home.social

Search

1000 results for “OT_TC_Amateur”

  1. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-044
    MB connect line: Multiple SQLi vulnerabilities in mbCONNECT24/mymbCONNECT24

    Multiple SQLi vulnerabilities have been discovered in MB connect line mbCONNECT24/mymbCONNECT24.
    #CVE CVE-2026-40850, CVE-2026-40819, CVE-2026-40818, CVE-2026-40817, CVE-2026-40816, CVE-2026-40815, CVE-2026-40814, CVE-2026-40813, CVE-2026-40812, CVE-2026-40811, CVE-2026-40810, CVE-2026-40836, CVE-2026-40834, CVE-2026-40833, CVE-2026-40849, CVE-2026-40848, CVE-2026-40847, CVE-2026-40846, CVE-2026-40845, CVE-2026-40844, CVE-2026-40843, CVE-2026-40842, CVE-2026-40841, CVE-2026-40840, CVE-2026-40839, CVE-2026-40838, CVE-2026-40837, CVE-2026-40835, CVE-2026-40832, CVE-2026-40831, CVE-2026-40830, CVE-2026-40829, CVE-2026-40828, CVE-2026-40827, CVE-2026-40825, CVE-2026-40824, CVE-2026-40823, CVE-2026-40826, CVE-2026-40822, CVE-2026-40821, CVE-2026-40820

    certvde.com/en/advisories/vde-

    #CSAF mbconnectline.csaf-tp.certvde.

    #ot #advisory #cve #csaf
  2. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-044
    MB connect line: Multiple SQLi vulnerabilities in mbCONNECT24/mymbCONNECT24

    Multiple SQLi vulnerabilities have been discovered in MB connect line mbCONNECT24/mymbCONNECT24.
    #CVE CVE-2026-40850, CVE-2026-40819, CVE-2026-40818, CVE-2026-40817, CVE-2026-40816, CVE-2026-40815, CVE-2026-40814, CVE-2026-40813, CVE-2026-40812, CVE-2026-40811, CVE-2026-40810, CVE-2026-40836, CVE-2026-40834, CVE-2026-40833, CVE-2026-40849, CVE-2026-40848, CVE-2026-40847, CVE-2026-40846, CVE-2026-40845, CVE-2026-40844, CVE-2026-40843, CVE-2026-40842, CVE-2026-40841, CVE-2026-40840, CVE-2026-40839, CVE-2026-40838, CVE-2026-40837, CVE-2026-40835, CVE-2026-40832, CVE-2026-40831, CVE-2026-40830, CVE-2026-40829, CVE-2026-40828, CVE-2026-40827, CVE-2026-40825, CVE-2026-40824, CVE-2026-40823, CVE-2026-40826, CVE-2026-40822, CVE-2026-40821, CVE-2026-40820

    certvde.com/en/advisories/vde-

    #CSAF mbconnectline.csaf-tp.certvde.

    #csaf #cve #advisory #ot
  3. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-050
    Phoenix Contact: PLCnext Firmware Security Issues Related to APPs and Configuration Files

    This advisory addresses security issues in PLCnext firmware versions prior to 2026.0.3 that are related to APP handling and the processing of configuration files. The identified vulnerabilities affect APP installation authenticity as well as the handling of configuration data in writable directories. Successful exploitation may allow authenticated attackers with different privilege levels to compromise integrity, availability, and system security of affected PLCnext Control. Both issues are resolved starting with PLCnext firmware version 2026.0.3.
    #CVE CVE-2025-41669, CVE-2025-41670

    certvde.com/en/advisories/vde-

    #CSAF phoenixcontact.csaf-tp.certvde

    #ot #advisory #cve #csaf
  4. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-050
    Phoenix Contact: PLCnext Firmware Security Issues Related to APPs and Configuration Files

