Lucene search
K

201 matches found

CNVD
CNVD
added 2024/07/16 12:0 a.m.4 views

Delta Electronics CNCSoft-G2 Out-of-Bounds Write Vulnerability

Delta Electronics CNCSoft-G2 is a human-machine interface HMI software from Delta Electronics, China. Delta Electronics CNCSoft-G2 suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code in the context of the current process...

8.8CVSS7.1AI score0.00697EPSS
Exploits0References1
CNVD
CNVD
added 2024/07/16 12:0 a.m.6 views

Delta Electronics CNCSoft-G2 Buffer Overflow Vulnerability (CNVD-2024-32986)

Delta Electronics CNCSoft-G2 is a human-machine interface HMI software from Delta Electronics, China. The Delta Electronics CNCSoft-G2 suffers from a buffer overflow vulnerability that can be exploited by an attacker to execute code in the context of the current process...

8.8CVSS7.5AI score0.00738EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.3 views

Delta Electronics CNCSoft-G2 缓冲区错误漏洞

Delta Electronics CNCSoft-G2 is a human-machine interface HMI software from Delta Electronics, China. Delta Electronics CNCSoft-G2 suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code in the context of the current process...

8.8CVSS7.4AI score0.00697EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.3 views

Delta Electronics CNCSoft-G2 缓冲区错误漏洞

Delta Electronics CNCSoft-G2 is a human-machine interface HMI software from Delta Electronics, China. Delta Electronics CNCSoft-G2 suffers from an out-of-bounds read vulnerability that can be exploited by a remote attacker to execute code in the context of the current process...

8.8CVSS7.3AI score0.00697EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/06/28 12:0 a.m.6 views

The vulnerability of the Rockwell Automation FactoryTalk View SE human-machine interface control software lies in the improper assignment of permissions to critical resources, allowing a perpetrator to increase their privileges.

The vulnerability of the Rockwell Automation FactoryTalk View SE human-machine interface management software is related to the improper assignment of permissions for a critical resource. Exploiting this vulnerability can allow an attacker to enhance their privileges by modifying scripts...

7.8CVSS5.5AI score0.00333EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/06/24 12:0 a.m.6 views

The vulnerability of the Rockwell Automation FactoryTalk View SE HMI software, related to deficiencies in authentication procedures, allows a intruder to disclose protected information.

The vulnerability of the Rockwell Automation FactoryTalk View SE human-machine interface management software is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow a malicious actor to disclose protected information...

8.6CVSS5.4AI score0.00498EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/06/14 3:15 p.m.7 views

CVE-2024-37368

A user authentication vulnerability exists in the Rockwell Automation FactoryTalk® View SE. The vulnerability allows a user from a remote system with FTView to send a packet to the customer’s server to view an HMI project. Due to the lack of proper authentication, this action is allowed without...

7.5CVSS5.8AI score0.00498EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/14 12:0 a.m.4 views

Rockwell Automation FactoryTalk View SE 安全漏洞

Rockwell Automation FactoryTalk View SE is an industrial automation system view interface from Rockwell Automation. An authentication error vulnerability exists in Rockwell Automation FactoryTalk View SE, which can be exploited by an attacker to send packets to a customer's server from a remote...

8.2CVSS6.9AI score0.00498EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/06/11 12:0 a.m.6 views

The vulnerability of the HMI interface configuration software Monitouch V-SFT, related to data type conversion errors, allows a hacker to execute arbitrary code.

The vulnerability of the HMI interface configuration software Monitouch V-SFT is related to data type conversion errors. Exploiting this vulnerability could allow an attacker to execute arbitrary code using specially created V9 files...

7.8CVSS7.6AI score0.00508EPSS
Exploits0References6Affected Software1
CNNVD
CNNVD
added 2024/06/10 12:0 a.m.7 views

Fuji Electric Monitouch V-SFT 安全漏洞

Fuji Electric Monitouch V-SFT is a HMI software from Fuji Electric. A code execution vulnerability exists in Fuji Electric Monitouch V-SFT that originates from susceptibility to type confusion and can be exploited by an attacker to cause a system crash or execute arbitrary code...

