101 matches found
CVE-2020-12497
PLCopen XML file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier can lead to a stack-based overflow. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation...
EUVD-2020-4799
Malware in sbrugna...
EUVD-2019-4449
Malware in sbrugna...
EUVD-2016-6060
Malware in sbrugna...
EUVD-2020-4800
Malware in sbrugna...
EUVD-2021-21247
Malware in sbrugna...
EUVD-2019-4448
Malware in sbrugna...
CVE-2023-46141 Phoenix Contact: Automation Worx and classic line controllers prone to Incorrect Permission Assignment for Critical Resource
Incorrect Permission Assignment for Critical Resource vulnerability in multiple products of the PHOENIX CONTACT classic line allow an remote unauthenticated attacker to gain full access of the affected device...
PHOENIX CONTACT Multiple Product Security Breach
PHOENIX CONTACT Automation Worx Software Suite is an automation Worx software suite from PHOENIX CONTACT, Germany. A security vulnerability exists in several PHOENIX CONTACT products that originates from downloading code without integrity checking, allowing an unauthenticated remote attacker to...
PHOENIX CONTACT Automation Worx Software Suite Security Vulnerability
PHOENIX CONTACT Automation Worx Software Suite is an automation Worx software suite from PHOENIX CONTACT, Germany. A security vulnerability exists in PHOENIX CONTACT Automation Worx Software Suite, which originated from a vulnerability in the incorrect assignment of critical resource privileges,...
PT-2023-7706 · Phoenix Contact · Pc Worx Express +17
Name of the Vulnerable Software and Affected Versions: Phoenix Contact Automation Worx Software Suite versions affected versions not specified AXC 1050 versions affected versions not specified AXC 1050 XC versions affected versions not specified AXC 3050 versions affected versions not specified...
seo-worx.com Improper Access Control vulnerability OBB-3810508
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Phoenix Contact Automation Worx
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Phoenix Contact Equipment: Automation Worx Software Suite Vulnerabilities: Improper Restriction of Operations within the Bounds of a Memory Buffer, Out-of-bounds Read 2. RISK EVALUATION Successful exploitation of these...
CVE-2022-3461
In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 manipulated PC Worx or Config+ files could lead to a heap buffer overflow and a read access violation. Availability, integrity, or confidentiality of an application programming workstation might be compromised by attacks using...
Heap overflow
In PHOENIX CONTACT Automationworx Software Suite up to version 1.89 manipulated PC Worx or Config+ files could lead to a heap buffer overflow and a read access violation. Availability, integrity, or confidentiality of an application programming workstation might be compromised by attacks using...
Phoenix Contact Classic Line Controllers
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Phoenix Contact Equipment: ILC, AXC, RFC, PC WORX, FC Vulnerability: Insufficient Verification of Data Authenticity 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an...
Mitsubishi (CVE-2013-2817) (deprecated)
Plugin deprecated because mc-worx is not detectable in this way This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2023/03/10. Deprecated because mc-wo...
CVE-2021-34597
Improper Input Validation vulnerability in PC Worx Automation Suite of Phoenix Contact up to version 1.88 could allow an attacker with a manipulated project file to unpack arbitrary files outside of the selected project directory...
CVE-2021-34597
Improper Input Validation vulnerability in PC Worx Automation Suite of Phoenix Contact up to version 1.88 could allow an attacker with a manipulated project file to unpack arbitrary files outside of the selected project directory...
Input validation
Improper Input Validation vulnerability in PC Worx Automation Suite of Phoenix Contact up to version 1.88 could allow an attacker with a manipulated project file to unpack arbitrary files outside of the selected project directory...