EUVD-2024-17230

Malicious code in bioql PyPI...

EUVD-2024-37326

Malicious code in bioql PyPI...

EUVD-2024-37327

Malicious code in bioql PyPI...

The vulnerability of microprogrammed logic controllers from Unitronics Vision PLC, related to incorrect handling of exceptional states, allows a intruder to trigger a malfunction in maintenance operations.

The vulnerability of microprogrammed logic controllers from Unitronics Vision PLC lies in the improper handling of exceptional states. Exploiting this vulnerability can allow an attacker to cause malfunctions in the system remotely...

CVE-2024-38435

Unitronics Vision PLC – CWE-703: Improper Check or Handling of Exceptional Conditions may allow denial of service...

CVE-2024-38435

Unitronics Vision PLC – CWE-703: Improper Check or Handling of Exceptional Conditions may allow denial of service...

CVE-2024-38434

Unitronics Vision PLC – CWE-676: Use of Potentially Dangerous Function may allow security feature bypass...

CVE-2024-38435 Unitronics Vision PLC - CWE-703: Improper Check or Handling of Exceptional Conditions

Unitronics Vision PLC – CWE-703: Improper Check or Handling of Exceptional Conditions may allow denial of service...

CVE-2024-38435

CVE-2024-38435 affects Unitronics Vision PLC. The issue is CWE-703: improper check or handling of exceptional conditions leading to denial of service. It is listed as exploitable remotely over the network, with availability impact, and no vendor-provided fix/version details are present in the con...

CVE-2024-38434 Unitronics Vision PLC - CWE-676: Use of Potentially Dangerous Function

Unitronics Vision PLC – CWE-676: Use of Potentially Dangerous Function may allow security feature bypass...

CVE-2024-38434 Unitronics Vision PLC - CWE-676: Use of Potentially Dangerous Function

Unitronics Vision PLC – CWE-676: Use of Potentially Dangerous Function may allow security feature bypass...

PT-2024-5268 · Unitronics · Unitronics Vision Plc

Name of the Vulnerable Software and Affected Versions: Unitronics Vision PLC affected versions not specified Description: The issue is related to improper check or handling of exceptional conditions, which may allow denial of service. An attacker, acting remotely, can exploit this to cause a...

The vulnerability of Unitronics Vision’s microprogrammed logic controllers, related to the storage of passwords in a recoverable format, allows a hacker to obtain the “Information Mode” password in plain text.

The vulnerability of the microprogrammed logic controllers from Unitronics Vision relates to the storage of passwords in a recoverable format. Exploiting this vulnerability could allow an attacker, operating remotely, to obtain the “Information Mode” password in plain text...

CVE-2024-1480

Unitronics Vision Standard line of controllers allow the Information Mode password to be retrieved without authentication...

CVE-2024-1480 Unitronics Vision Standard Unauthenticated Password Retrieval

Unitronics Vision Standard line of controllers allow the Information Mode password to be retrieved without authentication...

Unitronics Vision series PLCs 安全漏洞

Unitronics Vision series PLCs are a series of PLCs from Unitronics, Inc. A security vulnerability exists in Unitronics Vision series PLCs that originates from a vulnerability that allows an attacker to retrieve message mode passwords without authentication. Affected products and versions:...

CISA Releases Three Industrial Control Systems Advisories

CISA released three Industrial Control Systems ICS advisories on January 4, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-004-01 Rockwell Automation FactoryTalk Activation ICSA-24-004-02 Mitsubishi Electric...

The vulnerability of microprogrammed software in programmable logic controllers and human-machine interfaces of the Unitronics Vision Series allows a perpetrator to gain administrative access to the device.

The vulnerability of microprogrammed software in programmable logic controllers and human-machine interfaces of the Unitronics Vision Series is related to the use of rigidly encoded credentials. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain administrative...

CVE-2023-6448

Unitronics VisiLogic before version 9.9.00, used in Vision and Samba PLCs and HMIs, uses a default administrative password. An unauthenticated attacker with network access can take administrative control of a vulnerable system...

VulnCheck KEV: CVE-2023-6448

Unitronics Vision Series PLCs and HMIs ship with an insecure default password, which if left unchanged, can allow attackers to execute remote commands...