CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

224 matches found

RedhatCVE•added 2026/01/09 11:21 a.m.•3 views

CVE-2021-22781

Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert all versions prior to V15.0 SP1, including all versions of Unity Pro, EcoStruxure Process Expert all versions, including all versions of EcoStruxure Hybrid DCS, and SCADAPack RemoteConnect for x70, all version...

5.5CVSS6.9AI score0.00236EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:21 a.m.•5 views

CVE-2021-22789

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU part numbers BM...

6.5CVSS6.8AI score0.00805EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:19 a.m.•4 views

CVE-2021-22782

Missing Encryption of Sensitive Data vulnerability exists in EcoStruxure Control Expert all versions prior to V15.0 SP1, including all versions of Unity Pro, EcoStruxure Process Expert all versions, including all versions of EcoStruxure Hybrid DCS, and SCADAPack RemoteConnect for x70, all version...

5.5CVSS6.4AI score0.00109EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:59 a.m.•6 views

CVE-2020-7559

A CWE-120: Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability exists in PLC Simulator on EcoStruxureª Control Expert now Unity Pro all versions that could cause a crash of the PLC simulator present in EcoStruxureª Control Expert software when receiving a specially...

7.5CVSS6.8AI score0.01882EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 9:58 a.m.•20 views

CVE-2020-7560

A CWE-123: Write-what-where Condition vulnerability exists in EcoStruxure™ Control Expert all versions and Unity Pro former name of EcoStruxure™ Control Expert all versions, that could cause a crash of the software or unexpected code execution when opening a malicious file in EcoStruxure™ Control...

8.6CVSS7.3AI score0.01387EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:42 a.m.•22 views

CVE-2022-37300

A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists that could cause unauthorized access in read and write mode to the controller when communicating over Modbus. Affected Products: EcoStruxure Control Expert Including all Unity Pro versions former name of...

9.8CVSS6.7AI score0.00666EPSS

Exploits0References1