A vulnerability, which was classified as critical, has been found in InsydeH2O up to 05.16.24/05.26.24/05.35.24/05.43.24/05.51.24. This issue affects the function SdHostDriver
of the component SWSMI Handler. Upgrading to version 05.16.25, 05.26.25, 05.35.25, 05.43.25 or 05.51.25 eliminates this vulnerability.
InsydeH2O SWSMI SdHostDriver CommBufferData buffer overflow
- Virtual Patching
- January 6, 2022
- 8:10 am
CVE-2023-32306 : TIME TRACKER UP TO 1.22.13.5791 REPORTS.PHP SQL INJECTION
Description Rockwell Automation was made aware that Kinetix 5500 drives, manufactured between May 2022 and January 2023, and are running
CVE-2023-1834 : ROCKWELL AUTOMATION KINETIX 5500 7.13 TELNET/FTP ACCESS CONTROL
Description Rockwell Automation was made aware that Kinetix 5500 drives, manufactured between May 2022 and January 2023, and are running
CVE-2023-2645 : USR USR-G806 1.0.41 WEB MANAGEMENT PAGE USERNAME/PASSWORD HARD-CODED PASSWORD
Description A vulnerability, which was classified as critical, was found in USR USR-G806 1.0.41. Affected is an unknown function of