Lucene search
K

77 matches found

Microsoft Malware Protection
Microsoft Malware Protection
added 2021/04/27 4:0 p.m.37 views

Meet critical infrastructure security compliance requirements with Microsoft 365

Critical infrastructure operators face a hostile cyber threat environment and a complex compliance landscape. Every operator of an industrial control system also operates an IT network to service its productivity needs. A supervisory control and data acquisition SCADA system operator of a power...

0.7AI score
Exploits0
CNNVD
CNNVD
added 2021/02/16 12:0 a.m.8 views

Racom 安全漏洞

The RACOM M!DGE is a cellular router designed for SCADA and telemetry mission-critical applications and is ideally suited for many different wireless applications. An OS command injection vulnerability exists in the RACOM M!DGE firmware version 4.4.40.105. An attacker can exploit this vulnerabili...

9CVSS7.5AI score0.0124EPSS
Exploits0References1
OSV
OSV
added 2020/12/01 3:15 p.m.2 views

CVE-2020-7547

A CWE-284: Improper Access Control vulnerability exists in EcoStruxureª and SmartStruxureª Power Monitoring and SCADA Software see security notification for version information that could allow a user the ability to perform actions via the web interface at a higher privilege level...

8.8CVSS5.8AI score0.01298EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/10/14 12:0 a.m.6 views

Vulnerability of software packages for monitoring and data collection: MC Works64/MC Works32, FrameWorX server, centralized configuration environment for HMI-/SCADA applications, Platform Services software platform, GenBroker64/GenBroker32 application for managing access rights. This vulnerability allows a malicious actor to execute arbitrary code or trigger a service failure.

The vulnerabilities of the software packages for supervisory control and data collection, MC Works64/MC Works32, the FrameWorX server, the centralized configuration environment for HMI-/SCADA applications, the Platform Services software platform, and the GenBroker64/GenBroker32 application for...

10CVSS7.1AI score0.03938EPSS
Exploits0References4Affected Software7
BDU FSTEC
BDU FSTEC
added 2020/10/14 12:0 a.m.7 views

Vulnerability of software packages for supervisory control and data collection: MC Works64/MC Works32, FrameWorX server, centralized configuration environment for HMI-/SCADA applications, Platform Services software platform, GenBroker64/GenBroker32 application for organization of access rights exchange. This vulnerability is related to insufficient control over code generation, allowing attackers to execute arbitrary commands.

The vulnerabilities of the software packages for supervisory control and data collection, MC Works64/MC Works32, the FrameWorX server, the centralized configuration environment for HMI-/SCADA applications, the Platform Services software platform, and the GenBroker64/GenBroker32 application for...

9.4CVSS8.3AI score0.03029EPSS
Exploits0References5Affected Software7
BDU FSTEC
BDU FSTEC
added 2020/10/14 12:0 a.m.5 views

Vulnerability of software packages for supervisory control and data collection: MC Works64/MC Works32, FrameWorX server, centralized configuration environment for HMI-/SCADA applications: Workbench, software platform: Platform Services, application for organization of API exchange: GenBroker64/GenBroker32. This vulnerability is related to deficiencies in the deserialization mechanism, allowing a intruder to trigger a service failure.

The vulnerabilities of the software packages for supervisory control and data collection MC Works64/MC Works32, the FrameWorX server, the centralized configuration environment for HMI-/SCADA applications, the Platform Services software platform, and the GenBroker64/GenBroker32 application for...

7.8CVSS7.4AI score0.02032EPSS
Exploits0References5Affected Software7
CNVD
CNVD
added 2020/09/09 12:0 a.m.3 views

Siemens Spectrum Power™ 4 Unsecure Storage of Sensitive Information Vulnerability (CNVD-2020-51236)

Spectrum Power™4 provides the basic components for modeling data for SCADA, communications, and control and monitoring systems. A security vulnerability exists in Siemens Spectrum Power™4. An attacker could exploit the vulnerability to conduct a directory listing attack...

5.3CVSS6.8AI score0.00901EPSS
Exploits0References1
CNVD
CNVD
added 2020/09/04 12:0 a.m.1 views

Denial of Service Vulnerability in Advantech WebAccess/SCADA (CNVD-2020-57242)

Advantech WebAccess/SCADA is a suite of SCADA software based on a browser architecture. A denial of service vulnerability exists in Advantech WebAccess/SCADA. An attacker could exploit this vulnerability to cause a denial of service...

6.7AI score
Exploits0
CNVD
CNVD
added 2020/07/14 12:0 a.m.2 views

Advantech WebAccess/SCADA suffers from a command execution vulnerability (CNVD-2020-48616)

Advantech WebAccess/SCADA is a suite of SCADA software based on a browser architecture. A command execution vulnerability exists in Advantech WebAccess/SCADA. An attacker could exploit the vulnerability to execute console commands...

