CVE-2024-41171
- EPSS 0.03%
- Published 10.09.2024 10:15:12
- Last modified 10.09.2024 12:09:50
A vulnerability has been identified in SINUMERIK 828D V4 (All versions), SINUMERIK 828D V5 (All versions < V5.24), SINUMERIK 840D sl V4 (All versions), SINUMERIK ONE (All versions < V6.24). Affected devices do not properly enforce access restrictions...
CVE-2023-46156
- EPSS 0.04%
- Published 12.12.2023 12:15:13
- Last modified 21.11.2024 08:27:59
Affected devices improperly handle specially crafted packets sent to port 102/tcp. This could allow an attacker to create a denial of service condition. A restart is needed to restore normal operations.
CVE-2022-30694
- EPSS 0.19%
- Published 08.11.2022 11:15:10
- Last modified 21.11.2024 07:03:11
The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.
CVE-2022-24408
- EPSS 0.03%
- Published 08.03.2022 12:15:11
- Last modified 21.11.2024 06:50:21
A vulnerability has been identified in SINUMERIK MC (All versions < V1.15 SP1), SINUMERIK ONE (All versions < V6.15 SP1). The sc SUID binary on affected devices provides several commands that are used to execute system commands or modify system files...
CVE-2020-27827
- EPSS 0.42%
- Published 18.03.2021 17:15:13
- Last modified 21.11.2024 05:21:53
A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerabilit...
CVE-2020-8745
- EPSS 0.36%
- Published 12.11.2020 18:15:17
- Last modified 28.03.2025 15:19:45
Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an unauthenticated user to pot...