PT-2023-2957 · Schneider Electric · Modicon

Name of the Vulnerable Software and Affected Versions: Schneider Electric Modicon affected versions not specified Description: A vulnerability exists due to improper check for unusual or exceptional conditions, which could cause denial of service of the controller when communicating over the Modb...

Rockwell Automation Modbus TCP AOI Server

1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Modbus TCP Server Add-On Instruction AOI Vulnerability: Exposure of Sensitive Information to an Unauthorized Actor 2. RISK EVALUATION Successful exploitation of this...

Fingerprintx - Standalone Utility For Service Discovery On Open Ports!

fingerprintx is a utility similar to httpx that also supports fingerprinting services like as RDP, SSH, MySQL, PostgreSQL, Kafka, etc. fingerprintx can be used alongside port scanners like Naabu to fingerprint a set of ports identified during a port scan. For example, an engineer may wish to scan...

PT-2023-9779 · Mitsubishi · Gc-Enet-Com

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric India GC-ENET-COM versions with the first 2 digits of the 11-digit serial number of the unit being "16" Description: The issue is related to a Signal Handler Race Condition that allows a remote unauthenticated attacker to...

Hitachi Energy RTU500 series Improper Input Validation (CVE-2022-28613)

A vulnerability in the HCI Modbus TCP COMPONENT of Hitachi Energy RTU500 series CMU Firmware that is caused by the validation error in the length information carried in MBAP header allows an ATTACKER to reboot the device by sending a special crafted message. This issue affects: Hitachi Energy...

ABB PB610 Panel Builder 600 Use of Hard-Coded Credentials (CVE-2019-7225)

The ABB HMI components implement hidden administrative accounts that are used during the provisioning phase of the HMI interface. These credentials allow the provisioning tool Panel Builder 600 to flash a new interface and Tags MODBUS coils mapping to the HMI. These credentials are the idal123...

Rockwell Automation Modbus TCP AOI Information Disclosure Vulnerability

Rockwell Automation Modbus TCP AOI is a Modbus server from Rockwell USA. An information disclosure vulnerability exists in the Rockwell Automation Modbus TCP AOI, which can be exploited by an attacker to read the Modbus TCP server AOI information of a connected device...

CVE-2023-0027

Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected...

CVE-2023-0027

Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected...

Information disclosure

Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected...

CVE-2023-0027 Rockwell Automation Modbus TCP AOI Server Could Leak Sensitive Information

Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected...

CVE-2023-0027

Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that can cause the controller to respond with the most recent response to the last valid request, enabling a read of the AOI information. Affected versions include pre-2.04...

CVE-2023-0027 Rockwell Automation Modbus TCP AOI Server Could Leak Sensitive Information

Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. If exploited, an unauthorized user could read the connected...

Rockwell Automation Modbus TCP AOI 信息泄露漏洞

Rockwell Automation Modbus TCP AOI is a Modbus server from Rockwell USA. An information disclosure vulnerability exists in the Rockwell Automation Modbus TCP AOI, which can be exploited by an attacker to read the Modbus TCP server AOI information of a connected device...

PT-2023-2367 · Rockwell Automation · Modbus Tcp Server Aoi

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Modbus TCP Server AOI versions prior to 2.04.00 Description: The issue is related to the lack of protection for service data. An unauthorized user can send a malformed message, causing the controller to respond with a copy...

Real Time Automation 460MCBS 5.2.14 Cross Site Scripting

Exploit Title: Real Time Automation 460MCBS Cross Site Scripting XSS Date: 2023-03-09 Exploit Author: Yehia Elghaly Vendor Homepage: https://www.rtautomation.com/ Software Link: https://www.rtautomation.com/product/460mcbs/ Version: Revision 5.2.14 Tested on: Real Time Automation CVE: N/A Summary...

Schneider Electric EcoStruxure Control Expert, Process Expert, Modicon M340, M580 and M580 CPU Authentication Bypass By Capture-Replay (CVE-2022-45789)

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. Affected Products: EcoStruxure Control Expert All Versions, EcoStruxure Process Expert Versions pri...

K45062506: Siemens Ethernet card DoS vulnerabilities CVE-2018-11451 and CVE-2018-11452

Security Advisory Description CVE-2018-11451 A vulnerability has been identified in Firmware variant IEC 61850 for EN100 Ethernet module All versions V4.33, Firmware variant PROFINET IO for EN100 Ethernet module All versions, Firmware variant Modbus TCP for EN100 Ethernet module All versions,...

SUSE CVE-2017-13764

In Wireshark 2.4.0, the Modbus dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/packet-mbtcp.c by adding length validation...

SUSE CVE-2021-39921

NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file...