a Denial-of-Servce attack.
The pathfinder TCP encapsulation service is vulnerable to a drain of open file descriptors.
mGuards use an OpenSSH server for SSH access. This server is vulnerable to a remote code injection.