Thursday, 03.10.2024
Title
TEM Opera Plus FM Family Transmitter
Published
Oct. 3, 2024, 2 p.m.
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: TEM Equipment: Opera Plus FM Family Transmitter Vulnerabilities: Missing Authentication for Critical Function, Cross-Site Request Forgery (CSRF) 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to perform remote code ...
Wednesday, 02.10.2024
Title
Multiple vulnerabilites in libexpat affecting PRC7000
Published
Oct. 2, 2024, 2 a.m.
Summary

BOSCH-SA-200802: Multiple vulnerabilities were discovered in the open source library \"libexpat\", affecting the XML parser functionality. These vulnerabilities allow for integer overflows and invalid negative values for buffer sizes. As this may affect the \"Import\" and \"Restore\" functionality - which use libexpat to parse XML files - of the device, ...

Tuesday, 01.10.2024
Title
Mitsubishi Electric MELSEC iQ-F FX5-OPC
Published
Oct. 1, 2024, 2 p.m.
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: MELSEC iQ-F FX5-OPC Vulnerability: NULL Pointer Dereference 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to cause a Denial-of-Service (DoS) condition on the product by getting a legitimate ...
Title
Optigo Networks ONS-S8 Spectra Aggregation Switch
Published
Oct. 1, 2024, 2 p.m.
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Optigo Networks Equipment: ONS-S8 - Spectra Aggregation Switch Vulnerabilities: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion'), Weak Authentication 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an ...
Title
Sensitive information disclosure in Bosch Configuration Manager
Published
Oct. 1, 2024, 2 a.m.
Summary

BOSCH-SA-981803-BT: A vulnerability was discovered during internal testing of the Bosch Configuration Manager, which may temporarily store sensitive information of the configured system.

Last Updates

BOSCH PSIRT
02.10.2024
SIEMENS CERT
12.09.2024
US CERT
19.09.2024
US CERT (ICS)
03.10.2024

By Source

Archive

2024
2023
2022
2021
2020
2019
2018
2017

Feeds