    This advisory addresses security issues in PLCnext firmware versions prior to 2026.0.3 that are related to APP handling and the processing of configuration files. The identified vulnerabilities affect APP installation authenticity as well as the handling of configuration data in writable directories. Successful exploitation may allow authenticated attackers with different privilege levels to compromise integrity, availability, and system security of affected PLCnext Control. Both issues are resolved starting with PLCnext firmware version 2026.0.3.
    #CVE CVE-2025-41669, CVE-2025-41670

    certvde.com/en/advisories/vde-

    #CSAF phoenixcontact.csaf-tp.certvde

    #ot #advisory #cve #csaf
  5. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-050
    Phoenix Contact: PLCnext Firmware Security Issues Related to APPs and Configuration Files

    This advisory addresses security issues in PLCnext firmware versions prior to 2026.0.3 that are related to APP handling and the processing of configuration files. The identified vulnerabilities affect APP installation authenticity as well as the handling of configuration data in writable directories. Successful exploitation may allow authenticated attackers with different privilege levels to compromise integrity, availability, and system security of affected PLCnext Control. Both issues are resolved starting with PLCnext firmware version 2026.0.3.
    #CVE CVE-2025-41669, CVE-2025-41670

    certvde.com/en/advisories/vde-

    #CSAF phoenixcontact.csaf-tp.certvde

    #csaf #cve #advisory #ot
  6. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-053
    METTLER TOLEDO: EVA Karl Fischer titrators affected by libpng vulnerabilities

    Titration software versions prior to 2.0.2.6 are affected by libpng vulnerabilities CVE-2026-33416 and CVE-2026-33636.
    #CVE CVE-2026-33636, CVE-2026-33416

    certvde.com/en/advisories/vde-

    #CSAF mettler-toledo.csaf-tp.certvde

    #ot #advisory #cve #csaf
  7. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-053
    METTLER TOLEDO: EVA Karl Fischer titrators affected by libpng vulnerabilities

    Titration software versions prior to 2.0.2.6 are affected by libpng vulnerabilities CVE-2026-33416 and CVE-2026-33636.
    #CVE CVE-2026-33636, CVE-2026-33416

    certvde.com/en/advisories/vde-

    #CSAF mettler-toledo.csaf-tp.certvde

    #ot #advisory #cve #csaf
  8. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-053
    METTLER TOLEDO: EVA Karl Fischer titrators affected by libpng vulnerabilities

    Titration software versions prior to 2.0.2.6 are affected by libpng vulnerabilities CVE-2026-33416 and CVE-2026-33636.
    #CVE CVE-2026-33636, CVE-2026-33416

    certvde.com/en/advisories/vde-

    #CSAF mettler-toledo.csaf-tp.certvde

    #csaf #cve #advisory #ot
  9. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-009
    JUMO: Multiple products affected by nodejs vulnerability

    A vulnerability in the REST API of the JUMO device allows an attacker to trigger a denial‑of‑service (DoS) condition. Due to an incorrect implementation of the arrayLimit option in the Node.js qs module, limits for incoming request parameters are not properly enforced. As a result, an attacker can send specially crafted requests containing excessively large or deeply nested arrays, causing the web server to become unresponsive. This condition leads to a crash of the web server, followed by an automatic restart of the device.
    #CVE CVE-2025-15284

    certvde.com/en/advisories/vde-

    #CSAF jumo.csaf-tp.certvde.com/.well

    #ot #advisory #cve #csaf
  10. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-009
    JUMO: Multiple products affected by nodejs vulnerability

    A vulnerability in the REST API of the JUMO device allows an attacker to trigger a denial‑of‑service (DoS) condition. Due to an incorrect implementation of the arrayLimit option in the Node.js qs module, limits for incoming request parameters are not properly enforced. As a result, an attacker can send specially crafted requests containing excessively large or deeply nested arrays, causing the web server to become unresponsive. This condition leads to a crash of the web server, followed by an automatic restart of the device.
    #CVE CVE-2025-15284

    certvde.com/en/advisories/vde-

    #CSAF jumo.csaf-tp.certvde.com/.well

    #ot #advisory #cve #csaf
  11. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-009
    JUMO: Multiple products affected by nodejs vulnerability

