Skip to main content
CVE-2020-12504 CRITICAL POC Act Now

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Es7510 Xt Firmware Es8509 Xt Firmware Es8510 Xt Firmware Es9528 Xtv2 Firmware +25
NVD
CVSS 3.1
9.8
EPSS
3.0%
CVE-2020-12501 CRITICAL POC Act Now

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Es7510 Xt Firmware Es8509 Xt Firmware Es8510 Xt Firmware Es9528 Xtv2 Firmware +22
NVD
CVSS 3.1
9.8
EPSS
3.3%
CVE-2020-12500 CRITICAL POC Act Now

Improper Authorization vulnerability of Pepperl+Fuchs P+F Comtrol RocketLinx ES7510-XT, ES8509-XT, ES8510-XT, ES9528-XTv2, ES7506, ES7510, ES7528, ES8508, ES8508F, ES8510, ES8510-XTE,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Es7510 Xt Firmware Es8509 Xt Firmware Es8510 Xt Firmware Es9528 Xtv2 Firmware +9
NVD
CVSS 3.1
9.8
EPSS
2.9%
CVE-2020-6364 CRITICAL Act Now

SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an attacker to modify a cookie in a way that OS commands can be executed and. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SAP Command Injection Introscope Enterprise Manager
NVD
CVSS 3.1
10.0
EPSS
6.4%
CVE-2020-4499 CRITICAL PATCH Act Now

IBM Security Access Manager 9.0.7 and IBM Security Verify Access 10.0.0 could allow an unauthorized public Oauth client to bypass some or all of the authentication checks and gain access to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

IBM Authentication Bypass Security Access Manager Security Verify Access
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2020-27156 CRITICAL Act Now

Veritas APTARE versions prior to 10.5 did not perform adequate authorization checks. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Authentication Bypass Aptare
NVD
CVSS 3.1
9.8
EPSS
2.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy