Security Links
A vulnerability has been identified in PP TeleControl Server Basic 1000 to 5000 V3.1 (6NH9910-0AA31-0AE1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 256 to 1000 V3.1 (6NH9910-0AA31-0AD1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 32 to 64 V3.1 (6NH9910-0AA31-0AF1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 64 to 256 V3.1 (6NH9910-0AA31-0AC1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 8 to 32 V3.1 (6NH9910-0AA31-0AB1) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 1000 V3.1 (6NH9910-0AA31-0AD0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 256 V3.1 (6NH9910-0AA31-0AC0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 32 V3.1 (6NH9910-0AA31-0AF0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 5000 V3.1 (6NH9910-0AA31-0AE0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 64 V3.1 (6NH9910-0AA31-0AB0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 8 V3.1 (6NH9910-0AA31-0AA0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic Serv Upgr (6NH9910-0AA31-0GA1) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic Upgr V3.1 (6NH9910-0AA31-0GA0) (All versions < V3.1.2.1 with redundancy configured). The affected system allows remote users to send maliciously crafted objects. Due to insecure deserialization of user-supplied content by the affected software, an unauthenticated attacker could exploit this vulnerability by sending a maliciously crafted serialized object. This could allow the attacker to execute arbitrary code on the device with SYSTEM privileges.
Tags
#active-directory #advisory #agency #ai #airport #anarchism #android #antivirus #api #apt #archive #article #asm #assembly #attack #audiobook #automotive #balloon #binary-exploitation #blockchain #blog #blueteam #browser #bugbounty #c2 #career #certificate #challenge #chatbot #cheatsheet #cipher #cloud #community #conference #container #course #cpu #crime #crypto #cryptocurrency #cryptography #ctf #cve #cwe #cyberattack #cybercrime #darknet #darkweb #data-breach #database #dataset #digital #directory #dns #document #domain #edr #electro #email #encryption #evasion #event #exploit #feed #forensics #forum #gadget #game #geolocation #gpt #guide #hackathon #hacking #hardware #history #image #infrastructure #interconnection #internet #ioc #ip #job #journal #kernel #kubernetes #learn #lei #linux #llm #machine-learning #macos #magazine #malware #microsoft #mobile #monitor #network #news #onion #open-source #os #osint #ot #paper #password #payload #pcap #pentest #pentesting #persistence #philosophy #phishing #poc #podcast #privacy #product #prompt-injection #quantum #railway #ransomware #realtime #reconnaissance #redteam #report #research #resource #resources #reverse-engineering #rfc #safe #sandbox #satellite #scam #scan #search-engine #secure-coding #security-clearance #server #setup #shadow-library #smart-contract #social #social-engineering #source-code #ssl #ssn #storage #subdomain #surveillance #syscall #table #technique #techniques #technology #thread #threat #tips #tls #tool #tools #track #traffic #train #training #trends #ttp #tutorial #vehicle #vin #vpn #vulnerability #wargame #web #web3 #webcam #webrtc #wiki #windows #winodws #wordlist #writeup #youtube