Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16580

Malware in sbrugna...

9.8CVSS9.3AI score0.03981EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.16 views

Schneider Electric Modicon TM221CE16R 1.3.3.3 Information Disclosure

Binary data 720161.prm...

9.8CVSS7.3AI score0.03981EPSS
Exploits1References2
CNVD
CNVD
added 2017/04/18 12:0 a.m.2 views

Schneider Electric Modicon TM221CE16R Information Disclosure Vulnerability

The Schneider Electric Modicon TM221CE16R is a programmable controller from Schneider Electric France. A security vulnerability exists in the Schneider Electric Modicon TM221CE16R version 1.3.3.3. A remote attacker can exploit this vulnerability by sending a...

9.8CVSS7.2AI score0.03981EPSS
Exploits1References1
CNVD
CNVD
added 2017/04/18 12:0 a.m.5 views

Schneider Electric SoMachine Basic and Schneider Electric Modicon TM221CE16R Security Bypass Vulnerability

Schneider Electric SoMachine Basic and Schneider Electric Modicon TM221CE16R are both products of Schneider Electric France. The former is a programming and debugging interface for all components on the control platform; the latter is a programmable controller. A security vulnerability exists in...

9.8CVSS6.8AI score0.01243EPSS
Exploits0References1
NVD
NVD
added 2017/04/06 9:59 p.m.19 views

CVE-2017-7574

Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. The Project Protection feature is used to prevent unauthorized users from opening an XML protected project file, by prompting the user for a password. This XML...

10CVSS9.4AI score0.01243EPSS
Exploits0References3
NVD
NVD
added 2017/04/06 9:59 p.m.16 views

CVE-2017-7575

Schneider Electric Modicon TM221CE16R 1.3.3.3 devices allow remote attackers to discover the application-protection password via a \x00\x01\x00\x00\x00\x05\x01\x5a\x00\x03\x00 request to the Modbus port 502/tcp. Subsequently the application may be arbitrarily downloaded, modified, and uploaded...

9.8CVSS9.6AI score0.03981EPSS
Exploits1References3
Prion
Prion
added 2017/04/06 9:59 p.m.17 views

Hardcoded credentials

Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. The Project Protection feature is used to prevent unauthorized users from opening an XML protected project file, by prompting the user for a password. This XML...

7.5CVSS9.3AI score0.01243EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2017/04/06 9:59 p.m.5 views

CVE-2017-7575

Schneider Electric Modicon TM221CE16R 1.3.3.3 devices allow remote attackers to discover the application-protection password via a \x00\x01\x00\x00\x00\x05\x01\x5a\x00\x03\x00 request to the Modbus port 502/tcp. Subsequently the application may be arbitrarily downloaded, modified, and uploaded...

9.8CVSS5.8AI score0.03981EPSS
Exploits1References3
Cvelist
Cvelist
added 2017/04/06 9:0 p.m.29 views

CVE-2017-7574

Schneider Electric SoMachine Basic 1.4 SP1 and Schneider Electric Modicon TM221CE16R 1.3.3.3 devices have a hardcoded-key vulnerability. The Project Protection feature is used to prevent unauthorized users from opening an XML protected project file, by prompting the user for a password. This XML...

9.4AI score0.01243EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/04/06 9:0 p.m.24 views

CVE-2017-7575

Schneider Electric Modicon TM221CE16R 1.3.3.3 devices allow remote attackers to discover the application-protection password via a \x00\x01\x00\x00\x00\x05\x01\x5a\x00\x03\x00 request to the Modbus port 502/tcp. Subsequently the application may be arbitrarily downloaded, modified, and uploaded...

9.6AI score0.03981EPSS
Exploits1References3
CVE
CVE
added 2017/04/06 9:0 p.m.77 views

CVE-2017-7574

Schneider Electric SoMachine Basic 1.4 SP1 and Modicon TM221CE16R 1.3.3.3 contain a hardcoded cryptographic key used to AES-CBC encrypt project files; the fixed key (SoMachineBasicSoMachineBasicSoMa) cannot be changed, allowing decrypted data to reveal the user password and enable opening/modifyi...

10CVSS9.3AI score0.01243EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2017/04/06 12:0 a.m.8 views

PT-2017-17810

Name of the Vulnerable Software and Affected Versions Schneider Electric Modicon TM221CE16R version 1.3.3.3 Description The issue allows remote attackers to discover the application-protection password by sending a specific request to the Modbus port 502/tcp. After obtaining the password, an...

9.8CVSS7.3AI score0.03981EPSS
Exploits1References6
Rows per page
Query Builder