ByteOS Network

SUBNET Solutions Inc.

Source -

CNA

BOS Name -

N/A

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2023-32659

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

View Details

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

CVSS Score-6.5||MEDIUM

EPSS-0.04% / 11.66%

7 Day CHG~0.00%

Published-19 Jun, 2023 | 20:18

Updated-09 Dec, 2024 | 20:48

SUBNET PowerSYSTEM Center Cross-site Scripting

SUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could propagate out of the system and reach users who are subscribed to email notifications.

Vendor-subnet SUBNET Solutions Inc.

Product-powersystem_center PowerSYSTEM Center

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2023-29158

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

View Details

Assigner-Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)

CVSS Score-6.1||MEDIUM

EPSS-0.04% / 10.69%

7 Day CHG~0.00%

Published-19 Jun, 2023 | 20:11

Updated-09 Dec, 2024 | 20:49

SUBNET PowerSYSTEM Center Authentication Bypass by Capture-replay

SUBNET PowerSYSTEM Center versions 2020 U10 and prior are vulnerable to replay attacks which may result in a denial-of-service condition or a loss of data integrity.

Vendor-subnet SUBNET Solutions Inc.

Product-powersystem_center PowerSYSTEM Center

CWE ID-CWE-294

Authentication Bypass by Capture-replay