158 matches found
Schneider Electric C-Bus Automation Controller (5500SHAC) 1.10 Remote Root Exploit
Summary The C-Bus Network Automation Controller 5500NAC and the Wiser for C-Bus Automation Controller 5500SHAC is an advanced controller from Schneider Electric. It is specifically designed to unite the C-Bus home automation solution with common household communication protocols, from lighting an...
多款Siemens产品安全漏洞
Desigo DXR2 controllers are programmable automation stations to support the standard control needs of end HVAC equipment and TRA Total Room Automation applications. the Desigo PXC3 series of automation stations can be used in buildings where functionality and flexibility are more demanding. Use...
ECOA BAS controller access control error vulnerability
Ecoa Bas controller is a building automation controller from Ecoa Technologies Corp in China. Ecoa Bas controller is vulnerable to an access control error, which can be exploited by attackers to compromise administrative account credentials in clear text to cause privilege escalation...
ECOA BAS controller path traversal vulnerability
Ecoa Bas controller is a building automation controller from Ecoa Technologies Corp. in China. A path traversal vulnerability exists in Ecoa Bas controller, which can be exploited by attackers to compromise the device directory content by using the GET parameter in the file manager...
Denial of Service Vulnerability in OMRON CJ1M-PA205C (CNVD-2021-03524)
OMRON CJ1M-PA205C is a controller product of Controllers series of OMRON Automation China Co. A denial of service vulnerability exists in the OMRON CJ1M-PA205C, which can be exploited by an attacker to cause a denial of service attack...
Schneider Electric Modicon M580 UMAS function code 0x28 denial-of-service vulnerability
Summary An exploitable denial-of-service vulnerability exists in the UMAS function code 0x28 functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault...
Schneider Electric Modicon M580 UMAS Read Memory Block Out Of Bounds Information Disclosure Vulnerability
Summary An exploitable information disclosure vulnerability exists in the UMAS memory block read functionality of the Schneider Electric Modicon M580 Programmable Automation Controller. A specially crafted UMAS request can cause an out of bounds read, resulting in disclosure of sensitive...
Schweitzer Engineering Laboratories Real-Time Automation Controller (RTAC) PLC Detection
Binary data 755326.prm...
Schweitzer Engineering Laboratories Pump Automation Controller PLC Detection
Binary data 755334.prm...
Schweitzer Engineering Laboratories Real-Time Automation Controller (RTAC) PLC Detection
Binary data 755327.prm...
Schweitzer Engineering Laboratories Real-Time Automation Controller (RTAC) PLC Detection
Binary data 755325.prm...
Schweitzer Engineering Laboratories Real-Time Automation Controller (RTAC) PLC Detection
Binary data 755324.prm...
Rockwell Automation Micro820 2080-LC20-32QWB Programmable Logic Controller
Binary data 753133.prm...
Schweitzer Engineering Laboratories DPAC Discrete Programmable Automation Controller PLC Detection
Binary data 755335.prm...
CVE-2016-9343
An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 excluding all firmware versions prior to FRN 16.00, which are not affected. By sending malformed common industrial protocol CIP packet, an attacker may be able to overflow a...
CVE-2016-9343
An issue was discovered in Rockwell Automation Logix5000 Programmable Automation Controller FRN 16.00 through 21.00 excluding all firmware versions prior to FRN 16.00, which are not affected. By sending malformed common industrial protocol CIP packet, an attacker may be able to overflow a...
CVE-2016-9343
CVE-2016-9343 affects Rockwell Automation Logix5000 controllers (FRN 16.00–21.00; earlier FRN 16.00+ excluded) via malformed CIP packets that overflow a stack-based buffer, enabling potential code execution or a nonrecoverable fault causing denial of service. The vulnerability is a stack-based bu...
INSTEON Hub 2242-222 - Lack of Web and API Authentication
INSTEON Hub 2242-222 - Lack of Web and API Authentication Trustwave SpiderLabs Security Advisory TWSL2013-023: Lack of Web and API Authentication Vulnerability in INSTEON Hub Published: 8/01/13 Version: 1.0 Vendor: INSTEON http://www.INSTEON.com/ Product: Hub Version affected: 2242-222 model...