CVE-2021-20608

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior allows a remote unauthenticated attacker to cause a DoS condition in GX Works2 by getting GX Works2 to read a tampered program file from a Mitsubishi Electric PLC by sendin...

The software for programming Wecon PLC Editor on the Microsoft Windows operating system is vulnerable, allowing a hacker to execute arbitrary code.

The vulnerability of the Wecon PLC Editor software for programming PLCs on the Microsoft Windows operating system lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

Mitsubishi Electric GX Works2 安全漏洞

The Mitsubishi Electric GX Works2 is a programmable controller from Mitsubishi Electric Japan. The Mitsubishi Electric GX Works2 contains a security vulnerability that can be exploited by an attacker to tamper with program files in the Mitsubishi Electric PLC by sending maliciously crafted packet...

The software for programming Wecon PLC Editor on the Microsoft Windows operating system is vulnerable, allowing a hacker to execute arbitrary code.

The vulnerability of the Wecon PLC Editor software for programming PLCs on the Microsoft Windows operating system is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the check_password function in the web server of the programmable logic controller ioLogik, related to buffer overflow in the stack, allows a intruder to trigger a service failure or execute arbitrary code.

The vulnerability of the checkpassword function in the web server of the programmable logic controller ioLogik is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to cause service interruptions or execute arbitrary code using a specially crafted reque...

FATEK Automation WinProladder 缓冲区错误漏洞

FATEK Automation WinProladder is a PLC from FATEK Automation in China.An out-of-bounds read vulnerability exists in FATEK Automation WinProladder, which can be exploited by attackers to read unauthorized information...

The vulnerability of the programming software for PLCs (programmable logic controllers), EcoStruxure Control Expert, allows a intruder to trigger a service failure.

The vulnerability of the programming software for PLCs programmable logic controllers, EcoStruxure Control Expert, lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to cause malfunctions in the system remotely...

WAGO 安全漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. This device is designed for applications in industrial environments where digital algorithms operate electronic systems. A security vulnerability in the OpenSSL implementation of the WAGO 750-831/xxx xxx, 750-880/xxx xxx,...

WAGO 授权问题漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is specifically designed for use in industrial environments as an electronic system for the operation of digital algorithms. An authorization issue exists in WAGO PLC in firmware version FW07, which can be...

The vulnerability of Schneider Electric’s Modbus Serial Driver for programmable logic controllers is related to errors in processing hypertext links, allowing an attacker to re-write files in the file system.

The vulnerability of Schneider Electric’s Modbus Serial Driver relates to errors in processing hypertext links. Exploiting this vulnerability could allow an attacker to re-record files in the file system...

The vulnerability of the Modbus protocol implementation in microprogrammed software for programmable logic controllers like Modicon Quantum arises from incorrect code generation. This allows attackers to trigger malfunctions during maintenance operations.

The vulnerability of the Modbus protocol implementation in microprogrammed software for programmable logic controllers like Modicon Quantum is related to incorrect code generation. Exploiting this vulnerability could allow an attacker, operating remotely, to cause malfunctions in the system’s...

MAC1100 PLC 安全漏洞

The MAC1100 PLC is an industrial control product PLC. A security vulnerability exists in the MAC1100 PLC that can be exploited by an attacker to gain access to the system and escalate privileges via a crafted package...

Siemens SIMATIC S7-1500 CPU和SIMATIC S7-1500 授权问题漏洞

The Siemens SIMATIC S7-1500 CPU and SIMATIC S7-1500 are both products of Siemens, Germany.The SIMATIC S7-1500 CPU is a CPU central processing unit module.The SIMATIC S7-1500 is a programmable logic controller. A security vulnerability exists in the Siemens SIMATIC S7-1500 CPU and SIMATIC S7-1500...

CLICK PLC CPU Modules 授权问题漏洞

CLICK PLC CPU Modules are Automation Direct's network devicesA single CLICK CPU Module can be connected to up to eight I/O modules to expand the number of system I/O and meet the needs of a specific application. An authorization issue vulnerability exists in Automation Direct CLICK PLC CPU Module...

CLICK PLC CPU Modules 授权问题漏洞

CLICK PLC CPU Modules are Automation Direct's network devices A single CLICK CPU Module can be connected to up to 8 I/O modules to expand the amount of system I/O and meet the needs of a specific application. A security vulnerability exists in Automation Direct CLICK PLC CPU Modules that results ...

CVE-2021-33841

SGE-PLC1000 device, in its 0.9.2b firmware version, does not handle some requests correctly, allowing a remote attacker to inject code into the operating system with maximum privileges...

CODESYS V2 Web-Server 访问控制错误漏洞

3S-Smart Software Solutions CODESYS V2 Web-Server is an application from 3S-Smart Software Solutions, Germany. A web server. An access control error vulnerability exists in 3S-Smart Software Solutions CODESYS V2 Web-Server versions prior to 1.1.9.20, which can be exploited by an attacker with the...

WAGO Cross-Site Scripting Vulnerability

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed specifically for applications in industrial environments where digital algorithms operate electronic systems. A cross-site scripting vulnerability exists in WAGO. The vulnerability stems from a lack ...

WAGO Unauthorized Access Vulnerability

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed specifically for applications in industrial environments where digital algorithms operate electronic systems. A security vulnerability exists in WAGO. The vulnerability arises from unauthorized acces...

WAGO 信息泄露漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed for use in industrial environments as an electronic system for the operation of digital algorithms. A security vulnerability exists in WAGO. An attacker could use this vulnerability to gain access to...