Lucene search
K

24 matches found

Positive Technologies
Positive Technologies
added 2022/10/28 12:0 a.m.10 views

PT-2022-25996 · Haas · Haas Controller

Name of the Vulnerable Software and Affected Versions: Haas Controller version 100.20.000.1110 Description: The issue concerns the transmission of communication traffic involving the "Ethernet Q Commands" service in cleartext. This allows an attacker to obtain sensitive information being passed t...

9.1CVSS7.3AI score0.00386EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/10/28 12:0 a.m.9 views

PT-2022-16853 · Haas · Haas Controller

Name of the Vulnerable Software and Affected Versions: Haas Controller version 100.20.000.1110 Description: The issue is related to insufficient granularity of access control when using the "Ethernet Q Commands" service. This allows any user to write macros into registers outside of the authorize...

9.8CVSS8.4AI score0.00597EPSS
Exploits0References3
CISA
CISA
added 2022/10/25 12:0 a.m.13 views

CISA Releases Eight Industrial Control Systems Advisories

CISA has released eight 8 Industrial Control Systems ICS advisories on October 25, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for...

0.8AI score
Exploits0References8
ICS
ICS
added 2022/10/25 12:0 a.m.22 views

Haas Controller

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Haas Automation, Inc Equipment: Haas Controller Vulnerabilities: Missing Authentication for Critical Function, Insufficient Granularity of Access Control, Cleartext Transmission of Sensitive Information...

9.8CVSS9.3AI score0.00673EPSS
Exploits0References4
Rows per page
Query Builder