124 matches found
Schneider Electric SoMachine Basic and Schneider Electric Modicon M221 Input Validation Error Vulnerability
Schneider Electric SoMachine Basic and Schneider Electric Modicon M221 are both products of Schneider Electric, France.Schneider Electric SoMachine Basic is a suite of software for programming logic controllers. The Schneider Electric Modicon M221 is a programmable logic controller. An input...
CVE-2018-7822
An Incorrect Default Permissions CWE-276 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause unauthorized access to SoMachine Basic resource files when logged on the system hosting SoMachine Basic...
CVE-2018-7821
An Environment CWE-2 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause cycle time impact when flooding the M221 ethernet interface while the Ethernet/IP adapter is activated...
CVE-2018-7823
A Environment CWE-2 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause remote launch of SoMachine Basic when sending crafted ethernet message...
CVE-2018-7821
An Environment CWE-2 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause cycle time impact when flooding the M221 ethernet interface while the Ethernet/IP adapter is activated...
CVE-2018-7822
An Incorrect Default Permissions CWE-276 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause unauthorized access to SoMachine Basic resource files when logged on the system hosting SoMachine Basic...
CVE-2018-7823
A Environment CWE-2 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause remote launch of SoMachine Basic when sending crafted ethernet message...
Default configuration
An Incorrect Default Permissions CWE-276 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause unauthorized access to SoMachine Basic resource files when logged on the system hosting SoMachine Basic...
Code injection
An Environment CWE-2 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause cycle time impact when flooding the M221 ethernet interface while the Ethernet/IP adapter is activated...
Code injection
A Environment CWE-2 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause remote launch of SoMachine Basic when sending crafted ethernet message...
CVE-2018-7823
CVE-2018-7823 affects Schneider Electric SoMachine Basic (all versions) and Modicon M221 prior to firmware v1.10.0.0, with a vulnerability that could cause remote launch of SoMachine Basic when a crafted Ethernet message is sent. Public sources in the connected documents confirm the affected prod...
CVE-2018-7823
A Environment CWE-2 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause remote launch of SoMachine Basic when sending crafted ethernet message...
CVE-2018-7822
The CVE-2018-7822 entry describes an Incorrect Default Permissions (CWE-276) vulnerability in Schneider Electric SoMachine Basic (all versions) and Modicon M221 prior to firmware v1.10.0.0. The root cause is improper default permissions on SoMachine Basic resource files on the system hosting SoMa...
CVE-2018-7822
An Incorrect Default Permissions CWE-276 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause unauthorized access to SoMachine Basic resource files when logged on the system hosting SoMachine Basic...
CVE-2018-7821
CVE-2018-7821 affects Schneider Electric SoMachine Basic (all versions) and Modicon M221 prior to firmware v1.10.0.0. The root cause is an environment-type vulnerability that could cause a cycle time impact by flooding the M221 Ethernet interface when the Ethernet/IP adapter is activated. The con...
CVE-2018-7821
An Environment CWE-2 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause cycle time impact when flooding the M221 ethernet interface while the Ethernet/IP adapter is activated...
CVE-2018-7821
An Environment CWE-2 vulnerability exists in SoMachine Basic, all versions, and Modicon M221all references, all versions prior to firmware V1.10.0.0 which could cause cycle time impact when flooding the M221 ethernet interface while the Ethernet/IP adapter is activated...
SoMachine HVAC suffers from dll hijacking vulnerability
SoMachine HVAC is PLC programming software. SoMachine HVAC suffers from a dll hijacking vulnerability when processing ppjs, ppjx files, which can be exploited by an attacker to load a malicious dll and execute malicious code...
The vulnerability of the SoMachine Basic software, related to configuration errors, allows a perpetrator to execute SoMachine.
The vulnerability of the SoMachine Basic software is related to configuration errors. Exploiting this vulnerability allows a remote attacker to execute SoMachine by sending specially crafted Ethernet messages...
The vulnerability of the SoMachine Basic software lies in its default access settings, which allow a perpetrator to gain access to the files of the SoMachine Basic resources.
The vulnerability of the SoMachine Basic software is related to incorrect default access settings. Exploiting this vulnerability can allow an attacker to gain access to the files of the SoMachine Basic resources...