Lucene search
K

268 matches found

OSV
OSV
added 2021/03/11 9:15 p.m.4 views

CVE-2021-22711

A CWE-119:Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Interactive Graphical SCADA System IGSS Definition Def.exe V15.0.0.21041 and prior, which could result in arbitrary read or write conditions when malicious CGF Configuration Group File file i...

7.8CVSS5.9AI score0.00796EPSS
Exploits0References2
Prion
Prion
added 2021/03/11 9:15 p.m.29 views

Design/Logic Flaw

A CWE-119:Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Interactive Graphical SCADA System IGSS Definition Def.exe V15.0.0.21041 and prior, which could result in arbitrary read or write conditions when malicious CGF Configuration Group File file i...

9.3CVSS7.5AI score0.00796EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/03/11 8:27 p.m.66 views

CVE-2021-22709

The CVE-2021-22709 entry affects Schneider Electric IGSS Definition (Def.exe) up to version 15.0.0.21041. The root cause is a CWE-119 buffer handling issue in parsing CGF configuration files, allowing loss of data or remote code execution when a malicious CGF is imported. Affected product: IGSS D...

9.3CVSS7.9AI score0.02EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/03/11 8:25 p.m.18 views

CVE-2021-22712

A CWE-119:Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Interactive Graphical SCADA System IGSS Definition Def.exe V15.0.0.21041 and prior, which could result in arbitrary read or write conditions when malicious CGF Configuration Group File file i...

7.7AI score0.00841EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/03/11 12:0 a.m.5 views

Schneider Electric Interactive Graphical SCADA System 缓冲区错误漏洞

Schneider Electric Interactive Graphical SCADA System IGSS is a SCADA Data Acquisition and Supervisory System system for monitoring and controlling industrial processes from Schneider Electric, France. A buffer overflow vulnerability exists in Interactive Graphical SCADA System IGSS Definition...

9.3CVSS6.5AI score0.02EPSS
Exploits0References6
ThreatPost
ThreatPost
added 2021/02/12 3:34 p.m.204 views

Florida Water Plant Hack: Leaked Credentials Found in Breach Database

Researchers say they found several stolen and leaked credentials for a Florida water-treatment plant, which was hacked last week. Researchers at CyberNews said they found 11 credential pairs linked to the Oldsmar water plant, in a 2017 compilation of stolen breach credentials. Meanwhile, they als...

7.3AI score
Exploits0References9
ICS
ICS
added 2021/02/12 12:0 p.m.34 views

Compromise of U.S. Water Treatment Facility

Summary On February 5, 2021, unidentified cyber actors obtained unauthorized access to the supervisory control and data acquisition SCADA system at a U.S. drinking water treatment facility. The unidentified actors used the SCADA system’s software to increase the amount of sodium hydroxide, also...

9.9AI score
Exploits0References18
The Hacker News
The Hacker News
added 2021/02/11 9:2 a.m.52 views

Poor Password Security Led to Recent Water Treatment Facility Hack

New details have emerged about the remote computer intrusion at a Florida water treatment facility last Friday, highlighting a lack of adequate security measures needed to bulletproof critical infrastructure environments. The breach involved an unsuccessful attempt on the part of an adversary to...

0.3AI score
Exploits0
CISA
CISA
added 2021/02/11 12:0 a.m.19 views

Compromise of U.S. Water Treatment Facility

In response to recent events where unidentified cyber actors obtained unauthorized access to the supervisory control and data acquisition SCADA system at a U.S. drinking water treatment facility, CISA, the Federal Bureau of Investigation, the Environmental Protection Agency, and the Multi-State...

7.1AI score
Exploits0References1
CNVD
CNVD
added 2020/11/23 12:0 a.m.6 views

Schneider Electric Interactive Graphical SCADA System Out-of-Bounds Write Vulnerability

Schneider Electric Interactive Graphical SCADA System IGSS is a SCADA Data Acquisition and Supervisory System system for monitoring and controlling industrial processes from Schneider Electric, France. An out-of-bounds write vulnerability exists in Interactive Graphical SCADA System version...

