140 matches found
Siemens SENTRON PAC Meter Authentication Error Vulnerability
The SENTRON PAC Meter is a power measurement device for precise energy management and transparent information acquisition. An authentication error vulnerability exists in the Siemens SENTRON PAC Meter, which can be exploited by an attacker to bypass authentication via brute force attack or by...
CVE-2024-41798
A vulnerability has been identified in SENTRON 7KM PAC3200 All versions. Affected devices only provide a 4-digit PIN to protect from administrative access via Modbus TCP interface. Attackers with access to the Modbus TCP interface could easily bypass this protection by brute-force attacks or by...
CVE-2024-41798
A vulnerability has been identified in SENTRON 7KM PAC3200 All versions. Affected devices only provide a 4-digit PIN to protect from administrative access via Modbus TCP interface. Attackers with access to the Modbus TCP interface could easily bypass this protection by brute-force attacks or by...
CVE-2024-41798
CVE-2024-41798 affects Siemens SENTRON 7KM PAC3200 (all versions). The vulnerability is improper authentication: the Modbus TCP interface is protected only by a 4-digit PIN, which can be bypassed via brute-force or by sniffing cleartext Modbus communications. Impact described as potential exposur...
CVE-2024-41798
A vulnerability has been identified in SENTRON 7KM PAC3200 All versions. Affected devices only provide a 4-digit PIN to protect from administrative access via Modbus TCP interface. Attackers with access to the Modbus TCP interface could easily bypass this protection by brute-force attacks or by...
Siemens SENTRON 7KM PAC3200 授权问题漏洞
The SENTRON PAC Meter is a power measurement device for precise energy management and transparent information acquisition. An authentication error vulnerability exists in the Siemens SENTRON PAC Meter, which can be exploited by an attacker to bypass authentication via brute force attack or by...
PT-2024-7770 · Siemens · Siemens Sentron 7Km Pac3200
Name of the Vulnerable Software and Affected Versions: Siemens SENTRON 7KM PAC3200 All versions Description: A vulnerability has been identified in the Modbus TCP interface of the Siemens SENTRON 7KM PAC3200, where affected devices only provide a 4-digit PIN to protect from administrative access...
Siemens SENTRON PAC3200 Devices
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
Siemens Sentron Powercenter 1000
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
The vulnerability of microprogrammed software in multifunctional measuring instruments for measuring parameters of electrical networks Siemens SENTRON 7KM PAC, related to access control deficiencies, allows intruders to circumvent existing security restrictions and gain unauthorized access to protected information.
The vulnerability of microprogrammed multifunctional measuring instruments for measuring parameters of electrical networks from Siemens SENTRON 7KM PAC is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions and...
The vulnerability of the microprogrammed power switching equipment of Siemens SENTRON 3KC ATC6 Expansion Module Ethernet lies in the presence of undocumented configuration commands, which can be exploited by attackers to cause malfunctions during maintenance.
The vulnerability of the microprogrammed power switching software of Siemens SENTRON 3KC ATC6 Expansion Module Ethernet is related to the presence of undocumented configuration commands. Exploiting this vulnerability can allow a malicious actor to cause malfunctions in the service operation...
Siemens SENTRON 7KM PAC3x20 Devices Improper Access Control Vulnerability
SENTRON PAC Meter products are power measurement devices for precise energy management and transparent information acquisition. An improper access control vulnerability exists in the Siemens SENTRON 7KM PAC3x20 Devices due to read protection not being properly set on the internal flash memory of...
Siemens SENTRON 3KC ATC6 Ethernet Module Hidden Function Vulnerability
The Siemens SENTRON 3KC ATC6 Expansion Module is a power distribution protection device from Siemens, Germany, for monitoring and protecting power systems. A hidden function vulnerability exists in the Siemens SENTRON 3KC ATC6 Ethernet Module due to affected devices exposing unused and unstable...
CVE-2024-22044
A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet 3KC9000-8TL75 All versions. Affected devices expose an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. This could allow an attacker on the same Modbus network to create a denial of service...
CVE-2024-21483
A vulnerability has been identified in SENTRON 7KM PAC3120 AC/DC 7KM3120-0BA01-1DA0 All versions = V3.2.3 = V3.2.3 = V3.2.3 = V3.2.3 V3.2.4 only when manufactured between LQN231003... and LQN231215... with LQNYYMMDD.... The read out protection of the internal flash of affected devices was not...
Design/Logic Flaw
A vulnerability has been identified in SENTRON 7KM PAC3120 AC/DC 7KM3120-0BA01-1DA0 All versions = V3.2.3 = V3.2.3 = V3.2.3 = V3.2.3 V3.3.0 only when manufactured between LQN231003... and LQN231215... with LQNYYMMDD.... The read out protection of the internal flash of affected devices was not...
Design/Logic Flaw
A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet 3KC9000-8TL75 All versions. Affected devices expose an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. This could allow an attacker on the same Modbus network to create a denial of service...
CVE-2024-22044
A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet 3KC9000-8TL75 All versions. Affected devices expose an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. This could allow an attacker on the same Modbus network to create a denial of service...
CVE-2024-22044
The CVE-2024-22044 entry concerns Siemens SENTRON 3KC ATC6 Expansion Module Ethernet (3KC9000-8TL75, all versions). The issue is an unused and unstable HTTP service exposed on port 80/tcp over the Modbus‑TCP Ethernet, which an attacker on the same Modbus network can trigger to cause a denial-of-s...
CVE-2024-22044
A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet 3KC9000-8TL75 All versions. Affected devices expose an unused, unstable http service at port 80/tcp on the Modbus-TCP Ethernet. This could allow an attacker on the same Modbus network to create a denial of service...