174 matches found
Beckhoff Automation's various products have buffer error vulnerabilities
Beckhoff Automation’s Beckhoff.Device.Manager.XAR, among others, are products of the American company Beckhoff Automation. Beckhoff.Device.Manager.XAR is a core component used for remote management and controller configuration. Beckhoff Automation’s MDP software package for TwinCAT/BSD is a core...
Several products of Beckhoff Automation have security vulnerabilities.
Beckhoff Automation’s Beckhoff.Device.Manager.XAR, etc., are products of the American company Beckhoff Automation. Beckhoff.Device.Manager.XAR is a core component used for remote management and controller configuration. Beckhoff Automation’s MDP software package for TwinCAT/BSD is a core componen...
Beckhoff Automation's various products have a vulnerability regarding input validation errors.
Beckhoff Automation products such as Beckhoff.Device.Manager.XAR are developed by the American company Beckhoff Automation. Beckhoff.Device.Manager.XAR is a core component used for remote management and controller configuration. The Beckhoff Automation MDP software package for TwinCAT/BSD is a co...
CVE-2025-41768
An high privileged remote attacker can inject arbitrary content into the custom CSS field on the affected devices due to improper neutralization of input during web page generation 'Cross-site Scripting'...
CVE-2025-41768
An high privileged remote attacker can inject arbitrary content into the custom CSS field on the affected devices due to improper neutralization of input during web page generation 'Cross-site Scripting'...
CVE-2025-41768
An high privileged remote attacker can inject arbitrary content into the custom CSS field on the affected devices due to improper neutralization of input during web page generation 'Cross-site Scripting'...
CVE-2025-41768 Beckhoff: XSS Vulnerability in TwinCAT 3 HMI Server
An high privileged remote attacker can inject arbitrary content into the custom CSS field on the affected devices due to improper neutralization of input during web page generation 'Cross-site Scripting'...
CVE-2025-41768 Beckhoff: XSS Vulnerability in TwinCAT 3 HMI Server
An high privileged remote attacker can inject arbitrary content into the custom CSS field on the affected devices due to improper neutralization of input during web page generation 'Cross-site Scripting'...
CVE-2025-41768
Summary: CVE-2025-41768 affects TwinCAT 3 HMI Server. An authenticated administrator can inject arbitrary content into the device’s custom CSS field, which is persisted and later echoed on login and error pages, constituting a stored XSS. The connected Red Hat, NVD, CVE list, and security feeds d...
PT-2026-3546
On an instance of TwinCAT 3 HMI Server running on a device an authenticated administrator can inject arbitrary content into the custom CSS field which is persisted on the device and later returned via the login page and error page...
Beckhoff Automation TwinCAT 3 HMI Server Cross-site Scripting Vulnerability
Beckhoff Automation TwinCAT 3 HMI Server is a data transmission and permission management component developed by the American company Beckhoff Automation. The Beckhoff Automation TwinCAT 3 HMI Server has a cross-site scripting vulnerability. This vulnerability allows authenticated administrators ...
CVE-2024-41174
The IPC-Diagnostics package in TwinCAT/BSD is susceptible to improper input neutralization by a low-privileged local attacker...
EUVD-2020-4812
Malware in sbrugna...
EUVD-2021-21244
Malware in sbrugna...
EUVD-2019-15211
Malware in sbrugna...
EUVD-2019-7378
Malware in sbrugna...
EUVD-2019-15212
Malware in sbrugna...
EUVD-2017-7902
Malware in sbrugna...
EUVD-2017-7910
Malware in sbrugna...
EUVD-2020-4828
Malware in sbrugna...