CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2877 matches found

BDU FSTEC•added 2023/12/04 12:0 a.m.•3 views

The vulnerability of the monitoring software for PLCCs from Fuji Electric, Tellus Lite V-Simulator, arises from writing beyond the buffer boundaries, allowing a intruder to execute arbitrary code.

The vulnerability of the monitoring software for PLCCs from Fuji Electric, Tellus Lite V-Simulator, lies in the fact that it allows data to be written beyond the buffer boundaries. Exploiting this vulnerability could enable a hacker to execute arbitrary code...

7.8CVSS7.7AI score0.00335EPSS

Exploits0References5Affected Software1

BDU FSTEC•added 2023/12/01 12:0 a.m.•3 views

The vulnerability of microprogrammed software in STARDOM FCN/FCJ programmable logic controllers, related to uncontrolled resource consumption, allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed software in STARDOM FCN/FCJ programmable logic controllers is related to uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service failures...

5.3CVSS5.9AI score0.01166EPSS

Exploits0References4

CNNVD•added 2023/12/01 12:0 a.m.•3 views

Yokogawa Electric Security Breach

Yokogawa Electric is a server of Yokogawa Electric Yokogawa Corporation in Japan. A security vulnerability exists in Yokogawa Electric Corporation STARDOM FCN/FCJ versions R1.01 through R4.31 that originates from uncontrolled resource consumption. An attacker could cause a denial of service...

5.3CVSS6.6AI score0.01166EPSS

Exploits0References4

BDU FSTEC•added 2023/11/29 12:0 a.m.•2 views

The vulnerability in the web-based interface for controlling WAGO PFC100/PFC200 programmable logic controllers, Edge Controllers, and WAGO Touch Panel 600 sensor panels allows a perpetrator to gain increased privileges.

The vulnerability of the web-based interface for controlling WAGO PFC100/PFC200 programmable logic controllers, Edge Controllers, and WAGO Touch Panel 600 sensors is related to errors in privilege management during control operations. Exploiting this vulnerability can allow attackers to gain...

5.7CVSS5.9AI score0.00197EPSS

Exploits0References2

VulnCheck KEV•added 2023/11/28 12:0 a.m.•1 views

VulnCheck KEV: CVE-2023-6448

Unitronics Vision Series PLCs and HMIs ship with an insecure default password, which if left unchanged, can allow attackers to execute remote commands...

9.8CVSS7.4AI score0.02089EPSS

Exploits0References1

BDU FSTEC•added 2023/11/22 12:0 a.m.•3 views

The vulnerability of the SQL Query component of the microprogramming software for the programmable access controller SmartGard Silver with Matrix Keyboard allows a intruder to disclose protected information.

The vulnerability of the SQL Query component of the microprogramming system used in SmartGard Silver access controllers with matrix keyboards is related to the transmission of critical information in open text. Exploiting this vulnerability could allow a malicious actor to disclose the protected...

7.8CVSS5.9AI score0.00519EPSS

Exploits1References3Affected Software1

Citrix•added 2023/11/22 12:0 a.m.•10 views

Citrix Delivery Controllers generates Event ID 505 and Event ID 3602 continuously

Upgrading CVAD version to 2308 generates“Citrix ConfigSync Service” with "Event ID “505 ” and "Citrix High Availability Service" with "Event ID 3602" The Citrix Config Sync Service failed an import. Error details: Error importing configuration data into secondary Broker...

7.2AI score

Exploits0

CVE•added 2023/11/14 7:4 p.m.•54 views

CVE-2023-28376

CVE-2023-28376 describes an out-of-bounds read in the firmware of some Intel® E810 Ethernet Controllers and Adapters. The issue could allow an unauthenticated attacker to cause a denial of service via adjacent access. Affected firmware versions are before 1.7.1 (per the CVE description); Intel’s ...

6.5CVSS6.4AI score0.00384EPSS

Exploits0References2Affected Software1

CNNVD•added 2023/11/14 12:0 a.m.•2 views

Intel Ethernet Controllers and Adapters Security Vulnerability

Intel Ethernet Adapters and Intel Ethernet Controllers are products of Intel Corporation, USA. Intel Ethernet Adapters are Ethernet adapters. Intel Ethernet Controllers are Ethernet controllers. Intel Ethernet Controllers is an Ethernet controller. A security vulnerability exists in Intel Etherne...

6.5CVSS6.7AI score0.00384EPSS

Exploits0References3

CNNVD•added 2023/11/14 12:0 a.m.•2 views

Siemens SCALANCE 资源管理错误漏洞

The SCALANCE M-800, MUM-800 and S615 and the RUGGEDCOM RM1224 are industrial routers.The SCALANCE W products are wireless communication devices for connecting industrial components, such as Programmable Logic Controllers PLCs or Human Machine Interfaces HMIs, that comply with the IEEE 802.11...

6.5CVSS6.7AI score0.01001EPSS

Exploits0References6

CNNVD•added 2023/11/14 12:0 a.m.•4 views

Siemens SCALANCE 安全漏洞

6.9CVSS6.5AI score0.00688EPSS

Exploits0References5

Intel•added 2023/11/14 12:0 a.m.•18 views

Intel® Ethernet Controllers and Adapters Advisory

Summary: A potential security vulnerability in some Intel® Ethernet Controllers and Adapters may allow denial of service. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2023-28376 Description: Out-of-bounds read in the firmware for...

6.5CVSS6.5AI score0.00384EPSS

Exploits0

ATTACKERKB•added 2023/11/07 8:15 p.m.•3 views

CVE-2023-4154

A design flaw was found in Samba's DirSync control implementation, which exposes passwords and secrets in Active Directory to privileged users and Read-Only Domain Controllers RODCs. This flaw allows RODCs and users possessing the GETCHANGES right to access all attributes, including sensitive...

7.5CVSS6.7AI score0.01151EPSS

Exploits0References6