7.3AI score
Exploits0
CNVD
CNVD
added 2020/05/27 12:0 a.m.2 views

Inductive Automation Ignition Access Control Error Vulnerability

Inductive Automation Ignition is a suite of integrated software platforms for SCADA systems from Inductive Automation, Inc. The platform supports SCADA data acquisition and monitoring systems, HMI human machine interface and more. An access control error vulnerability exists in Inductive Automati...

7.5CVSS6.8AI score0.13639EPSS
Exploits4References1
CNVD
CNVD
added 2020/04/29 12:0 a.m.2 views

LCDS LAquis SCADA Input Validation Error Vulnerability

LCDS LAquis SCADA is a SCADA Data Acquisition and Supervisory Control system from the Brazilian company LCDS. The system is mainly used for data acquisition and process control of equipment with communication technology. An input validation error vulnerability exists in LCDS LAquis SCADA version...

7.8CVSS6.9AI score0.00809EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/29 12:0 a.m.2 views

LCDS LAquis SCADA Information Disclosure Vulnerability (CNVD-2020-25541)

LCDS LAquis SCADA is a SCADA Data Acquisition and Supervisory Control system from the Brazilian company LCDS. The system is mainly used for data acquisition and process control of equipment with communication technology. An information disclosure vulnerability exists in LCDS LAquis SCADA version...

5.5CVSS6.2AI score0.00832EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/04/15 12:0 a.m.5 views

The vulnerability of the SCADA system MasterSCADA, related to the operation of buffers in memory outside the system’s boundaries, allows a intruder to trigger an emergency termination of the program process.

The vulnerability of the SCADA system MasterSCADA relates to the execution of operations outside the buffer in memory, as well as the use of memory after it has been freed. Exploiting this vulnerability can allow an intruder to cause the program to terminate abnormally...

4CVSS5.8AI score
Exploits0Affected Software1
CNVD
CNVD
added 2019/08/16 12:0 a.m.3 views

LCDS LAquis SCADA Information Disclosure Vulnerability

LCDS LAquis SCADA is a SCADA Data Acquisition and Supervisory Control system from the Brazilian company LCDS. The system is mainly used for data acquisition and process control of equipment with communication technology. A security vulnerability exists in LCDS LAquis SCADA version 4.3.1.71. The...

7.8CVSS6.5AI score0.01002EPSS
Exploits0References1
OSV
OSV
added 2019/07/15 9:15 p.m.3 views

CVE-2019-6827

A CWE-787: Out-of-bounds Write vulnerability exists in Interactive Graphical SCADA System IGSS, Version 14 and prior, which could cause a software crash when data in the mdb database is manipulated...

7.8CVSS7.1AI score0.01279EPSS
Exploits0References2
OSV
OSV
added 2019/02/05 9:29 p.m.1 views

CVE-2019-6521

WebAccess/SCADA, Version 8.3. Specially crafted requests could allow a possible authentication bypass that could allow an attacker to obtain and manipulate sensitive information...

8.6CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2019/02/05 6:29 p.m.5 views

CVE-2018-18992

LCDS Laquis SCADA prior to version 4.1.0.4150 allows taking in user input without proper sanitation, which may allow an attacker to execute remote code on the server...

8.8CVSS6.1AI score0.01984EPSS
Exploits0References2
CNVD
CNVD
added 2019/01/18 12:0 a.m.4 views

Unspecified vulnerability in LCDS LAquis SCADA (CNVD-2019-28114)

LCDS LAquis SCADA is a SCADA Data Acquisition and Supervisory Control system from the Brazilian company LCDS. The system is mainly used for data acquisition and process control of equipment with communication technology. A security vulnerability exists in LCDS LAquis SCADA version 4.1.0.3870. The...

8.3CVSS7.2AI score0.02668EPSS
Exploits0References1
CNVD
CNVD
added 2019/01/18 12:0 a.m.7 views

LCDS LAquis SCADA Injection Vulnerability

LCDS LAquis SCADA is a SCADA Data Acquisition and Supervisory Control system from the Brazilian company LCDS. The system is mainly used for data acquisition and process control of equipment with communication technology. A security vulnerability exists in LCDS LAquis SCADA version 4.1.0.3870, whi...

8.8CVSS7.3AI score0.01984EPSS
Exploits0References1
CNVD
CNVD
added 2018/12/19 12:0 a.m.4 views

Advantech WebAccess/SCADA Buffer Overflow Vulnerability (CNVD-2019-32478)

Advantech WebAccess/SCADA is a set of SCADA software from Advantech based on browser architecture. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. A buffer overflow vulnerability exists in Advantech...

7.5CVSS8.1AI score0.02309EPSS
Exploits0References1
Rows per page
Query Builder