CVE-2026-29972

Affected software: nanoMODBUS library (v1.22.0 and earlier as described). Vulnerability: a stack-based buffer overflow in recv_read_registers_res() within nanomodbus.c when performing nmbs_read_holding_registers() or nmbs_read_input_registers(). The code writes register data from the server respo...

PT-2026-39142

Name of the Vulnerable Software and Affected Versions nanoMODBUS versions prior to 1.23.0 Description A stack-based buffer overflow exists in the recv read registers res function within nanomodbus.c. This occurs when a client invokes nmbs read holding registers or nmbs read input registers, as th...

Large Language Models As Explainable Cyberattack Detectors for Energy Industrial Control Systems

In modern energy systems, industrial control systems ICS and power-system SCADA require intrusion detection that is not only accurate but also auditable by operators. The ICS intrusion-detection landscape is currently dominated by established supervised detectors. In this paper, we study whether ...

[SECURITY] Fedora 44 Update: qt6-qtserialbus-6.10.3-1.fc44

Qt Serial Bus API provides classes and functions to access the various industrial serial buses and protocols, such as CAN, ModBus, and others...

EUVD-2026-21066

A low-privileged remote attacker can send Modbus packets to manipulate register values that are inputs to the odorant injection logic such that too much or too little odorant is injected into a gas line...

CVE-2026-4436

A low-privileged remote attacker can send Modbus packets to manipulate register values that are inputs to the odorant injection logic such that too much or too little odorant is injected into a gas line...

GPL Odorizers GPL 访问控制错误漏洞

GPL Odorizers GPL is a series of gas odorization devices and gas processing control systems developed by the American company GPL. GPL Odorizers GPL has a access control vulnerability; this vulnerability allows low-privilege remote attackers to send Modbus data packets to manipulate register...

CVE-2025-41709

CVE-2025-41709 describes an unauthenticated command injection using Modbus-TCP/Modbus-RTU that grants read/write access on the affected device. Multiple sources (NVD, Red Hat, CVE listing, and vulnerability feeds) concur that the issue is remotely exploitable over network with a high severity (CV...

CVE-2025-41709

An unauthenticated remote attacker can perform a command injection via Modbus-TCP or Modbus-RTU to gain read and write access on the affected device...

“Good enough” emulation: Fuzzing a single thread to uncover vulnerabilities

A Cisco Talos researcher worked around the limitations of hardware-level Code Read-out Protection RDP on the Socomec DIRIS M-70 gateway by pivoting from physical debugging to a "good enough" emulation approach. By focusing on emulating only the single thread responsible for Modbus protocol handli...

CVE-2022-50979

An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus RS485...

CVE-2022-50978

An unauthenticated remote attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus TCP...

CVE-2022-50979

An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus RS485...

CVE-2022-50979 Multiple Innomic VibroLine VLX and avibia AVLX allow unauthenticated configuration preset change via Modbus (RS485)

An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus RS485...

EUVD-2022-55956

An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus RS485...

CVE-2022-50979

An unauthenticated adjacent attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus RS485...

CVE-2022-50979

CVE-2022-50979 affects Innomic VibroLine VLX and avibia AVLX devices. An unauthenticated adjacent attacker can disrupt operations by switching between multiple configuration presets via Modbus (RS485). The impact is focused on availability (disruption of operations) with no confidentiality/integr...

CVE-2022-50978 Multiple Innomic VibroLine VLX and avibia AVLX allow unauthenticated configuration preset change via Modbus (TCP)

An unauthenticated remote attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus TCP...

EUVD-2022-55955

An unauthenticated remote attacker could potentially disrupt operations by switching between multiple configuration presets via Modbus TCP...

CVE-2022-50978

CVE-2022-50978 affects Innomic VibroLine VLX and avibia AVLX devices. The issue allows an unauthenticated remote attacker to disrupt operations by switching between multiple configuration presets via Modbus (TCP). The Red Hat, NVD, CVE List, and related enrichments corroborate this description. T...