16 matches found
CVE-2025-53476
OpenPLC_v3 is affected by CVE-2025-53476 due to a DoS in the ModbusTCP server. A crafted sequence of TCP connections can exhaust the server’s file descriptors, causing the server to be unable to process subsequent Modbus requests. TALOS details the vulnerability in OpenPLC_v3, including the waitF...
CVE-2025-53476
A denial of service vulnerability exists in the ModbusTCP server functionality of OpenPLC v3 a931181e8b81e36fadf7b74d5cba99b73c3f6d58. A specially crafted series of network connections can lead to the server not processing subsequent Modbus requests. An attacker can open a series of TCP connectio...
EUVD-2025-32856
A denial of service vulnerability exists in the ModbusTCP server functionality of OpenPLC v3 a931181e8b81e36fadf7b74d5cba99b73c3f6d58. A specially crafted series of network connections can lead to the server not processing subsequent Modbus requests. An attacker can open a series of TCP connectio...
EUVD-2023-23551
Malicious code in bioql PyPI...
CVE-2023-0027
Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected...
CVE-2023-1285
Signal Handler Race Condition vulnerability in Mitsubishi Electric India GC-ENET-COM whose first 2 digits of 11-digit serial number of unit are "16" allows a remote unauthenticated attacker to cause a denial-of-service DoS condition in Ethernet communication by sending a large number of specially...
Race condition
Signal Handler Race Condition vulnerability in Mitsubishi Electric India GC-ENET-COM whose first 2 digits of 11-digit serial number of unit are "16" allows a remote unauthenticated attacker to cause a denial-of-service DoS condition in Ethernet communication by sending a large number of specially...
CVE-2023-1285
Signal Handler Race Condition vulnerability in Mitsubishi Electric India GC-ENET-COM whose first 2 digits of 11-digit serial number of unit are "16" allows a remote unauthenticated attacker to cause a denial-of-service DoS condition in Ethernet communication by sending a large number of specially...
CVE-2023-1285
Signal Handler Race Condition vulnerability in Mitsubishi Electric India GC-ENET-COM whose first 2 digits of 11-digit serial number of unit are "16" allows a remote unauthenticated attacker to cause a denial-of-service DoS condition in Ethernet communication by sending a large number of specially...
CVE-2023-1285
CVE-2023-1285 describes a signal handler race condition in Mitsubishi Electric India GC-ENET-COM (GOC35 series) where units with serial numbers starting with 16 are vulnerable. An unauthenticated remote attacker can cause a DoS in Ethernet communications by sending a flood of specially crafted UD...
Rockwell Automation Modbus TCP AOI Server
1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Modbus TCP Server Add-On Instruction AOI Vulnerability: Exposure of Sensitive Information to an Unauthorized Actor 2. RISK EVALUATION Successful exploitation of this...
PT-2023-9779 · Mitsubishi · Gc-Enet-Com
Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric India GC-ENET-COM versions with the first 2 digits of the 11-digit serial number of the unit being "16" Description: The issue is related to a Signal Handler Race Condition that allows a remote unauthenticated attacker to...
CVE-2023-0027 Rockwell Automation Modbus TCP AOI Server Could Leak Sensitive Information
Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected...
CVE-2023-0027 Rockwell Automation Modbus TCP AOI Server Could Leak Sensitive Information
Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected...
CVE-2023-0027
Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that can cause the controller to respond with the most recent response to the last valid request, enabling a read of the AOI information. Affected versions include pre-2.04...
PT-2023-2367 · Rockwell Automation · Modbus Tcp Server Aoi
Name of the Vulnerable Software and Affected Versions: Rockwell Automation Modbus TCP Server AOI versions prior to 2.04.00 Description: The issue is related to the lack of protection for service data. An unauthorized user can send a malformed message, causing the controller to respond with a copy...