    A vulnerability in the REST API of the JUMO device allows an attacker to trigger a denial‑of‑service (DoS) condition. Due to an incorrect implementation of the arrayLimit option in the Node.js qs module, limits for incoming request parameters are not properly enforced. As a result, an attacker can send specially crafted requests containing excessively large or deeply nested arrays, causing the web server to become unresponsive. This condition leads to a crash of the web server, followed by an automatic restart of the device.
    #CVE CVE-2025-15284

    certvde.com/en/advisories/vde-

    #CSAF jumo.csaf-tp.certvde.com/.well

    #csaf #cve #advisory #ot
  12. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-057
    CODESYS Control - Out-of-bounds Write

    Successful exploitation allows an unauthenticated remote attacker to trigger an out-of-bounds write, causing the CODESYS Control Runtime to crash and resulting in a denial of service on the affected device.
    #CVE CVE-2026-8047

    certvde.com/en/advisories/vde-

    #CSAF codesys.csaf-tp.certvde.com/.w

    #ot #advisory #cve #csaf
  13. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-057
    CODESYS Control - Out-of-bounds Write

    Successful exploitation allows an unauthenticated remote attacker to trigger an out-of-bounds write, causing the CODESYS Control Runtime to crash and resulting in a denial of service on the affected device.
    #CVE CVE-2026-8047

    certvde.com/en/advisories/vde-

    #CSAF codesys.csaf-tp.certvde.com/.w

    #ot #advisory #cve #csaf
  14. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-057
    CODESYS Control - Out-of-bounds Write

    Successful exploitation allows an unauthenticated remote attacker to trigger an out-of-bounds write, causing the CODESYS Control Runtime to crash and resulting in a denial of service on the affected device.
    #CVE CVE-2026-8047

    certvde.com/en/advisories/vde-

    #CSAF codesys.csaf-tp.certvde.com/.w

    #csaf #cve #advisory #ot
  15. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-056
    CODESYS Control - Incorrect Authorization

    The CODESYS Control runtime system provides a user management mechanism with multiple privilege groups including the visualization administrators group, which is intended solely to manage visualization users.
    #CVE CVE-2026-8046

    certvde.com/en/advisories/vde-

    #CSAF codesys.csaf-tp.certvde.com/.w

    #ot #advisory #cve #csaf
  16. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-056
    CODESYS Control - Incorrect Authorization

    The CODESYS Control runtime system provides a user management mechanism with multiple privilege groups including the visualization administrators group, which is intended solely to manage visualization users.
    #CVE CVE-2026-8046

    certvde.com/en/advisories/vde-

    #CSAF codesys.csaf-tp.certvde.com/.w

    #ot #advisory #cve #csaf
  17. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-056
    CODESYS Control - Incorrect Authorization

    The CODESYS Control runtime system provides a user management mechanism with multiple privilege groups including the visualization administrators group, which is intended solely to manage visualization users.
    #CVE CVE-2026-8046

    certvde.com/en/advisories/vde-

    #CSAF codesys.csaf-tp.certvde.com/.w

    #csaf #cve #advisory #ot
  18. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-055
    CODESYS Development System - Incorrect Default Permissions

    Two local privilege escalation vulnerabilities were identified in the CODESYS Development System. Specifically, the PackageManager and the IPM create temporary directories with insecure default permissions when executed with administrative privileges. This allows low-privileged local users to modify a temporary bootstrap file to force the deployment of arbitrary components, or to exploit a Time-of-Check to Time-of-Use (TOCTOU) race condition to replace digitally verified installation files with malicious ones prior to installation. Both flaws bypass intended security boundaries during the installation of packages or add-ons.
    #CVE CVE-2026-44469, CVE-2026-44468

    certvde.com/en/advisories/vde-

    #CSAF codesys.csaf-tp.certvde.com/.w

    #ot #advisory #cve #csaf
  19. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-055
    CODESYS Development System - Incorrect Default Permissions