7.8CVSS7.6AI score0.02374EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/11 12:0 a.m.2 views

Arbitrary File Download Vulnerability in Haiwell SCADA

Haiwei Cloud Configuration Software is an industrial automation monitoring and management platform software developed by Xiamen Haiwei Technology Co. An arbitrary file download vulnerability exists in Haiwell SCADA, which can be exploited by attackers to obtain sensitive information about the...

6.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/04/10 12:0 a.m.16 views

Siemens SIMOCODE Pro V EIP Detection (SCADA)

Binary data 700525.prm...

7.3AI score
Exploits0References1
OSV
OSV
added 2019/02/01 6:29 p.m.5 views

CVE-2018-19004

LCDS Laquis SCADA prior to version 4.1.0.4150 allows out of bounds read when opening a specially crafted project file, which may allow data exfiltration...

3.3CVSS5.8AI score0.03726EPSS
Exploits0References2
0day.today
0day.today
added 2018/08/20 12:0 a.m.71 views

SEIG SCADA System 9 - Remote Code Execution Exploit

Exploit for windows platform in category remote exploits Title: SEIG SCADA SYSTEM 9 - Remote Code Execution Author: Alejandro Parodi Vendor Homepage: https://www.schneider-electric.com Software Link:...

10CVSS6.5AI score0.21262EPSS
Exploits8
Packet Storm
Packet Storm
added 2018/08/20 12:0 a.m.50 views

SEIG SCADA System 9 Remote Code Execution

Title: SEIG SCADA SYSTEM 9 - Remote Code Execution Author: Alejandro Parodi Date: 2018-08-17 Vendor Homepage: https://www.schneider-electric.com Software Link: https://www.schneider-electric.ie/en/download/document/V9Fullinstallationpackageregisterandreceivefile/ Version: v9 Tested on: Windows7 x...

10CVSS0.4AI score0.21262EPSS
Exploits8
0day.today
0day.today
added 2018/05/24 12:0 a.m.29 views

Honeywell Scada System - Information Disclosure Vulnerability

Exploit for linux platform in category web applications Exploit Title: Honeywell Scada System - Information Disclosure Exploit Author: t4rkd3vilz Vendor Homepage: https://www.honeywell.com Version: WebVersion : 3.2.1.294365 - DeviceType : IPC-HFW2320R-ZS Tested on: Linux To be written after the...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/05/24 12:0 a.m.27 views

Honeywell Scada System Information Disclosure

Exploit Title: Honeywell Scada System - Information Disclosure Date: 2018-05-23 Exploit Author: t4rkd3vilz Vendor Homepage: https://www.honeywell.com Version: WebVersion : 3.2.1.294365 - DeviceType : IPC-HFW2320R-ZS Tested on: Linux To be written after the destination IP address...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/05/23 12:0 a.m.19 views

Honeywell Scada System - Information Disclosure

Honeywell Scada System - Information Disclosure Exploit Title: Honeywell Scada System - Information Disclosure Date: 2018-05-23 Exploit Author: t4rkd3vilz Vendor Homepage: https://www.honeywell.com Version: WebVersion : 3.2.1.294365 - DeviceType : IPC-HFW2320R-ZS Tested on: Linux To be written...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2018/05/23 12:0 a.m.28 views

Honeywell Scada System - Information Disclosure

Exploit Title: Honeywell Scada System - Information Disclosure Date: 2018-05-23 Exploit Author: t4rkd3vilz Vendor Homepage: https://www.honeywell.com Version: WebVersion : 3.2.1.294365 - DeviceType : IPC-HFW2320R-ZS Tested on: Linux To be written after the destination IP address...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/05/16 12:0 a.m.63 views

Rockwell Scada System 27.011 - Cross-Site Scripting

Rockwell Scada System 27.011 - Cross-Site Scripting Exploit Title: Rockwell Scada System - Cross-Site Scripting Date: 2018-05-16 Exploit Author: t4rkd3vilz Vendor Homepage: https://rockwellautomation.com/ Software Link:...

4.3CVSS0.4AI score0.07531EPSS
Exploits5
Rows per page
Query Builder