81 matches found
CVE-2023-32735
A vulnerability has been identified in SIMATIC STEP 7 Safety V16 All versions V16 Update 7, SIMATIC STEP 7 Safety V17 All versions V17 Update 7, SIMATIC STEP 7 Safety V18 All versions V18 Update 2, SIMATIC STEP 7 V16 All versions V16 Update 7, SIMATIC STEP 7 V17 All versions V17 Update 7, SIMATIC...
CVE-2023-32735
CVE-2023-32735 describes a deserialization vulnerability in Siemens SIMATIC/WinCC/STEP 7 and related components where the Configuration Handler does not properly restrict the .NET BinaryFormatter when deserializing hardware configuration profiles. This can lead to type confusion and arbitrary cod...
CVE-2022-45147
Siemens reports CVE-2022-45147 affects SIMATIC PCS neo v4.0 and SIMATIC STEP 7 (TIA Portal) v16–18, where deserialization of user-controlled input via the .NET BinaryFormatter can cause type confusion and allow arbitrary code execution. Affected products: PCS neo v4.0 (all versions); STEP 7 v16, ...
CVE-2022-45147
A vulnerability has been identified in SIMATIC PCS neo V4.0 All versions, SIMATIC STEP 7 V16 All versions, SIMATIC STEP 7 V17 All versions, SIMATIC STEP 7 V18 All versions V18 Update 2. Affected applications do not properly restrict the .NET BinaryFormatter when deserializing user-controllable...
CVE-2022-45147
A vulnerability has been identified in SIMATIC PCS neo V4.0 All versions, SIMATIC STEP 7 V16 All versions, SIMATIC STEP 7 V17 All versions, SIMATIC STEP 7 V18 All versions V18 Update 2. Affected applications do not properly restrict the .NET BinaryFormatter when deserializing user-controllable...
Siemens SIMATIC STEP 7 (TIA Portal)
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
PT-2024-5108 · Siemens · Simocode Es +10
Name of the Vulnerable Software and Affected Versions: SIMATIC STEP 7 Safety versions prior to V16 Update 7 SIMATIC STEP 7 Safety versions prior to V17 Update 7 SIMATIC STEP 7 Safety versions prior to V18 Update 2 SIMATIC STEP 7 versions prior to V16 Update 7 SIMATIC STEP 7 versions prior to V17...
Siemens SIMATIC STEP 代码问题漏洞
Siemens SIMATIC STEP is a comprehensive engineering tool for configuring and programming SIMATIC controllers from Siemens, Germany. A deserialization vulnerability exists in Siemens SIMATIC STEP, which arises from an affected application failing to properly restrict .NET BinaryFormatter when...
Delta Electronics InfraSuite Device Master Deserialization
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Delta Electronics InfraSuite Device Master Deserialization', 'Description' = %q Delta Electronics InfraSuite Device Master versions below v1.0.5...
Arbitrary Code Execution
masuit.tools.core is vulnerable to arbitrary code execution. The vulnerability exists in ReceiveVarData function in SocketClient.cs because the socket client transmission does not properly restrict BinaryFormatter which allows an attacker to inject and execute arbitrary code user-controllable...
Code Injection in Masuit.Tools.Core
All versions of package Masuit.Tools.Core are vulnerable to Arbitrary Code Execution via the ReceiveVarData function in the SocketClient.cs component. The socket client in the package can pass in the payload via the user-controllable input after it has been established, because this socket client...
GHSA-VH38-GHX6-VMVG Code Injection in Masuit.Tools.Core
All versions of package Masuit.Tools.Core are vulnerable to Arbitrary Code Execution via the ReceiveVarData function in the SocketClient.cs component. The socket client in the package can pass in the payload via the user-controllable input after it has been established, because this socket client...
CVE-2022-21167
All versions of package masuit.tools.core are vulnerable to Arbitrary Code Execution via the ReceiveVarData function in the SocketClient.cs component. The socket client in the package can pass in the payload via the user-controllable input after it has been established, because this socket client...
Code injection
All versions of package masuit.tools.core are vulnerable to Arbitrary Code Execution via the ReceiveVarData function in the SocketClient.cs component. The socket client in the package can pass in the payload via the user-controllable input after it has been established, because this socket client...
CVE-2022-21167
CVE-2022-21167 affects Masuit.Tools.Core (and related Masuit.Tools packages) with Arbitrary Code Execution via the ReceiveVarData function in SocketClient.cs. All versions are reported vulnerable due to inadequate restrictions/type bindings for BinaryFormatter during deserialization of user-contr...
CVE-2022-21167 Arbitrary Code Execution
All versions of package masuit.tools.core are vulnerable to Arbitrary Code Execution via the ReceiveVarData function in the SocketClient.cs component. The socket client in the package can pass in the payload via the user-controllable input after it has been established, because this socket client...
CVE-2022-21167
All versions of package masuit.tools.core are vulnerable to Arbitrary Code Execution via the ReceiveVarData function in the SocketClient.cs component. The socket client in the package can pass in the payload via the user-controllable input after it has been established, because this socket client...
GHSA-29RV-FQX2-4C9F Deserialization of Untrusted Data in SinGooCMS.Utility
This affects all versions of package SinGooCMS.Utility. The socket client in the package can pass in the payload via the user-controllable input after it has been established, because this socket client transmission does not have the appropriate restrictions or type bindings for the BinaryFormatt...
CVE-2022-0749
This affects all versions of package SinGooCMS.Utility. The socket client in the package can pass in the payload via the user-controllable input after it has been established, because this socket client transmission does not have the appropriate restrictions or type bindings for the BinaryFormatt...
Design/Logic Flaw
This affects all versions of package SinGooCMS.Utility. The socket client in the package can pass in the payload via the user-controllable input after it has been established, because this socket client transmission does not have the appropriate restrictions or type bindings for the BinaryFormatt...