Lucene search
K

69 matches found

Cvelist
Cvelist
added 2018/04/18 8:0 p.m.31 views

CVE-2018-7242

Vulnerable hash algorithms exists in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules. The algorithm used to encrypt the password is vulnerable to hash collision attacks...

9.6AI score0.01946EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/04/18 8:0 p.m.25 views

CVE-2018-7241

Hard coded accounts exist in Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers in all versions of the communication modules...

9.6AI score0.03818EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2018/03/22 12:0 a.m.7 views

PT-2018-1294 · Schneider Electric · Modicon M340 +3

Name of the Vulnerable Software and Affected Versions: Schneider Electric's Modicon Premium, Modicon Quantum, Modicon M340, and BMXNOR0200 controllers affected versions not specified Description: The issue is related to hard-coded accounts in the communication modules of the affected controllers...

10CVSS7.3AI score0.03818EPSS
Exploits0References6
ICS
ICS
added 2013/10/15 6:0 a.m.188 views

Rockwell Automation ControlLogix PLC Vulnerabilities

Overview This advisory is a follow up to the original alert titled ICS-ALERT-12-020-02A—Rockwell Automation ControlLogix PLC Vulnerabilities that was published February 14, 2012, on the ICS-CERT Web page. Independent researcher Rubén Santamarta of IOActive identified vulnerabilities in Rockwell...

10CVSS7.6AI score0.54168EPSS
Exploits0References10
NVD
NVD
added 2013/01/24 9:55 p.m.26 views

CVE-2012-6437

The device does not properly authenticate users and the potential exists for a remote user to upload a new firmware image to the Ethernet card, whether it is a corrupt or legitimate firmware image. Successful exploitation of this vulnerability could cause loss of availability, integrity, and...

10CVSS7.9AI score0.09579EPSS
Exploits0References6
NVD
NVD
added 2013/01/24 9:55 p.m.29 views

CVE-2012-6442

When an affected product receives a valid CIP message from an unauthorized or unintended source to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP that instructs the product to reset, a DoS can occur. This situation could cause loss of availability and a disruption of communicatio...

7.8CVSS6.5AI score0.32807EPSS
Exploits0References7
NVD
NVD
added 2013/01/24 9:55 p.m.20 views

CVE-2012-6441

An information exposure of confidential information results when the device receives a specially crafted CIP packet to Port 2222/TCP, Port 2222/UDP, Port 44818/TCP, or Port 44818/UDP. Successful exploitation of this vulnerability could cause loss of confidentiality. Rockwell Automation EtherNet/I...

5CVSS6AI score0.54168EPSS
Exploits0References6
Prion
Prion
added 2013/01/24 9:55 p.m.19 views

Buffer overflow

Buffer overflow in Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier...

7.8CVSS7.3AI score0.32728EPSS
Exploits0References1Affected Software9
Prion
Prion
added 2013/01/24 9:55 p.m.23 views

Design/Logic Flaw

Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules; CompactLogix L32E and L35E controllers; 1788-ENBT FLEXLogix adapter; 1794-AENTR FLEX I/O EtherNet/IP adapter; ControlLogix 18 and earlier; CompactLogix 18 and earlier; GuardLogix 18 and...

7.8CVSS7.1AI score0.32807EPSS
Exploits0References2Affected Software8
Rows per page
Query Builder