CVE-2022-2967

Summary: CVE-2022-2967 affects Prosys OPC UA Simulation Server and UA Modbus Server. The root cause is insufficient protection of credentials, allowing an attacker to obtain user credentials and access system data. Affected products/versions: Prosys OPC UA Simulation Server before 5.3.0-64 and UA...

PT-2023-12985 · Prosyst · Prosys Opc Ua Simulation Server

Name of the Vulnerable Software and Affected Versions: Prosys OPC UA Simulation Server versions prior to 5.3.0-64 UA Modbus Server versions 1.4.18-5 and prior Description: The issue concerns insufficient protection of credentials, potentially allowing an attacker to obtain user credentials and ga...

CVE-2022-4857

A vulnerability was found in Modbus Tools Modbus Poll up to 9.10.0 and classified as critical. Affected by this issue is some unknown functionality of the file mbpoll.exe of the component mbp File Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit...

CVE-2022-4857

A vulnerability was found in Modbus Tools Modbus Poll up to 9.10.0 and classified as critical. Affected by this issue is some unknown functionality of the file mbpoll.exe of the component mbp File Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit...

CVE-2022-4856

A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file mbslave.exe of the component mbs File Handler. The manipulation leads to buffer overflow. The attack can be launched remotely...

CVE-2022-4856

A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file mbslave.exe of the component mbs File Handler. The manipulation leads to buffer overflow. The attack can be launched remotely...

Buffer overflow

A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file mbslave.exe of the component mbs File Handler. The manipulation leads to buffer overflow. The attack can be launched remotely...

Buffer overflow

A vulnerability was found in Modbus Tools Modbus Poll up to 9.10.0 and classified as critical. Affected by this issue is some unknown functionality of the file mbpoll.exe of the component mbp File Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit...

CVE-2022-4857 Modbus Tools Modbus Poll mbp File mbpoll.exe buffer overflow

A vulnerability was found in Modbus Tools Modbus Poll up to 9.10.0 and classified as critical. Affected by this issue is some unknown functionality of the file mbpoll.exe of the component mbp File Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit...

CVE-2022-4857 Modbus Tools Modbus Poll mbp File mbpoll.exe buffer overflow

A vulnerability was found in Modbus Tools Modbus Poll up to 9.10.0 and classified as critical. Affected by this issue is some unknown functionality of the file mbpoll.exe of the component mbp File Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit...

CVE-2022-4857

CVE-2022-4857 affects Modbus Tools Modbus Poll (mbpoll.exe) in the mbp File Handler, with versions up to 9.10.0. The vulnerability is a buffer overflow in an unknown function of mbpoll.exe, which could be exploited remotely and was disclosed publicly. Connected documents consistently state the is...

CVE-2022-4856 Modbus Tools Modbus Slave mbs File mbslave.exe buffer overflow

A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file mbslave.exe of the component mbs File Handler. The manipulation leads to buffer overflow. The attack can be launched remotely...

CVE-2022-4856

The CVE concerns Modbus Tools Modbus Slave (versions up to 7.5.1). The vulnerability affects the mbslave.exe in the mbs File Handler, causing a buffer overflow. It can be exploited remotely, and the exploit has been disclosed publicly. Affected product/version details are consistent across multip...

Modbus Slave 安全漏洞

Modbus Slave is a device simulator for PLC programming. A security vulnerability exists in Modbus Tools Modbus Slave 7.5.1 and earlier versions, which stems from a problem with an unknown function of the file mbslave.exe that can cause a buffer overflow...

PT-2022-28142 · Unknown · Modbus Poll

Name of the Vulnerable Software and Affected Versions: Modbus Tools Modbus Poll versions up to 9.10.0 Description: A critical issue was found in the mbpoll.exe file of the mbp File Handler component, leading to a buffer overflow. This can be exploited remotely. The issue affects some unknown...

PT-2022-28141 · Unknown · Modbus Tools Modbus Slave

Name of the Vulnerable Software and Affected Versions: Modbus Tools Modbus Slave versions up to 7.5.1 Description: A critical issue has been found in the mbs File Handler component, specifically in the file mbslave.exe, leading to a buffer overflow. This can be exploited remotely. The issue affec...

Modbus Tools Modbus Poll 安全漏洞

Modbus Tools Modbus Poll is a Modbus master simulator from Modbus Tools. It is mainly used to help developers of Modbus slave devices or others who want to test and simulate Modbus. A security vulnerability exists in Modbus Tools Modbus Poll version 9.10.0 and earlier, which stems from a problem...

Prosys OPC UA Simulation Server (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.5 --------- Begin Update A part 1 of 3 --------- ATTENTION: Low attack complexity Vendor: Prosys OPC Equipment: UA Simulation Server, UA Modbus Server --------- End Update A part 1 of 3 --------- Vulnerability: Insufficiently Protected Credentials 2. UPDATE...

Schneider Electric Modicon Integer Underflow (CVE-2022-37301)

A CWE-191: Integer Underflow Wrap or Wraparound vulnerability exists that could cause a denial of service of the controller due to memory access violations when using the Modbus TCP protocol. Affected products: Modicon M340 CPU part numbers BMXP34V3.40 and prior, Modicon M580 CPU part numbers BME...

The vulnerability of the MODBUS protocol implementation in Tofino Xenon Security Appliance, Tofino Argon Security Appliance, and EAGLE 20 Tofino allows attackers to circumvent existing security restrictions.

The vulnerability of the MODBUS protocol implementation in Tofino Xenon Security Appliance, Tofino Argon Security Appliance, and EAGLE 20 Tofino lies in security configuration errors. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions using specially...