CVE-2021-22779

Authentication Bypass by Spoofing vulnerability exists in EcoStruxure Control Expert all versions prior to V15.0 SP1, including all versions of Unity Pro, EcoStruxure Control Expert V15.0 SP1, EcoStruxure Process Expert all versions, including all versions of EcoStruxure Hybrid DCS, SCADAPack...

CVE-2021-22779

The CVE-2021-22779 entry describes an Authentication Bypass by Spoofing vulnerability affecting Schneider Electric products including EcoStruxure Control Expert (pre- and post‑patch variants), EcoStruxure Process Expert, SCADAPack RemoteConnect for x70, and Modicon M580/M340 CPUs. The flaw enable...

Schneider Electric EcoStruxure Control Expert 安全漏洞

Schneider Electric EcoStruxure Control Expert formerly known as Unity Pro is a suite of programming software for Schneider Electric logic controller products from Schneider Electric, France. Schneider Electric EcoStruxure Control Expert has a security vulnerability in several of its products that...

CVE-2021-22779

Authentication Bypass by Spoofing vulnerability exists in EcoStruxure Control Expert all versions prior to V15.0 SP1, including all versions of Unity Pro, EcoStruxure Control Expert V15.0 SP1, EcoStruxure Process Expert all versions, including all versions of EcoStruxure Hybrid DCS, SCADAPack...

isf

This is an Industrial Exploitation Framework ISF repository, a Python-based framework for exploitation and testing of industrial control systems ICS. The framework is similar to Metasploit and is designed to be used for penetration testing and vulnerability assessment of ICS devices. The reposito...

CVE-2021-21002

In Phoenix Contact FL COMSERVER UNI in versions 2.40 a invalid Modbus exception response can lead to a temporary denial of service...

Denial of service

In Phoenix Contact FL COMSERVER UNI in versions 2.40 a invalid Modbus exception response can lead to a temporary denial of service...

CVE-2021-21002

CVE-2021-21002 affects Phoenix Contact FL COMSERVER UNI in versions

CVE-2021-21002 Denial of Service in Phoenix Contact FL COMSERVER UNI products

In Phoenix Contact FL COMSERVER UNI in versions 2.40 a invalid Modbus exception response can lead to a temporary denial of service...

Phoenix Contact FL COMSERVER UNI 安全漏洞

The Phoenix Contact FL COMSERVER UNI is an interface converter from Phoenix Contac Phoenix Contact, Germany. Serial Device Server for Converting Serial 232/422/485 Interfaces to Ethernet A security vulnerability exists in the Phoenix Contact FL COMSERVER UNI, which stems from an invalid Modbus...

CVE-2021-22764

A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 see security notification for version infromation that could cause loss of connectivity to the device via Modbus TCP protocol when an attacker sends a specially...

CVE-2021-22764

A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 see security notification for version infromation that could cause loss of connectivity to the device via Modbus TCP protocol when an attacker sends a specially...

Authentication flaw

A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 see security notification for version infromation that could cause loss of connectivity to the device via Modbus TCP protocol when an attacker sends a specially...

CVE-2021-22764

A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 see security notification for version infromation that could cause loss of connectivity to the device via Modbus TCP protocol when an attacker sends a specially...

CVE-2021-22764

A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic PM8ECC, PowerLogic EGX100 and PowerLogic EGX300 see security notification for version infromation that could cause loss of connectivity to the device via Modbus TCP protocol when an attacker sends a specially...

CVE-2021-22764

CVE-2021-22764 is an improper authentication vulnerability affecting Schneider Electric PowerLogic PM55xx, PM8ECC, EGX100, and EGX300. The issue can cause loss of connectivity to the device over Modbus TCP when an attacker sends a specially crafted HTTP request. Public documents identify the affe...

Schneider Electric PowerLogic 授权问题漏洞

Schneider Electric PowerLogic is an industrial control device from Schneider Electric, France. Provides increased power factor to improve power quality and troubleshoot power failures to protect networks, devices and operators. An authorization issue vulnerability exists in PowerLogic's PM55xx,...

PT-2021-15202

Name of the Vulnerable Software and Affected Versions PowerLogic PM55xx affected versions not specified PowerLogic PM8ECC affected versions not specified PowerLogic EGX100 affected versions not specified PowerLogic EGX300 affected versions not specified Description A CWE-287: Improper...

Local Memory Corruption Vulnerability in Modbus Poll

Modbus Poll is a useful modbus development and debugging tool, can be very convenient for modbus debugging, is a very useful Modbus host simulation program. A local memory corruption vulnerability exists in Modbus Poll. An attacker can exploit the vulnerability by constructing malformed files tha...

CVE-2021-20589

Buffer access with incorrect length value vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.38.000, GT25 model communication driver versions 01.19.000 through 01.38.000, GT23 model communication driver versions 01.19.000 through 01.38.000 and GT21 model...