    Two local privilege escalation vulnerabilities were identified in the CODESYS Development System. Specifically, the PackageManager and the IPM create temporary directories with insecure default permissions when executed with administrative privileges. This allows low-privileged local users to modify a temporary bootstrap file to force the deployment of arbitrary components, or to exploit a Time-of-Check to Time-of-Use (TOCTOU) race condition to replace digitally verified installation files with malicious ones prior to installation. Both flaws bypass intended security boundaries during the installation of packages or add-ons.
    #CVE CVE-2026-44469, CVE-2026-44468

    certvde.com/en/advisories/vde-

    #CSAF codesys.csaf-tp.certvde.com/.w

    #ot #advisory #cve #csaf
  20. CERT@VDE @[email protected] ·

    #OT #Advisory VDE-2026-055
    CODESYS Development System - Incorrect Default Permissions

    Two local privilege escalation vulnerabilities were identified in the CODESYS Development System. Specifically, the PackageManager and the IPM create temporary directories with insecure default permissions when executed with administrative privileges. This allows low-privileged local users to modify a temporary bootstrap file to force the deployment of arbitrary components, or to exploit a Time-of-Check to Time-of-Use (TOCTOU) race condition to replace digitally verified installation files with malicious ones prior to installation. Both flaws bypass intended security boundaries during the installation of packages or add-ons.
    #CVE CVE-2026-44469, CVE-2026-44468

    certvde.com/en/advisories/vde-

    #CSAF codesys.csaf-tp.certvde.com/.w

    #csaf #cve #advisory #ot
  21. Onno (VK6FLAB) @[email protected] ·

    #ot #ai #research #humanity

    Research suggests that Assumed Intelligence is making human interaction significantly worse while leaving participants feeling heard and understood.

    arxiv.org/abs/2510.01395

    #humanity #research #ai #ot
  22. Onno (VK6FLAB) @[email protected] ·

    #ot #ai #research #humanity

    Research suggests that Assumed Intelligence is making human interaction significantly worse while leaving participants feeling heard and understood.

    arxiv.org/abs/2510.01395

    #humanity #research #ai #ot
  23. Onno (VK6FLAB) @[email protected] ·

    #ot #ai #research #humanity

    Research suggests that Assumed Intelligence is making human interaction significantly worse while leaving participants feeling heard and understood.

    arxiv.org/abs/2510.01395

    #humanity #research #ai #ot
  24. Onno (VK6FLAB) @[email protected] ·

    #ot #ai #research #humanity

    Research suggests that Assumed Intelligence is making human interaction significantly worse while leaving participants feeling heard and understood.

    arxiv.org/abs/2510.01395

    #ot #ai #research #humanity
  25. Onno (VK6FLAB) @[email protected] ·

    #ot #ai #research #humanity

    Research suggests that Assumed Intelligence is making human interaction significantly worse while leaving participants feeling heard and understood.

    arxiv.org/abs/2510.01395

    #humanity #research #ai #ot
  26. RAWCHILI @[email protected] ·

    OT is underway! rawchili.com/5006956/ #hockey #IceHockey #NationalHockeyLeague #NHL

    #nhl #nationalhockeyleague #icehockey #hockey
  27. RAWCHILI @[email protected] ·

    OT is underway! rawchili.com/5006956/ #hockey #IceHockey #NationalHockeyLeague #NHL

    #hockey #icehockey #nationalhockeyleague #nhl
  28. Franck ☠️ @[email protected] ·

    [OT] Mémo pour le code de configuration des thèmes
    #dotclear #développement #thème
    open-time.net/post/2026/05/23/

    #dotclear #developpement #theme
  29. Franck ☠️ @[email protected] ·

    [OT] Mémo pour le code de configuration des thèmes
    #dotclear #développement #thème
    open-time.net/post/2026/05/23/

    #dotclear #developpement #theme
  30. Franck ☠️ @[email protected] ·

    [OT] Mémo pour le code de configuration des thèmes
    #dotclear #développement #thème
    open-time.net/post/2026/05/23/

    #dotclear #developpement #theme
Next page