Openautomationsoftware

Oas Platform

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2023-34994

Exploit
  • EPSS 0.06%
  • Veröffentlicht 05.09.2023 17:15:09
  • Zuletzt bearbeitet 21.11.2024 08:07:47

An improper resource allocation vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to creation of an arbitrary di...

8.1

CVE-2023-34998

  • EPSS 0.01%
  • Veröffentlicht 05.09.2023 17:15:09
  • Zuletzt bearbeitet 21.11.2024 08:07:48

An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to arbitrary authentication. An attacker can sniff network tra...

4.3

CVE-2023-35124

Exploit
  • EPSS 0.12%
  • Veröffentlicht 05.09.2023 17:15:09
  • Zuletzt bearbeitet 21.11.2024 08:07:59

An information disclosure vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to a disclosure of sensitive informa...

9.8

CVE-2023-31242

Exploit
  • EPSS 0.02%
  • Veröffentlicht 05.09.2023 17:15:08
  • Zuletzt bearbeitet 21.11.2024 08:01:41

An authentication bypass vulnerability exists in the OAS Engine functionality of Open Automation Software OAS Platform v18.00.0072. A specially-crafted series of network requests can lead to arbitrary authentication. An attacker can send a sequence o...

6.5

CVE-2023-32271

Exploit
  • EPSS 0.1%
  • Veröffentlicht 05.09.2023 17:15:08
  • Zuletzt bearbeitet 21.11.2024 08:03:01

An information disclosure vulnerability exists in the OAS Engine configuration management functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to a disclosure of sensitive informa...

8.1

CVE-2023-32615

  • EPSS 0.06%
  • Veröffentlicht 05.09.2023 17:15:08
  • Zuletzt bearbeitet 21.11.2024 08:03:42

A file write vulnerability exists in the OAS Engine configuration functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to arbitrary file creation or overwrite. An attacker can sen...

6.5

CVE-2023-34317

Exploit
  • EPSS 0.07%
  • Veröffentlicht 05.09.2023 17:15:08
  • Zuletzt bearbeitet 21.11.2024 08:06:59

An improper input validation vulnerability exists in the OAS Engine User Creation functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted series of network requests can lead to unexpected data in the configuration. An ...

7.5

CVE-2023-34353

Exploit
  • EPSS 0.05%
  • Veröffentlicht 05.09.2023 17:15:08
  • Zuletzt bearbeitet 21.11.2024 08:07:04

An authentication bypass vulnerability exists in the OAS Engine authentication functionality of Open Automation Software OAS Platform v18.00.0072. A specially crafted network sniffing can lead to decryption of sensitive information. An attacker can s...

7.5

CVE-2022-26067

Exploit
  • EPSS 0.24%
  • Veröffentlicht 25.05.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 06:53:22

An information disclosure vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to arbitrary file read. An attacker can s...

7.5

CVE-2022-26077

Exploit
  • EPSS 0.16%
  • Veröffentlicht 25.05.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 06:53:23

A cleartext transmission of sensitive information vulnerability exists in the OAS Engine configuration communications functionality of Open Automation Software OAS Platform V16.00.0112. A targeted network sniffing attack can lead to a disclosure of s...