EUVD-2022-29221

Malicious code in bioql PyPI...

EUVD-2022-29220

Malicious code in bioql PyPI...

CVE-2022-24323

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software, when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product:...

CVE-2022-24322

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data...

CVE-2022-24323

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software, when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product:...

CVE-2022-24323

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software, when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product:...

CVE-2022-24323

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software, when an attacker is able to intercept and manipulate specific Modbus response data. Affected Product:...

CVE-2022-24322

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data...

Design/Logic Flaw

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data...

CVE-2022-24322

A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a disruption of communication between the Modicon controller and the engineering software when an attacker is able to intercept and manipulate specific Modbus response data...

CVE-2022-24322

CVE-2022-24322 affects Schneider Electric EcoStruxure Control Expert (V15.0 SP1 and prior). The flaw is CWE-119: improper restriction of operations within buffer bounds, enabling disruption of communication between Modicon controllers and engineering software when an attacker intercepts and manip...

The vulnerability of microprogrammed programmable logic controllers like Modicon and PacDrive lies in the lack of authentication for a critical function. This allows attackers to alter the device’s IP configuration.

The vulnerability of the microprogrammed logic controllers Modicon and PacDrive lies in the absence of authentication for the critical function. Exploiting this vulnerability allows an attacker to remotely alter the device’s IP configuration...

The vulnerability of Modicon microprogrammed controllers lies in the transmission of confidential information in open text using the Modbus TCP protocol during controller programming, allowing attackers to disclose the protected information.

The vulnerability of Modicon controllers’ microprogramming software lies in the transmission of confidential information as open text using the Modbus TCP protocol during controller programming. Exploiting this vulnerability can allow a remote attacker to disclose the protected information...

CVE-2019-6852

A CWE-200: Information Exposure vulnerability exists in Modicon Controllers M340 CPUs, M340 communication modules, Premium CPUs, Premium communication modules, Quantum CPUs, Quantum communication modules - see security notification for specific versions, which could cause the disclosure of FTP...

The vulnerability of the microprogrammed logic controller Modicon, related to errors in buffer boundary control in memory, allows a intruder to cause a service failure.

The vulnerability of the microprogrammed programmable logic controller Modicon is related to errors in buffer boundary control in memory. Exploiting this vulnerability could allow a malicious actor to cause a service failure by sending a specially crafted Modbus packet...

The vulnerability of the microprogrammed programmable logic controller Modicon, related to unprocessed exceptions, allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed logic controller Modicon is related to unprocessed exceptions. Exploiting this vulnerability could allow a malicious actor to cause malfunctions during maintenance operations when reading invalid blocks of physical memory in the controller using the Modbus...

The vulnerability of the microprogrammed programmable logic controller Modicon, related to unprocessed exceptions, allows a intruder to trigger a service failure.

The vulnerability of the microprogrammed logic controller Modicon is related to unprocessed exceptions. Exploiting this vulnerability can allow a malicious actor to cause malfunctions by sending invalid parameters to the controller using the Modbus protocol...

The vulnerability of the microprogrammed logic controller Modicon, caused by the disclosure of information that allows a intruder to access the information via SNMP.

The vulnerability of the programmable logic controller Modicon’s microprogramming software arises from the exposure of information. Exploiting this vulnerability allows a malicious actor to disclose SNMP information by reading files from the controller via the Modbus protocol...

The vulnerability of the microprogrammed programmable logic controller Modicon M221, related to incorrect configuration of the Ethernet interface, allows a intruder to influence the execution time of the control program cycle.

The vulnerability of the microprogrammed logic controller Modicon M221 is related to incorrect configuration of the Ethernet interface, especially when the Ethernet/IP adapter is enabled. Exploiting this vulnerability can allow an attacker to influence the execution time of the control program...

The vulnerability of the microprogramming software of Schneider Electric’s Modicon M340 programmable logic controller allows a remote intruder to execute any desired code.

The vulnerability of the microprogrammed software of Schneider Electric’s Modicon M340 programmable logic controller is due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to inject JavaScript code into the device remotely...