1659 matches found
isf
This is an offensive tool for ICS exploitation. It is a Python-based framework for ICS exploitation, similar to Metasploit. The framework is based on the open-source project "routersploit" and is designed for exploitation of industrial control systems ICS. The tool provides a range of features,...
isf
This is an offensive tool for ICS exploitation. It is a Python-based framework for exploiting Industrial Control Systems ICS, similar to Metasploit. The framework, known as ICSSploit, is a fork of the routersploit project and is designed for ICS exploitation. It includes various modules for...
Modbus Banner Grabbing
This module grabs the banner of any device running the Modbus protocol by sending a request with Modbus Function Code 43 Read Device Identification. Modbus is a data communications protocol originally published by Modicon now Schneider Electric in 1979 for use with its programmable logic...
CVE-2020-7523
Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver see security notification for versions which could cause local privilege escalation when the Modbus Serial Driver service is invoked. The driver does not properly assign, modify, track, or check privileg...
CVE-2020-7523
Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver see security notification for versions which could cause local privilege escalation when the Modbus Serial Driver service is invoked. The driver does not properly assign, modify, track, or check privileg...
Privilege escalation
Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver see security notification for versions which could cause local privilege escalation when the Modbus Serial Driver service is invoked. The driver does not properly assign, modify, track, or check privileg...
CVE-2020-7523
Schneider Electric Modbus Serial Driver contains an improper privilege management vulnerability that could enable local privilege escalation when the Modbus Serial Driver service is invoked. The driver reportedly does not properly assign, modify, track, or check privileges for an actor, creating ...
CVE-2020-7523
Improper Privilege Management vulnerability exists in Schneider Electric Modbus Serial Driver see security notification for versions which could cause local privilege escalation when the Modbus Serial Driver service is invoked. The driver does not properly assign, modify, track, or check privileg...
The vulnerability of the Schneider Electric Modbus Serial Driver and Schneider Electric Modbus Driver Suite, related to insecure management of privileges, allows attackers to escalate their privileges.
The vulnerability of the Schneider Electric Modbus Serial Driver and Schneider Electric Modbus Driver Suite lies in the insecure management of privileges. Exploiting this vulnerability can allow attackers to enhance their privileges...
Denial of Service Vulnerability in KGW3101 at Beijing Eastland Technology Co.
KGW3101 is a gateway product that realizes conversion between Modbus TCP and Modbus RTU/ASCII protocols. A denial of service vulnerability exists in the KGW3101 of Beijing Eastland Technology Co. Ltd. that can be exploited by attackers to cause the device to fail to function properly...
modbus-ida.org Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1182757 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
Siemens En100 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
A vulnerability has been identified in EN100 Ethernet module DNP3 variant All versions, EN100 Ethernet module IEC 61850 variant All versions V4.37, EN100 Ethernet module IEC104 variant All versions, EN100 Ethernet module Modbus TCP variant All versions, EN100 Ethernet module PROFINET IO variant A...
CVE-2020-7477
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 Versions 7.0 and prior, Quantum processors with integrated Ethernet – 140CPU65xxxxx all Versions, and Premium processors with integrated Ethernet all Versions, which...
CVE-2020-7477
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 Versions 7.0 and prior, Quantum processors with integrated Ethernet – 140CPU65xxxxx all Versions, and Premium processors with integrated Ethernet all Versions, which...
Design/Logic Flaw
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 Versions 7.0 and prior, Quantum processors with integrated Ethernet – 140CPU65xxxxx all Versions, and Premium processors with integrated Ethernet all Versions, which...
CVE-2020-7477
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 Versions 7.0 and prior, Quantum processors with integrated Ethernet – 140CPU65xxxxx all Versions, and Premium processors with integrated Ethernet all Versions, which...
CVE-2020-7477
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 Versions 7.0 and prior, Quantum processors with integrated Ethernet – 140CPU65xxxxx all Versions, and Premium processors with integrated Ethernet all Versions, which...
CVE-2020-7477
CVE-2020-7477 affects Schneider Electric/Quantum hardware: Quantum Ethernet Network module 140NOE771x1 (versions 7.0 and prior); Quantum processors with integrated Ethernet 140CPU65xxxxx (all versions); and Premium processors with integrated Ethernet (all versions). The vulnerability is a CWE-754...
PT-2020-19604
Name of the Vulnerable Software and Affected Versions Quantum Ethernet Network module 140NOE771x1 versions 7.0 and prior Quantum processors with integrated Ethernet – 140CPU65xxxxx all versions Premium processors with integrated Ethernet all versions Description A vulnerability exists due to...
CVE-2020-6970
A Heap-based Buffer Overflow was found in Emerson OpenEnterprise SCADA Server 2.83 if Modbus or ROC Interfaces have been installed and are in use and all versions of OpenEnterprise 3.1 through 3.3.3, where a specially crafted script could execute code on the OpenEnterprise Server...