9.8CVSS7.9AI score0.00508EPSS
Exploits0References2
CNVD
CNVD
added 2024/06/03 12:0 a.m.3 views

Fuji Electric Monitouch V-SFT Buffer Overflow Vulnerability

Fuji Electric Monitouch V-SFT is a human-machine interface HMI configuration software developed by Fuji Electric, which is mainly used in industrial automation, providing touch screen interface design, PDF document viewing, video playback, alarm messages and other functions. Fuji Electric Monitou...

9.8CVSS7.8AI score0.0056EPSS
Exploits0References1
Microsoft Secure
Microsoft Secure
added 2024/05/30 5:0 p.m.20 views

Exposed and vulnerable: Recent attacks highlight critical need to protect internet-exposed OT devices

Since late 2023, Microsoft has observed an increase in reports of attacks focusing on internet-exposed, poorly secured operational technology OT devices. Internet-exposed OT equipment in water and wastewater systems WWS in the US were targeted in multiple attacks over the past months by different...

9.8CVSS7.2AI score0.02089EPSS
Exploits0
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.2 views

FATEK FvDesigner 安全漏洞

FATEK FvDesigner is a hardware device from the Chinese company Yonghong Electric FATEK. It provides a human-machine interface. A security vulnerability exists in FATEK FvDesigner that stems from a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to execut...

7.8CVSS7.8AI score0.00394EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.4 views

FATEK FvDesigner 安全漏洞

FATEK FvDesigner is a hardware device from the Chinese company Yonghong Electric FATEK. It provides a human-machine interface. A security vulnerability exists in FATEK FvDesigner that stems from a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to execut...

7.8CVSS7.8AI score0.00394EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.5 views

FATEK FvDesigner 安全漏洞

FATEK FvDesigner is a hardware device from the Chinese company Yonghong Electric FATEK. It provides a human-machine interface. A security vulnerability exists in FATEK FvDesigner that originates from not properly initializing a pointer before accessing it. An attacker can exploit the vulnerabilit...

7.8CVSS7.9AI score0.00418EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.6 views

Inductive Automation Ignition 安全漏洞

Inductive Automation Ignition is an integrated software platform for SCADA systems from Inductive Automation, USA. The platform supports SCADA Data Acquisition and Monitoring Systems, HMI Human Machine Interface, and more. A security vulnerability exists in Inductive Automation Ignition that stem...

8.8CVSS9.1AI score0.55177EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/03 12:0 a.m.4 views

Inductive Automation Ignition 安全漏洞

Inductive Automation Ignition is an integrated software platform for SCADA systems from Inductive Automation, USA. The platform supports SCADA data acquisition and monitoring systems, HMI human machine interface, etc. Ignition is a Fedora CoreOS and RHEL CoreOS utility for manipulating disks duri...

9.8CVSS9.8AI score0.01784EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/04/10 12:0 a.m.6 views

The vulnerability of the AutomationDirect C-MORE EA9 HMI software’s microprogramming system, related to unencrypted storage of critical information, allows a intruder to gain unauthorized access to protected data.

The vulnerability of the Microprogrammed Control Panel Software of AutomationDirect C-MORE EA9 HMI relates to the unencrypted storage of critical information. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information...

6.8CVSS5.5AI score0.00399EPSS
Exploits0References4Affected Software11
CNNVD
CNNVD
added 2024/04/09 12:0 a.m.6 views

Siemens SCALANCE W700产品系列安全漏洞

Siemens SCALANCE is a series of Ethernet switches from Siemens, Germany. It connects to Industrial Control System ICS devices, including Programmable Logic Controllers PLCs and Human Machine Interface HMI systems. A security vulnerability exists in the Siemens SCALANCE W700 product family, which...

8.4CVSS6.6AI score0.00234EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/09 12:0 a.m.5 views

Siemens SCALANCE W700产品系列安全漏洞

Siemens SCALANCE is a series of Ethernet switches from Siemens, Germany. It connects to industrial control system ICS devices, including programmable logic controllers PLCs and human machine interface HMI systems. A security vulnerability exists in the Siemens SCALANCE W700 product family that...

6.1CVSS6.7AI score0.00214EPSS
Exploits0References2
Rows per page
Query Builder