Siemens SIMATIC products and SINAUT Software weak security | CVE-2023-28829
NAME__________Siemens SIMATIC products and SINAUT Software weak securityPlatforms Affected:Siemens SIMATIC PCS 7 8.2 Siemens SIMATIC PCS 7 9.0 Siemens SIMATIC...
Vulnerabilities
Apache Traffic Server denial of service | CVE-2023-30631
NAME__________Apache Traffic Server denial of servicePlatforms Affected:Apache Traffic Server 8.0.0 Apache Traffic Server 9.0.0 Apache Traffic Server 8.1.4 Apache Traffic...
Microsoft Edge (Chromium-based) information disclosure | CVE-2023-33145
NAME__________Microsoft Edge (Chromium-based) information disclosurePlatforms Affected:Microsoft Edge (Chromium-based)Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to obtain...
Microsoft Windows GDI Elevation privilege escalation | CVE-2023-29371
NAME__________Microsoft Windows GDI Elevation privilege escalationPlatforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows 10 x32 Microsoft...
WooCommerce Stripe Payment Gateway plugin for WordPress information disclosure | CVE-2023-34000
NAME__________WooCommerce Stripe Payment Gateway plugin for WordPress information disclosurePlatforms Affected:WordPress WooCommerce Stripe Payment Gateway plugin for WordPress 7.4.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information...
Siemens TIA Portal information disclosure | CVE-2023-30757
NAME__________Siemens TIA Portal information disclosurePlatforms Affected:Siemens TIA Portal 14 Siemens TIA Portal 15 Siemens TIA Portal 15.1 Siemens TIA Portal...
Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients privilege escalation | CVE-2023-34121
NAME__________Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients privilege escalationPlatforms Affected:Zoom Zoom for Windows clients 5.13.2 Zoom Zoom...
IBM Security Guardium privilege escalation | CVE-2022-22307
NAME__________IBM Security Guardium privilege escalationPlatforms Affected:IBM Security Guardium 11.3 IBM Security Guardium 11.4 IBM Security Guardium 11.5Risk Level:4.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________IBM...
Discourse information disclosure | CVE-2023-34250
NAME__________Discourse information disclosurePlatforms Affected:Discourse Discourse stable 3.0.3 Discourse Discourse beta 3.1.0.beta4 Discourse Discourse tests-passed 3.1.0.beta4Risk Level:4.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Discourse could allow...
Discourse security bypass | CVE-2023-32301
NAME__________Discourse security bypassPlatforms Affected:Discourse DiscourseRisk Level:3.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Discourse could allow a remote authenticated attacker to bypass security restrictions, caused by...
Siemens SIMATIC WinCC code execution | CVE-2023-30897
NAME__________Siemens SIMATIC WinCC code executionPlatforms Affected:Siemens SIMATIC WinCCRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Siemens SIMATIC WinCC could allow a local authenticated attacker to...
Zoom for Linux clients denial of service | CVE-2023-28598
NAME__________Zoom for Linux clients denial of servicePlatforms Affected:Zoom Zoom for Linux clients 5.13.9Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Zoom for Linux clients...
Chatwork Desktop Application code execution | CVE-2023-32546
NAME__________Chatwork Desktop Application code executionPlatforms Affected:Chatwork Chatwork Desktop Application 2.6.43Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Chatwork Desktop Application could allow a local authenticated...
Siemens POWER METER SICAM Q200 family security bypass | CVE-2023-31238
NAME__________Siemens POWER METER SICAM Q200 family security bypassPlatforms Affected:Siemens POWER METER SICAM Q200 familyRisk Level:5.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Siemens POWER METER SICAM...
HotelDruid SQL injection | CVE-2023-33817
NAME__________HotelDruid SQL injectionPlatforms Affected:HotelDruid HotelDruid 3.0.5Risk Level:5.4Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________HotelDruid is vulnerable to SQL injection. A remote authenticated attacker could send...
Ricoh Printer Driver Packager NX code execution | CVE-2023-30759
NAME__________Ricoh Printer Driver Packager NX code executionPlatforms Affected:Ricoh Printer Driver Packager 1.0.02 Ricoh Printer Driver Packager 1.1.25Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Ricoh...
Redirect After Login plugin for WordPress cross-site scripting | CVE-2023-27624
NAME__________Redirect After Login plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Redirect After Login Plugin for WordPress 0.1.9Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Redirect After...
Apache Traffic Server information disclosure | CVE-2023-33933
NAME__________Apache Traffic Server information disclosurePlatforms Affected:Apache Traffic Server 8.0.0 Apache Traffic Server 9.0.0 Apache Traffic Server 8.1.4 Apache Traffic Server...
Siemens SIMOTION products information disclosure | CVE-2023-27465
NAME__________Siemens SIMOTION products information disclosurePlatforms Affected:Siemens SIMOTION C240 5.4 Siemens SIMOTION C240 PN 5.4 Siemens SIMOTION D410-2 DP 5.4 Siemens...
Cyberus Key plugin for WordPress cross-site scripting | CVE-2023-28620
NAME__________Cyberus Key plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Cyberus Key Plugin for WordPress 1.0Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cyberus Key plugin for...
Discourse security bypass | CVE-2023-32061
NAME__________Discourse security bypassPlatforms Affected:Discourse Discourse stable 3.0.3 Discourse Discourse beta 3.1.0.beta4 Discourse Discourse tests-passed 3.1.0.beta4Risk Level:5.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Discourse could allow...
Schneider Electric EcoStruxure Foxboro DCS Control Core Services execution | CVE-2023-2570
NAME__________Schneider Electric EcoStruxure Foxboro DCS Control Core Services executionPlatforms Affected:Schneider Electric EcoStruxure Foxboro DCS Control Core ServicesRisk Level:7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Schneider...
D-Link DIR-600 command execution | CVE-2023-33625
NAME__________D-Link DIR-600 command executionPlatforms Affected:D-Link DIR-600 B5 2.18Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________D-Link DIR-600 could allow a remote attacker to execute arbitrary...
AMI BMC code execution | CVE-2023-34341
NAME__________AMI BMC code executionPlatforms Affected:AMI MegaRAC SPX 12 AMI MegaRAC SPX 13Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________AMI BMC could allow a remote...
