Lucene search
K

39 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.6 views

CVE-2021-22790

A CWE-125: Out-of-bounds Read vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU part numbers BMEP and BMEH, all versions, Modicon M340 CPU part...

6.5CVSS6.8AI score0.00832EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.6 views

CVE-2021-22789

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU part numbers BM...

6.5CVSS6.8AI score0.00832EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:20 a.m.15 views

CVE-2021-22791

A CWE-787: Out-of-bounds Write vulnerability that could cause a Denial of Service on the Modicon PLC controller / simulator when updating the controller application with a specially crafted project file exists in Modicon M580 CPU part numbers BMEP and BMEH, all versions, Modicon M340 CPU part...

6.5CVSS6.8AI score0.00832EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-19550

Malware in sbrugna...

7.8CVSS7.5AI score0.01116EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-48645

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01443EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-9924

Malicious code in bioql PyPI...

6.5CVSS7.1AI score0.00832EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.23 views

EUVD-2021-9921

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00624EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:29 p.m.16 views

CVE-2022-45789

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. Affected Products: EcoStruxure Control Expert All Versions, EcoStruxure Process Expert All Versions...

9.8CVSS6.8AI score0.01443EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:26 p.m.14 views

CVE-2022-45788

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when a malicious project file is loaded onto the controller. Affected Products: EcoStruxure Control Expert All...

9.8CVSS7.5AI score0.01163EPSS
Exploits0References1
Prion
Prion
added 2023/02/01 4:15 a.m.21 views

Information disclosure

A CWE-200: Information Exposure vulnerability exists that could cause the exposure of sensitive information stored on the memory of the controller when communicating over the Modbus TCP protocol. Affected Products: Modicon M340 CPU part numbers BMXP34 Versions prior to V3.30, Modicon M580 CPU par...

5CVSS7.3AI score0.00624EPSS
Exploits0References1Affected Software41
NVD
NVD
added 2023/01/31 6:15 a.m.28 views

CVE-2022-45789

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. Affected Products: EcoStruxure Control Expert All Versions, EcoStruxure Process Expert All Versions...

9.8CVSS9AI score0.01443EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/01/31 6:15 a.m.4 views

CVE-2022-45789

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. Affected Products: EcoStruxure Control Expert All Versions, EcoStruxure Process Expert All Versions...

9.8CVSS7.6AI score0.01443EPSS
Exploits0References2
Prion
Prion
added 2023/01/31 6:15 a.m.25 views

Authentication flaw

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. Affected Products: EcoStruxure Control Expert All Versions, EcoStruxure Process Expert All Versions...

7.5CVSS9.3AI score0.01443EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/31 12:0 a.m.11 views

CVE-2022-45789

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. Affected Products: EcoStruxure Control Expert All Versions, EcoStruxure Process Expert All Versions...

8.1CVSS9.4AI score0.01443EPSS
Exploits0References1
CVE
CVE
added 2023/01/31 12:0 a.m.99 views

CVE-2022-45789

CVE-2022-45789 is a concrete vulnerability in Schneider Electric EcoStruxure Control Expert, EcoStruxure Process Expert, Modicon M340/M580 CPUs (and variants) where an authenticated Modbus session can be hijacked to bypass authentication and execute unauthorized Modbus functions. Root cause: CWE-...

9.8CVSS9.3AI score0.01443EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2023/01/31 12:0 a.m.32 views

CVE-2022-45789

A CWE-294: Authentication Bypass by Capture-replay vulnerability exists that could cause execution of unauthorized Modbus functions on the controller when hijacking an authenticated Modbus session. Affected Products: EcoStruxure Control Expert All Versions, EcoStruxure Process Expert All Versions...

8.1CVSS9.6AI score0.01443EPSS
Exploits0References1
NVD
NVD
added 2023/01/30 1:15 p.m.30 views

CVE-2022-45788

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when a malicious project file is loaded onto the controller. Affected Products: EcoStruxure Control Expert All...

9.8CVSS8.9AI score0.01163EPSS
Exploits0References1
Prion
Prion
added 2023/01/30 1:15 p.m.21 views

Design/Logic Flaw

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when a malicious project file is loaded onto the controller. Affected Products: EcoStruxure Control Expert All...

7.5CVSS9.5AI score0.01163EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/30 12:0 a.m.12 views

CVE-2022-45788

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when a malicious project file is loaded onto the controller. Affected Products: EcoStruxure Control Expert All...

7.5CVSS9.6AI score0.01163EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/30 12:0 a.m.23 views

CVE-2022-45788

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause arbitrary code execution, denial of service and loss of confidentiality & integrity when a malicious project file is loaded onto the controller. Affected Products: EcoStruxure Control Expert All...

7.5CVSS9.7AI score0.01163EPSS
Exploits0References1
Rows per page
Query Builder