Lucene search
K

158 matches found

Zero Science Lab
Zero Science Lab
added 2022/05/29 12:0 a.m.444 views

Schneider Electric C-Bus Automation Controller (5500SHAC) 1.10 Remote Root Exploit

Summary The C-Bus Network Automation Controller 5500NAC and the Wiser for C-Bus Automation Controller 5500SHAC is an advanced controller from Schneider Electric. It is specifically designed to unite the C-Bus home automation solution with common household communication protocols, from lighting an...

6.3AI score
Exploits0
CNNVD
CNNVD
added 2022/05/11 12:0 a.m.6 views

多款Siemens产品安全漏洞

Desigo DXR2 controllers are programmable automation stations to support the standard control needs of end HVAC equipment and TRA Total Room Automation applications. the Desigo PXC3 series of automation stations can be used in buildings where functionality and flexibility are more demanding. Use...

7.5CVSS7.4AI score0.00844EPSS
Exploits0References5
CNVD
CNVD
added 2021/10/18 12:0 a.m.18 views

ECOA BAS controller access control error vulnerability

Ecoa Bas controller is a building automation controller from Ecoa Technologies Corp in China. Ecoa Bas controller is vulnerable to an access control error, which can be exploited by attackers to compromise administrative account credentials in clear text to cause privilege escalation...

4CVSS5.2AI score0.00718EPSS
Exploits1Affected Software2
CNVD
CNVD
added 2021/10/18 12:0 a.m.17 views

ECOA BAS controller path traversal vulnerability

Ecoa Bas controller is a building automation controller from Ecoa Technologies Corp. in China. A path traversal vulnerability exists in Ecoa Bas controller, which can be exploited by attackers to compromise the device directory content by using the GET parameter in the file manager...

5CVSS4.5AI score0.79441EPSS
Exploits1Affected Software2
CNVD
CNVD
added 2021/01/06 12:0 a.m.2 views

Denial of Service Vulnerability in OMRON CJ1M-PA205C (CNVD-2021-03524)

OMRON CJ1M-PA205C is a controller product of Controllers series of OMRON Automation China Co. A denial of service vulnerability exists in the OMRON CJ1M-PA205C, which can be exploited by an attacker to cause a denial of service attack...

6.9AI score
Exploits0
Talos
Talos
added 2019/06/10 12:0 a.m.280 views

Schneider Electric Modicon M580 UMAS function code 0x28 denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the UMAS function code 0x28 functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault...

7.5CVSS7.7AI score0.01821EPSS
Exploits1
Talos
Talos
added 2019/06/10 12:0 a.m.950 views

Schneider Electric Modicon M580 UMAS Read Memory Block Out Of Bounds Information Disclosure Vulnerability

Summary An exploitable information disclosure vulnerability exists in the UMAS memory block read functionality of the Schneider Electric Modicon M580 Programmable Automation Controller. A specially crafted UMAS request can cause an out of bounds read, resulting in disclosure of sensitive...

7.5CVSS7.7AI score0.03413EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.8 views

Schweitzer Engineering Laboratories Real-Time Automation Controller (RTAC) PLC Detection

Binary data 755326.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.18 views

Schweitzer Engineering Laboratories Pump Automation Controller PLC Detection

Binary data 755334.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.12 views

Schweitzer Engineering Laboratories Real-Time Automation Controller (RTAC) PLC Detection

Binary data 755327.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.13 views

Schweitzer Engineering Laboratories Real-Time Automation Controller (RTAC) PLC Detection

Binary data 755325.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.16 views

Schweitzer Engineering Laboratories Real-Time Automation Controller (RTAC) PLC Detection

Binary data 755324.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.11 views

Rockwell Automation Micro820 2080-LC20-32QWB Programmable Logic Controller

Binary data 753133.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.16 views

Schweitzer Engineering Laboratories DPAC Discrete Programmable Automation Controller PLC Detection

Binary data 755335.prm...

7.3AI score
Exploits0
NVD
NVD
added 2017/02/13 9:59 p.m.18 views

CVE-2016-9343

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 excluding all firmware versions prior to FRN 16.00, which are not affected. By sending malformed common industrial protocol CIP packet, an attacker may be able to overflow a...

10CVSS9.6AI score0.10494EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/02/13 9:0 p.m.25 views

CVE-2016-9343

An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 excluding all firmware versions prior to FRN 16.00, which are not affected. By sending malformed common industrial protocol CIP packet, an attacker may be able to overflow a...

9.6AI score0.10494EPSS
Exploits0References2
CVE
CVE
added 2017/02/13 9:0 p.m.104 views

CVE-2016-9343

CVE-2016-9343 affects Rockwell Automation Logix5000 controllers (FRN 16.00–21.00; earlier FRN 16.00+ excluded) via malformed CIP packets that overflow a stack-based buffer, enabling potential code execution or a nonrecoverable fault causing denial of service. The vulnerability is a stack-based bu...

10CVSS9.5AI score0.10494EPSS
Exploits0References2Affected Software1
exploitpack
exploitpack
added 2013/08/02 12:0 a.m.92 views

INSTEON Hub 2242-222 - Lack of Web and API Authentication

INSTEON Hub 2242-222 - Lack of Web and API Authentication Trustwave SpiderLabs Security Advisory TWSL2013-023: Lack of Web and API Authentication Vulnerability in INSTEON Hub Published: 8/01/13 Version: 1.0 Vendor: INSTEON http://www.INSTEON.com/ Product: Hub Version affected: 2242-222 model...

9.3CVSS0.06973EPSS
Exploits6
Rows per page
Query Builder