Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-1618

Active Debug Code vulnerability in Mitsubishi Electric Corporation MELSEC WS Series WS0-GETH00200 all versions allows a remote unauthenticated attacker to bypass authentication and illegally log into the affected module by connecting to it via telnet which is hidden function and is enabled by default when shipped from the factory. As a result, a remote attacker with unauthorized login can reset the module, and if certain conditions are met, he/she can disclose or tamper with the module’s configuration or rewrite the firmware.

CVE
Open in Source
#vulnerability#pdf#auth#telnet

%PDF-1.7 %���� 130 0 obj <> endobj 154 0 obj <>/Encrypt 131 0 R/Filter/FlateDecode/ID[<538DA958104BB948AD54416FB2784973>]/Index[130 40]/Info 129 0 R/Length 111/Prev 137012/Root 132 0 R/Size 170/Type/XRef/W[1 3 1]>>stream h�bbd```b``z&��H�f0�"Y�@${�d="�:��X�Lr�EV��`�m 2��]$O�ř@li70�D�OG��ځ��� L@W������i�g��em endstream endobj startxref 0 %%EOF 169 0 obj <>stream �� %>uX�������&��/�F� ���.$+������s48C�`Y2�g�Y�HH�Z8�꺣���^� ��A��������Xzf��- S0&w{|�^���r��)�����5�V�`ό��e endstream endobj 131 0 obj <>>>/Filter/Standard/Length 256/O(8�Ƈ\(40��c��\n5��޲\({�\\\)R<���zp��\rg���:3�=�)/OE(T�D��K%!H�KO"p�4��[|� ����l&g�!)/P -1324/Perms(�I�>���W�3�f�)/R 6/StmF/StdCF/StrF/StdCF/U(����py�qF�� -+F�6���d8��z�r�t��p��Z��o1��)/UE(�3 ����4’m�Uo���\)@6b��;|h�N�)/V 5>> endobj 132 0 obj <>/Metadata 3 0 R/PageLayout/OneColumn/Pages 128 0 R/StructTreeRoot 7 0 R/Type/Catalog>> endobj 133 0 obj <>/ProcSet[/PDF/Text]>>/Rotate 0/StructParents 0/Tabs/S/Type/Page>> endobj 134 0 obj <>stream l�GL�Vb�r2O�z���g7��/ڒq� ���i¹��V]��pl�ps���@R�/�����cJ��LkϢ����T�J�_RW��NS�z+��7���o��ё�O��t{�ƺ��R��Z��ك@#��`’�a % ��D�J���oTn��m�#W1q�w �5߉�>�yl8���z ͙ьe͵�VJ�����*;x2`�gV�&⦷��W.���?횝�X(��k�Z���G���$j~��} 1SdM�\í�� ���S�<��>R���J�5�0����[)�� 3��r�q��K�)�KƮXty ]�X��’ ^(ۨ P��qC j�E\I���|{Ok�����Y�,�Z��"�v��h:�����j|�Z�5�"Du�NI�sRX�I�ι�#L#���’�_�j�F�����/����.����1�U{��5�Ҟ����A�@�y�3��!�u\fb@}/�Z�l}n5�]}�E�"�O& �wTՇ��C�2�H�ѹ�M]9*G��裆 1 �$�Rh����Ys?�Q��X�����Y|��E|�[��� 0��ڛ��]B %���-�� VL+�s�&�6g��U�N(��,��ű ��o ��:�z$j���#=Q��!9��֌�e�;3qdR�Q=�h�C�XH����o�;���KҰݕ)*��Á�+�kvg��-e�z�q=���eȽcm����� 7�O�� ,umJ��s���s���G���. �چVnϾ���-�����!��X۠Ƕ�*�&c�0�п邴ߜ7+�\����|���x�(��6 �p�˩��Ͼ�9���I[�2n46] ��٤ٶgI����$K�L=����q�&�:��U��K�4�Vw’�{Fp�S�ނ�[�*Lac`����[K08�D�W���J��y�� ��c@���9"��>j؝ endstream endobj 135 0 obj <>stream �����������7��re*����I/瘵���~3���O`.QF�\�w�S�bl�2�{ �8k�վ�8ӛ�od�5r��=��CVuX&Ŀ�NLk0C#�Qe9Bi��;��u,�*�ߴ�X�j�’�A�Q"��O��O�%�] _"�a�c��`���k�ĴpnV���~�� fן+߱S�?��A��р� ��� מJ6o٭���G�b���’���t�j#�r�b��ŠF�M9: � 3�רI����,�"�)���9##Zٌņ���K��J�ï�`�U ����

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE