AutomationDirect P3-550E Programming Software Connection CurrDir heap-based buffer overflow vulnerability

Talos Vulnerability Report TALOS-2024-1937 AutomationDirect P3-550E Programming Software Connection CurrDir heap-based buffer overflow vulnerability May 28, 2024 CVE Number CVE-2024-24947,CVE-2024-24946 SUMMARY A heap-based buffer overflow vulnerability exists in the Programming Software Connecti...

Pipedream ICS malware toolkit is a nightmare

TL;DR Malware toolkit specifically designed for attacking ICS Modular and framework based Main features are enumeration, Modbus comms, and HTTP interactions Operational Technology OT network breaches are often due to connected Windows devices Off-network compromise assessments give a strategic vi...

PT-2024-25764 · Libmodbus · Libmodbus

Name of the Vulnerable Software and Affected Versions: libmodbus version 3.1.10 Description: The issue is a Buffer Overflow that can be triggered via the modbus write bits function when it is fed with specially crafted input. This leads to out-of-bounds read and can potentially cause a crash or...

CVE-2024-34244

libmodbus v3.1.10 is vulnerable to Buffer Overflow via the modbuswritebits function. This issue can be triggered when the function is fed with specially crafted input, which leads to out-of-bounds read and can potentially cause a crash or other unintended behaviors...

CVE-2023-51587

Voltronic Power ViewPower getModbusPassword Missing Authentication Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Voltronic Power ViewPower. Authentication is not required to exploit this vulnerabilit...

CVE-2023-51587

Voltronic Power ViewPower getModbusPassword Missing Authentication Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Voltronic Power ViewPower. Authentication is not required to exploit this vulnerabilit...

Softing edgeConnector 安全漏洞

Softing edgeConnector is a Docker-based software application from Softing Inc. It can access process data in SIMATIC S7, SINUMERIK 840D and Modbus TCP controllers. A security vulnerability exists in Softing edgeConnector that stems from a specific flaw in the handling of OPC UA ConditionRefresh...

Softing edgeConnector 安全漏洞

Softing edgeConnector is a Docker-based software application from Softing Inc. It can access process data in SIMATIC S7, SINUMERIK 840D and Modbus TCP controllers. A security vulnerability exists in Softing edgeConnector that originates from a dereferenced null pointer in the handling of OPC clie...

libmodbus 安全漏洞

libmodbus is a library written in C that can send/receive data according to the Modbus protocol. A security vulnerability exists in libmodbus version v3.1.10, which originates from a buffer overflow vulnerability in src/modbus.c. The vulnerability is caused by a buffer overflow vulnerability...

Siemens SENTRON 3KC ATC6 Ethernet Module Hidden Function Vulnerability

The Siemens SENTRON 3KC ATC6 Expansion Module is a power distribution protection device from Siemens, Germany, for monitoring and protecting power systems. A hidden function vulnerability exists in the Siemens SENTRON 3KC ATC6 Ethernet Module due to affected devices exposing unused and unstable...

CVE-2024-22044

A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet 3KC9000-8TL75 All versions. Affected devices expose an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. This could allow an attacker on the same Modbus network to create a denial of service...

Design/Logic Flaw

A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet 3KC9000-8TL75 All versions. Affected devices expose an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. This could allow an attacker on the same Modbus network to create a denial of service...

CVE-2024-22044

A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet 3KC9000-8TL75 All versions. Affected devices expose an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. This could allow an attacker on the same Modbus network to create a denial of service...

CVE-2024-22044

The CVE-2024-22044 entry concerns Siemens SENTRON 3KC ATC6 Expansion Module Ethernet (3KC9000-8TL75, all versions). The issue is an unused and unstable HTTP service exposed on port 80/tcp over the Modbus‑TCP Ethernet, which an attacker on the same Modbus network can trigger to cause a denial-of-s...

CVE-2024-22044

A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet 3KC9000-8TL75 All versions. Affected devices expose an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. This could allow an attacker on the same Modbus network to create a denial of service...

Siemens SENTRON 3KC ATC6 Expansion Module Ethernet 安全漏洞

The Siemens SENTRON 3KC ATC6 Expansion Module is a power distribution protection device from Siemens, Germany, for monitoring and protecting power systems. A hidden function vulnerability exists in the Siemens SENTRON 3KC ATC6 Ethernet Module due to affected devices exposing unused and unstable...

PT-2024-2320 · Siemens · Sentron 3Kc Atc6 Expansion Module Ethernet

Name of the Vulnerable Software and Affected Versions: SENTRON 3KC ATC6 Expansion Module Ethernet 3KC9000-8TL75 All versions Description: A vulnerability has been identified that exposes an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. This could allow an attacker on th...

Siemens SENTRON

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

CVE-2023-35835

An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. The device provides a WiFi access point for initial configuration. The WiFi network provided has no network authentication such as an encryption key and persists permanently, including after enrollment and setup is complete. The WiF...

CVE-2023-35835

An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. The device provides a WiFi access point for initial configuration. The WiFi network provided has no network authentication such as an encryption key and persists permanently, including after enrollment and setup is complete. The WiF...