CVE-2021-31885

A vulnerability has been identified in APOGEE MBC PPC BACnet All versions, APOGEE MBC PPC P2 Ethernet All versions, APOGEE MEC PPC BACnet All versions, APOGEE MEC PPC P2 Ethernet All versions, APOGEE PXC Compact BACnet All versions = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and = V2.3 and...

Siemens Apogee PXC and Talon TC Devices Exposure of Sensitive Information to an Unauthorized Actor (CVE-2025-40757)

Affected devices connected to the network allow unrestricted access to sensitive files, such as databases. This could allow an attacker to download encrypted .db file containing passwords. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

EUVD-2024-52267

Malicious code in bioql PyPI...

EUVD-2024-52266

Malicious code in bioql PyPI...

EUVD-2022-48779

Malicious code in bioql PyPI...

CISA Releases Eleven Industrial Control Systems Advisories

CISA released eleven Industrial Control Systems ICS advisories on September 11, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-254-01 Siemens SIMOTION Tools ICSA-25-254-02 Siemens SIMATIC Virtualization as a...

CVE-2025-40757

A vulnerability has been identified in APOGEE PXC Series BACnet All versions, APOGEE PXC Series P2 Ethernet All versions, TALON TC Series BACnet All versions. Affected devices connected to the network allow unrestricted access to sensitive files, such as databases. This could allow an attacker to...

CVE-2025-40757

A vulnerability has been identified in APOGEE PXC Series BACnet All versions, APOGEE PXC Series P2 Ethernet All versions, TALON TC Series BACnet All versions. Affected devices connected to the network allow unrestricted access to sensitive files, such as databases. This could allow an attacker to...

CVE-2025-40757

A vulnerability has been identified in APOGEE PXC Series BACnet All versions, APOGEE PXC Series P2 Ethernet All versions, TALON TC Series BACnet All versions. Affected devices connected to the network allow unrestricted access to sensitive files, such as databases. This could allow an attacker to...

Siemens Apogee PXC and Talon TC Devices

SUMMARY Apogee PXC and Talon TC contain a vulnerability that could allow an attacker to download the device encrypted database file. Siemens is preparing fix versions and recommends specific countermeasures for products where fixes are not, or not yet available. 2. GENERAL RECOMMENDATIONS As a...

PT-2025-36680

Name of the Vulnerable Software and Affected Versions: APOGEE PXC Series BACnet affected versions not specified APOGEE PXC Series P2 Ethernet affected versions not specified TALON TC Series BACnet affected versions not specified Description: A vulnerability exists that allows unrestricted access ...

Siemens APOGEE PXC+TALON TC Series 安全漏洞

Siemens APOGEE PXC+TALON TC Series is a series of core controllers for building automation systems from Siemens Germany. A denial of service vulnerability exists in the Siemens APOGEE PXC+TALON TC Series, which can be exploited by an attacker to cause a denial of service due to an unsolicited...

Siemens APOGEE PXC and TALON TC Series

SUMMARY APOGEE PXC and TALON TC Series BACnet Devices devices start sending unsolicited BACnet broadcast messages after processing a specific BACnet createObject request. This could allow an attacker residing in the same BACnet network to send a specially crafted message that results in a...

Siemens APOGEE PXC and TALON TC Series Inadequate Encryption Strength (CVE-2024-54089)

Affected devices contain a weak encryption mechanism based on a hard-coded key. This could allow an attacker to guess or decrypt the password from the cyphertext. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

Siemens APOGEE PXC and TALON TC Series Out-of-Bounds Read (CVE-2024-54090)

Affected devices contain an out-of-bounds read in the memory dump function. This could allow an attacker with Medium MED or higher privileges to cause the device to enter an insecure cold start state. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot...

CVE-2024-54090

A vulnerability has been identified in APOGEE PXC Series BACnet All versions, APOGEE PXC Series P2 Ethernet All versions, TALON TC Series BACnet All versions. Affected devices contain an out-of-bounds read in the memory dump function. This could allow an attacker with Medium MED or higher...

CVE-2024-54089

A vulnerability has been identified in APOGEE PXC Series BACnet All versions, APOGEE PXC Series P2 Ethernet All versions, TALON TC Series BACnet All versions. Affected devices contain a weak encryption mechanism based on a hard-coded key. This could allow an attacker to guess or decrypt the...

CVE-2024-54090

A vulnerability has been identified in APOGEE PXC Series BACnet All versions, APOGEE PXC Series P2 Ethernet All versions, TALON TC Series BACnet All versions. Affected devices contain an out-of-bounds read in the memory dump function. This could allow an attacker with Medium MED or higher...

CVE-2024-54090

A vulnerability has been identified in APOGEE PXC Series BACnet All versions, APOGEE PXC Series P2 Ethernet All versions, TALON TC Series BACnet All versions. Affected devices contain an out-of-bounds read in the memory dump function. This could allow an attacker with Medium MED or higher...

CVE-2024-54090

CVE-2024-54090 affects APOGEE PXC Series (BACnet and P2 Ethernet) and TALON TC Series (BACnet). Affected devices contain an out-of-bounds read in the memory dump function, enabling a MED+ attacker with network access to drive the device into an insecure cold start state. CVSS metrics indicate MED...