201 matches found
Delta Electronics CNCSoft-G2 Out-of-Bounds Write Vulnerability
Delta Electronics CNCSoft-G2 is a human-machine interface HMI software from Delta Electronics, China. Delta Electronics CNCSoft-G2 suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code in the context of the current process...
Delta Electronics CNCSoft-G2 Buffer Overflow Vulnerability (CNVD-2024-32986)
Delta Electronics CNCSoft-G2 is a human-machine interface HMI software from Delta Electronics, China. The Delta Electronics CNCSoft-G2 suffers from a buffer overflow vulnerability that can be exploited by an attacker to execute code in the context of the current process...
Delta Electronics CNCSoft-G2 缓冲区错误漏洞
Delta Electronics CNCSoft-G2 is a human-machine interface HMI software from Delta Electronics, China. Delta Electronics CNCSoft-G2 suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code in the context of the current process...
Delta Electronics CNCSoft-G2 缓冲区错误漏洞
Delta Electronics CNCSoft-G2 is a human-machine interface HMI software from Delta Electronics, China. Delta Electronics CNCSoft-G2 suffers from an out-of-bounds read vulnerability that can be exploited by a remote attacker to execute code in the context of the current process...
The vulnerability of the Rockwell Automation FactoryTalk View SE human-machine interface control software lies in the improper assignment of permissions to critical resources, allowing a perpetrator to increase their privileges.
The vulnerability of the Rockwell Automation FactoryTalk View SE human-machine interface management software is related to the improper assignment of permissions for a critical resource. Exploiting this vulnerability can allow an attacker to enhance their privileges by modifying scripts...
The vulnerability of the Rockwell Automation FactoryTalk View SE HMI software, related to deficiencies in authentication procedures, allows a intruder to disclose protected information.
The vulnerability of the Rockwell Automation FactoryTalk View SE human-machine interface management software is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow a malicious actor to disclose protected information...
CVE-2024-37368
A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE. The vulnerability allows a user from a remote system with FTView to send a packet to the customer’s server to view an HMI project. Due to the lack of proper authentication, this action is allowed without...
Rockwell Automation FactoryTalk View SE 安全漏洞
Rockwell Automation FactoryTalk View SE is an industrial automation system view interface from Rockwell Automation. An authentication error vulnerability exists in Rockwell Automation FactoryTalk View SE, which can be exploited by an attacker to send packets to a customer's server from a remote...
The vulnerability of the HMI interface configuration software Monitouch V-SFT, related to data type conversion errors, allows a hacker to execute arbitrary code.
The vulnerability of the HMI interface configuration software Monitouch V-SFT is related to data type conversion errors. Exploiting this vulnerability could allow an attacker to execute arbitrary code using specially created V9 files...
Fuji Electric Monitouch V-SFT 安全漏洞
Fuji Electric Monitouch V-SFT is a HMI software from Fuji Electric. A code execution vulnerability exists in Fuji Electric Monitouch V-SFT that originates from susceptibility to type confusion and can be exploited by an attacker to cause a system crash or execute arbitrary code...
Fuji Electric Monitouch V-SFT Buffer Overflow Vulnerability
Fuji Electric Monitouch V-SFT is a human-machine interface HMI configuration software developed by Fuji Electric, which is mainly used in industrial automation, providing touch screen interface design, PDF document viewing, video playback, alarm messages and other functions. Fuji Electric Monitou...
Exposed and vulnerable: Recent attacks highlight critical need to protect internet-exposed OT devices
Since late 2023, Microsoft has observed an increase in reports of attacks focusing on internet-exposed, poorly secured operational technology OT devices. Internet-exposed OT equipment in water and wastewater systems WWS in the US were targeted in multiple attacks over the past months by different...
FATEK FvDesigner 安全漏洞
FATEK FvDesigner is a hardware device from the Chinese company Yonghong Electric FATEK. It provides a human-machine interface. A security vulnerability exists in FATEK FvDesigner that stems from a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to execut...
FATEK FvDesigner 安全漏洞
FATEK FvDesigner is a hardware device from the Chinese company Yonghong Electric FATEK. It provides a human-machine interface. A security vulnerability exists in FATEK FvDesigner that stems from a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to execut...
FATEK FvDesigner 安全漏洞
FATEK FvDesigner is a hardware device from the Chinese company Yonghong Electric FATEK. It provides a human-machine interface. A security vulnerability exists in FATEK FvDesigner that originates from not properly initializing a pointer before accessing it. An attacker can exploit the vulnerabilit...
Inductive Automation Ignition 安全漏洞
Inductive Automation Ignition is an integrated software platform for SCADA systems from Inductive Automation, USA. The platform supports SCADA Data Acquisition and Monitoring Systems, HMI Human Machine Interface, and more. A security vulnerability exists in Inductive Automation Ignition that stem...
Inductive Automation Ignition 安全漏洞
Inductive Automation Ignition is an integrated software platform for SCADA systems from Inductive Automation, USA. The platform supports SCADA data acquisition and monitoring systems, HMI human machine interface, etc. Ignition is a Fedora CoreOS and RHEL CoreOS utility for manipulating disks duri...
The vulnerability of the AutomationDirect C-MORE EA9 HMI software’s microprogramming system, related to unencrypted storage of critical information, allows a intruder to gain unauthorized access to protected data.
The vulnerability of the Microprogrammed Control Panel Software of AutomationDirect C-MORE EA9 HMI relates to the unencrypted storage of critical information. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information...
Siemens SCALANCE W700产品系列安全漏洞
Siemens SCALANCE is a series of Ethernet switches from Siemens, Germany. It connects to Industrial Control System ICS devices, including Programmable Logic Controllers PLCs and Human Machine Interface HMI systems. A security vulnerability exists in the Siemens SCALANCE W700 product family, which...
Siemens SCALANCE W700产品系列安全漏洞
Siemens SCALANCE is a series of Ethernet switches from Siemens, Germany. It connects to industrial control system ICS devices, including programmable logic controllers PLCs and human machine interface HMI systems. A security vulnerability exists in the Siemens SCALANCE W700 product family that...