270 matches found
EUVD-2022-39936
Malicious code in bioql PyPI...
EUVD-2022-48645
Malicious code in bioql PyPI...
EUVD-2021-9924
Malicious code in bioql PyPI...
EUVD-2022-39938
Malicious code in bioql PyPI...
EUVD-2021-9916
Malicious code in bioql PyPI...
EUVD-2023-23782
Malicious code in bioql PyPI...
EUVD-2021-9913
Malicious code in bioql PyPI...
EUVD-2021-9914
Malicious code in bioql PyPI...
EUVD-2023-31702
Malicious code in bioql PyPI...
EUVD-2023-58646
Malicious code in bioql PyPI...
EUVD-2023-31701
Malicious code in bioql PyPI...
EUVD-2021-9932
Malicious code in bioql PyPI...
EUVD-2022-29220
Malicious code in bioql PyPI...
CVE-2023-27975
CWE-522: Insufficiently Protected Credentials vulnerability exists that could cause unauthorized access to the project file in EcoStruxure Control Expert when a local user tampers with the memory of the engineering workstation...
CVE-2023-6409
CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause unauthorized access to a project file protected with application password when opening the file with EcoStruxure Control Expert...
CVE-2022-24323
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software, when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product:...
CVE-2022-24322
A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data...
CVE-2021-22780
Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert all versions prior to V15.0 SP1, including all versions of Unity Pro, EcoStruxure Process Expert all versions, including all versions of EcoStruxure Hybrid DCS, and SCADAPack RemoteConnect for x70, all version...
CVE-2020-28213
A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on EcoStruxureª Control Expert now Unity Pro all versions that could cause unauthorized command execution when sending specially crafted requests over Modbus...
CVE-2020-7475
A CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection', reflective DLL, vulnerability exists in EcoStruxure Control Expert all versions prior to 14.1 Hot Fix, Unity Pro all versions, Modicon M340 all versions prior to V3.20, Modicon M580 all...