SIEMENS SCALANCE X witches series authentication bypass vulnerability

SCALANCE X witches are used to connect industrial components such as programmable logic controllers PLCs or human machine interfaces HMIs. An authentication bypass vulnerability exists in the SIEMENS SCALANCE X witches family. An attacker could exploit this vulnerability to obtain sensitive...

CVE-2019-18269

Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability...

PT-2019-15306 · Omron · Omron Plc Cj Series

Name of the Vulnerable Software and Affected Versions: Omron CS series PLCs affected versions not specified Omron CJ series PLCs affected versions not specified Description: The issue concerns an unrestricted externally accessible lock vulnerability. Recommendations: For Omron CS series PLCs, at...

Rockwellautomation 1763-l16awa Exposure of Sensitive Information to an Unauthorized Actor

An Information Exposure issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A and B, Version 16.00...

Rockwellautomation 1763-l16awa Use of Insufficiently Random Values

A "Reusing a Nonce, Key Pair in Encryption" issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic controllers 1763-L16AWA, Series A and B, Version 16.00 and prior versions; 1763-L16BBB, Series A and B, Version 16.00 and prior versions; 1763-L16BWA, Series A...

The vulnerability of the microprogramming software used in Allen Bradley programmable logic controllers from Rockwell Automation relates to deficiencies in authentication procedures, allowing an intruder to execute arbitrary code.

The vulnerability of the microprogramming software used in Allen Bradley programmable logic controllers from Rockwell Automation is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute arbitrary code by...

Denial of Service Vulnerability in Mitsubishi FX5U Series PLCs

Mitsubishi FX5U series PLC is the latest generation of Mitsubishi Electric Mitsubishi small programmable controller. A denial of service vulnerability exists in the Mitsubishi FX5U Series PLC. An attacker can send specially crafted packets to cause the device to fail to resume operation it also...

Denial of Service Vulnerability in MITSUBISHI PLCs

MITSUBISHI PLC is a programmable controller product of Mitsubishi Electric Japan. A denial of service vulnerability exists in MITSUBISHI PLC, which can be exploited by an attacker to cause a denial of service...

Rockwell Automation/Allen-Bradley MicroLogix Controllers <= 16.00 Nonce Key Pair Reuse

Binary data 720126.prm...

WAGO 750-88x Series and WAGO 750-87x Series Trust Management Issue Vulnerability

The WAGO 750-88x Series and WAGO 750-87x Series are both products of WAGO, Germany.The WAGO 750-88x Series is a 750-88x series programmable logic controller.The WAGO 750-87x Series is a 750-87x series programmable logic controller. A trust management issue vulnerability exists in the WAGO Series...

CVE-2019-10953

ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets...

CVE-2019-10953

ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets...

CVE-2019-10953

ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets...

PT-2019-12100

Name of the Vulnerable Software and Affected Versions Programmable Logic Controllers versions affected versions not specified Description The issue concerns a denial-of-service attack due to a flood of network packets. Researchers have found that some controllers from various manufacturers,...

Multiple SCALANCE X switches products mirror port isolation vulnerability

SCALANCE X switches are used to connect industrial components such as programmable logic controllers PLCs or human machine interfaces HMIs. A mirror port isolation vulnerability exists in several SCALANCE X switches products. The vulnerability is due to the monitoring barriers on the affected...

The vulnerability of Siemens Sinumerik programmable logic controllers lies in the integer overflow that occurs in the VNC server. This allows a perpetrator to execute arbitrary code with privileged privileges.

The vulnerability of Siemens Sinumerik programmable logic controllers is related to a numerical overflow in the VNC server. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with privileged privileges by sending specially crafted packets to port 5900/TCP...

The vulnerability of Siemens Sinumeric programmable logic controllers lies in the insufficient protection of the configuration file, allowing a hacker to execute arbitrary code with elevated privileges.

The vulnerability of Siemens Sinumeric programmable logic controllers is related to insufficient protection of the configuration file. Exploiting this vulnerability allows a perpetrator to execute arbitrary code with elevated privileges after a reboot or manually initiating an action...

The vulnerability of Siemens Sinumerik programmable logic controllers lies in errors during exception handling, which allow intruders to read arbitrary data or execute arbitrary code in the kernel mode.

The vulnerability of Siemens Sinumerik programmable logic controllers is related to an error in exception handling. Exploiting this vulnerability could allow attackers to read arbitrary data or execute arbitrary code in the kernel mode...

The vulnerability of the TeNIX operating system for programmable logic controllers MFC1500 and MFC3000 allows a hacker to gain full access to the system.

The vulnerability of the TeNIX operating system for programmable logic controllers MFC1500 and MFC3000 is related to the use of a default weak password for the root account, information about which is not available in the documentation. Exploiting this vulnerability could allow an attacker,...

The vulnerability of the Taserver web service on the TeNIX operating system for programmable logic controllers MFC1500 and MFC3000 allows a perpetrator to execute arbitrary code.

The vulnerability of the TAserver web service for the TeNIX programmable logic controllers MFC1500 and MFC3000 lies in the lack of name filtering when generating a 404 HTTP error page. As a result, the name of the non-existent web page is passed unchanged to the generated error page. Exploiting...