Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gerhard hechenberger vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-27480
A vulnerability has been identified in SICAM A8000 CP-8031 (All versions < V4.80), SICAM A8000 CP-8050 (All versions < V4.80). Affected devices do not require an user to be authenticated to access certain files. This could allow unauthenticated malicious users to download t...
Siemens Sicam A8000 Cp-8031 Firmware
Siemens Sicam A8000 Cp-8050 Firmware
7.5
CVSSv3
CVE-2021-45034
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions < V16.20), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions < V16.20), CP-8021 MASTER MODULE (All versions < V16.20), CP-8022 MASTER MODULE WITH GPRS (All versions...
Siemens Cp-8000 Master Module With I\\/o -25\\/\\+70 Firmware
Siemens Cp-8000 Master Module With I\\/o -40\\/\\+70 Firmware
Siemens Cp-8021 Master Module Firmware
Siemens Cp-8022 Master Module With Gprs Firmware
7.5
CVSSv3
CVE-2022-31212
An issue exists in dbus-broker prior to 31. It depends on c-uitl/c-shquote to parse the DBus service's Exec line. c-shquote contains a stack-based buffer over-read if a malicious Exec line is supplied.
Dbus-broker Project Dbus-broker
7.5
CVSSv3
CVE-2022-31213
An issue exists in dbus-broker prior to 31. Multiple NULL pointer dereferences can be found when supplying a malformed XML config file.
Dbus-broker Project Dbus-broker
5.5
CVSSv3
CVE-2022-39837
An issue exists in Connected Vehicle Systems Alliance (COVESA) dlt-daemon up to and including 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a NULL pointer dereference,
Genivi Diagnostic Log And Trace
5.5
CVSSv3
CVE-2022-39836
An issue exists in Connected Vehicle Systems Alliance (COVESA) dlt-daemon up to and including 2.18.8. Due to a faulty DLT file parser, a crafted DLT file that crashes the process can be created. This is due to missing validation checks. There is a heap-based buffer over-read of o...
Genivi Diagnostic Log And Trace
6.8
CVSSv3
CVE-2023-33920
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050 MASTER MODULE (All versions < CPCI85 V05). The affected devices contain the hash of the root password in a hard-coded form, which could be exploited for UART console login to t...
Siemens Cpci85 Firmware
7.2
CVSSv3
CVE-2023-33919
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050 MASTER MODULE (All versions < CPCI85 V05). The web interface of affected devices is vulnerable to command injection due to missing server side input sanitation. This could allo...
Siemens Cpci85 Firmware
6.8
CVSSv3
CVE-2023-33921
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050 MASTER MODULE (All versions < CPCI85 V05). The affected devices contain an exposed UART console login interface. An attacker with direct physical access could try to bruteforce...
Siemens Cpci85 Firmware
9.8
CVSSv3
CVE-2023-28489
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050 MASTER MODULE (All versions < CPCI85 V05). Affected devices are vulnerable to command injection via the web server port 443/tcp, if the parameter “Remote Operation”...
Siemens Cp-8031 Firmware
Siemens Cp-8050 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2