CVE-2025-10151 Malicious TCP/IP thread locking leads into diverse malfunctions

Improper locking vulnerability in Softing Industrial Automation GmbH gateways allows infected memory and/or resource leak exposure.This issue affects smartLink HW-PN: from 1.02 through 1.03 smartLink HW-DP: 1.31...

EUVD-2025-11462

Malicious code in bioql PyPI...

The vulnerability of Intel microprocessor microprogramming software, related to its inability to handle unexpected physical or environmental conditions, allows a perpetrator to cause malfunctions in the system.

The vulnerability of Intel microprogramming software is related to its inability to handle unexpected physical or environmental conditions. Exploiting this vulnerability can allow a perpetrator to cause malfunctions in the system’s operation...

The vulnerability of microprogrammed software in programmable logic controllers such as ControlLogix 5580, GuardLogix 5580, CompactLogix 5380, CompactLogix 5480, CompactGuardLogix 5380, and 1756-EN4TR lies in their uncontrolled resource consumption, which allows a intruder to trigger malfunctions during maintenance.

The vulnerability of microprogrammed software in programmable logic controllers such as ControlLogix 5580, GuardLogix 5580, CompactLogix 5380, CompactLogix 5480, CompactGuardLogix 5380, and 1756-EN4TR is related to uncontrolled resource consumption. Exploiting this vulnerability could allow a...

The vulnerability of the microprogrammed software of the PowerFlex 6000T inverter, related to insufficient testing of exceptional states, allows a intruder to trigger a maintenance failure.

The vulnerability of the microprogrammed software of the PowerFlex 6000T inverter is related to insufficient testing of exceptional states. Exploiting this vulnerability could allow an attacker to cause malfunctions in the device...

The vulnerability of the microprogrammed software in the SIMATIC S7-200 SMART CPU family, related to uncontrolled resource consumption, allows a intruder to trigger malfunctions during maintenance operations.

The vulnerability of the microprogrammed software in the SIMATIC S7-200 SMART CPU family is related to incorrect processing of TCP packets. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system remotely...

The vulnerability of the microprogrammed logic controller (PLC) Advantech ADAM-5630 software lies in the lack of authentication for a critical function. This allows a intruder to execute arbitrary commands and cause malfunctions in the device’s operation.

The vulnerability of the microprogrammed logic controller PLC Advantech ADAM-5630 software is related to the absence of authentication for the critical function. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands and cause malfunctions in the system...

The vulnerability of microprogrammed logic controllers from Unitronics Vision PLC, related to incorrect handling of exceptional states, allows a intruder to trigger a malfunction in maintenance operations.

The vulnerability of microprogrammed logic controllers from Unitronics Vision PLC lies in the improper handling of exceptional states. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system remotely...

The vulnerability of microprogrammed software in programmable logic controllers such as ControlLogix 5580, GuardLogix 5580, CompactLogix 5380, CompactLogix 5480, CompactGuardLogix 5380, and 1756-EN4TR lies in insufficient validation of input data. This allows a malicious actor to trigger malfunctions during maintenance operations.

The vulnerability of microprogrammed software in programmable logic controllers such as ControlLogix 5580, GuardLogix 5580, CompactLogix 5380, CompactLogix 5480, Compact GuardLogix 5380, and 1756-EN4TR is related to insufficient validation of input data. Exploiting this vulnerability can allow an...

The vulnerability of SIMATIC PCS, SIMATIC WinCC Runtime Professional, and SIMATIC WinCC control systems lies in the copying of buffers without checking the size of the input data. This allows a malicious actor to trigger malfunctions during maintenance operations.

The vulnerability of SIMATIC PCS, SIMATIC WinCC Runtime Professional, and SIMATIC WinCC control systems lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow attackers to cause malfunctions in the system’s operations...

The vulnerability of the microprogramming software of Schneider Electric PowerLogic P5 relay protection devices, related to the use of cryptographic algorithms with defects, allows a intruder to cause malfunctions during maintenance, restart the device, or gain full control over the device.

The vulnerability of the microprogramming software of Schneider Electric PowerLogic P5 relay protection devices for electrical networks relates to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow attackers to cause malfunctions in the devic...

The vulnerability of microprogrammed software in the programmable logic controller SIMATIC S7-200 SMART is related to the use of insufficiently random values, which allows a intruder to cause malfunctions during maintenance.

The vulnerability of microprogrammed software in the SIMATIC S7-200 SMART programmable logic controller is related to the use of insufficiently random values. Exploiting this vulnerability can allow an attacker, operating remotely, to predict the IP address sequence numbers and trigger a...

The vulnerability of the microprogrammed software of the PowerFlex 527 variable frequency converter, related to insufficient verification of input data, allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed software of the PowerFlex 527 variable frequency converter is related to insufficient verification of input data. Exploiting this vulnerability could allow an attacker operating remotely to cause malfunctions in the device’s operation...

The vulnerability of the MELSEC iQ-F series of programmable logic controllers, related to insufficient resource capacity, allows a intruder to trigger a malfunction in maintenance operations.

The vulnerability of the MELSEC iQ-F series of programmable logic controllers is related to insufficient resources. Exploiting this vulnerability can allow a remote attacker to cause malfunctions in the system’s operation...

The vulnerability of Rockwell Automation’s programmable logic controllers ControlLogix, related to the execution of operations outside the buffer boundaries in memory, allows a hacker to trigger a malfunction during maintenance.

The vulnerability of Rockwell Automation’s programmable logic controllers ControlLogix lies in the fact that the output data may escape from memory into the operating system. Exploiting this vulnerability could allow a malicious actor to cause malfunctions during operation...

The vulnerability of the microprogrammed protection system for the SEL-451 phase-change relay exists due to insufficient verification of input data. This allows a perpetrator to trigger a malfunction and lock out arbitrary services.

The vulnerability of the microprogrammed protection system for the SEL-451 phase-change relay exists due to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause malfunctions and lock out arbitrary services...

Denial Of Service (DoS)

xen is vulnerable to Denial Of Service DoS. The vulnerability exists due to incorrect caching invalidation guidelines in the AMD-Vi specification 48882—Rev 3.07-PUB—Oct 2022 on certain hardware. Updating specific fields of the DTE without flushing the IOMMU TLB can lead to device malfunctions e.g...

The vulnerability of Mitsubishi Electric’s M8V, M8, C80, and IoT Unit series controllers’ microprogramming software lies in the fact that the operation output goes beyond the buffer in memory. This allows a hacker to cause a malfunction in the device or execute arbitrary code.

The vulnerability of Mitsubishi Electric’s M8V, M8, C80, and IoT Unit microcontroller software lies in the fact that the operation data is stored outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause malfunctions in the device, or execute arbitrary code by...

The vulnerability of microprogrammed software in WAGO 750 programmable logic controllers, which stems from insufficient validation of input data, allows a intruder to trigger malfunctions during maintenance operations.

The vulnerability of the microprogrammed software in WAGO 750 programmable logic controllers is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause malfunctions by using specially crafted packages...

The vulnerability of microprogrammed software in WAGO 750 programmable logic controllers, which stems from insufficient validation of input data, allows a intruder to trigger malfunctions during maintenance operations.

The vulnerability of the microprogrammed software in WAGO 750 programmable logic controllers is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause malfunctions by using specially crafted packages...