|
215321
|
5.3 |
MEDIUM
Network
|
beckhoff
|
twincat_driver
twincat
|
Beckhoff's TwinCAT RT network driver for Intel 8254x and 8255x is providing EtherCAT functionality. The driver implements real-time features. Except for Ethernet frames sent from real-time functional…
|
-
|
CVE-2020-12494
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215322
|
9.8 |
CRITICAL
Network
|
advantech
|
webaccess
|
WebAccess Node Version 8.4.4 and prior is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code.
|
CWE-787
Out-of-bounds Write
|
CVE-2020-12019
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215323
|
7.5 |
HIGH
Network
|
rockwellautomation
|
factorytalk_linx
rslinx_classic
|
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version …
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2020-12005
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215324
|
7.5 |
HIGH
Network
|
rockwellautomation
|
factorytalk_linx
rslinx_classic
|
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version …
|
CWE-22
Path Traversal
|
CVE-2020-12003
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215325
|
9.8 |
CRITICAL
Network
|
rockwellautomation
|
factorytalk_linx
rslinx_classic
|
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version …
|
CWE-20
Improper Input Validation
|
CVE-2020-12001
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215326
|
9.8 |
CRITICAL
Network
|
apache
|
tomee
|
If Apache TomEE is configured to use the embedded ActiveMQ broker, and the broker URI includes the useJMX=true parameter, a JMX port is opened on TCP port 1099, which does not include authentication.…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-11969
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215327
|
8.1 |
HIGH
Network
|
rockwellautomation
|
factorytalk_linx
rslinx_classic
|
FactoryTalk Linx versions 6.00, 6.10, and 6.11, RSLinx Classic v4.11.00 and prior,Connected Components Workbench: Version 12 and prior, ControlFLASH: Version 14 and later, ControlFLASH Plus: Version …
|
CWE-20
Improper Input Validation
|
CVE-2020-11999
|
2024-11-21 13:59 |
2020-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215328
|
6.3 |
MEDIUM
Network
|
apache
|
karaf
|
In Karaf, JMX authentication takes place using JAAS and authorization takes place using ACL files. By default, only an "admin" can actually invoke on an MBean. However there is a vulnerability there …
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2020-11980
|
2024-11-21 13:59 |
2020-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215329
|
4.5 |
MEDIUM
Adjacent
|
philips
|
intellibridge_enterprise
|
Philips IntelliBridge Enterprise (IBE), Versions B.12 and prior, IntelliBridge Enterprise system integration with SureSigns (VS4), EarlyVue (VS30) and IntelliVue Guardian (IGS). Unencrypted user cred…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-12023
|
2024-11-21 13:59 |
2020-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
215330
|
7.5 |
HIGH
Network
|
inductiveautomation
|
ignition_gateway
|
The affected product lacks proper authentication required to query the server on the Ignition 8 Gateway (versions prior to 8.0.10) and Ignition 7 Gateway (versions prior to 7.9.14), allowing an attac…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2020-12004
|
2024-11-21 13:59 |
2020-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
