CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-4103 – Multiple vulnerabilities in IDM Sistemas QSige
https://notcve.org/view.php?id=CVE-2023-4103
It has been identified that the web application does not correctly filter input parameters, allowing SQL injections, DoS or information disclosure. • https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-idm-sistemas-qsige • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-47892 – Information disclosure in NetMan 204
https://notcve.org/view.php?id=CVE-2022-47892
All versions of NetMan 204 could allow an unauthenticated remote attacker to read a file (config.cgi) containing sensitive information, like credentials. Todas las versiones de NetMan 204 podrían permitir que un atacante remoto no autenticado lea un archivo (config.cgi) que contenga información confidencial, como credenciales. • https://www.incibe.es/incibe-cert/alerta-temprana/avisos-sci/multiples-vulnerabilidades-netman-204-riello-ups • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-4098 – Multiple vulnerabilities in IDM Sistemas QSige
https://notcve.org/view.php?id=CVE-2023-4098
It has been identified that the web application does not correctly filter input parameters, allowing SQL injections, DoS or information disclosure. • https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-idm-sistemas-qsige • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 172EXPL: 0CVE-2023-28571 – Buffer Over-read in WLAN HOST
https://notcve.org/view.php?id=CVE-2023-28571
Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.2EPSS: 0%CPEs: 476EXPL: 0CVE-2023-24849 – Buffer Over-read in Data Modem
https://notcve.org/view.php?id=CVE-2023-24849
Information Disclosure in data Modem while parsing an FMTP line in an SDP message. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-126: Buffer Over-read •