Lucene search
K

1576 matches found

Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.13 views

Schweitzer Engineering Laboratories Programmable Automation Controller PLC Detection

Binary data 755333.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.7 views

Beckhoff CP6707-0001-0060 Industrial Computer Detection

Binary data 763042.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.21 views

Beckhoff CX9020-011T Industrial Computer Detection

Binary data 763526.prm...

7.3AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/04/17 1:0 p.m.15 views

What Did We Learn from the Global GPS Collapse?

On April 6, 2019, a ten-bit counter rolled over. The counter, a component of many older satellites, marks the weeks since Jan 1, 1980. It rolled over once before, in the fall of 1999. That event was inconsequential because few complex systems relied on GPS. Now, more systems rely on accurate time...

0.3AI score
Exploits0
FireEye
FireEye
added 2019/04/10 4:0 a.m.19 views

TRITON Actor TTP Profile, Custom Attack Tools, Detections, and ATT&CK Mapping

Overview FireEye can now confirm that we have uncovered and are responding to an additional intrusion by the attacker behind TRITON at a different critical infrastructure facility. In December 2017, FireEye publicly released our first analysis on the TRITON attack where malicious actors used the...

7.8AI score
Exploits0References22
OpenVAS
OpenVAS
added 2019/03/28 12:0 a.m.69 views

CAREL pCOWeb Devices Detection (HTTP)

HTTP based detection of CAREL Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or...

0.3AI score
Exploits0
ThreatPost
ThreatPost
added 2019/03/06 7:45 p.m.64 views

RSA Conference 2019: The Sky's the Limit For Satellite Hacks

SAN FRANCISCO – The satellites orbiting the world are rife with vulnerabilities – and as more satellites go up, and antenna equipment becomes cheaper, they are becoming a lucrative target for threat actors back on earth, according to researchers. William Malik, vice president of infrastructure...

0.4AI score
Exploits0References4
ICS
ICS
added 2019/03/05 12:0 a.m.117 views

Rockwell Automation RSLinx Classic

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: RSLinx Classic Vulnerability: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to execute...

9.8CVSS9.8AI score0.50031EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2019/02/22 1:30 p.m.45 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Spectrum Conductor

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ versions 8 used by IBM Spectrum Conductor with Spark 2.2.0, 2.2.1 and IBM Spectrum Conductor 2.3.0. IBM Spectrum Conductor has addressed the applicable CVEs. Vulnerability Details If you run your own Java code using the...

9CVSS0.7AI score0.07215EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2019/02/16 12:0 a.m.27 views

Siemens Automation License Manager Detection (Windows SMB Login)

SMB login-based detection of Siemens Automation License Manager. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

0.6AI score
Exploits0References1
Talos Blog
Talos Blog
added 2019/02/11 8:2 a.m.109 views

What you can learn from Cisco Talos’ new oil pumpjack workshop

Paul Rascagneres wrote this blog post with contributions from Patrick DeSantis from Cisco Talos ARES Advanced Research/Embedded Systems. Executive summary Every day, more industrial control systems ICS become vulnerable to cyber attacks. As these massive, critical machines become more...

0.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/01/30 12:0 a.m.4 views

The vulnerability of the web interface of the Cisco Secure Access Control System allows a perpetrator to access confidential information.

The vulnerability of the Cisco Secure Access Control System’s web interface is related to incorrect processing of external XML entities when working with XML files. Exploiting this vulnerability can allow a malicious actor to gain access to confidential information...

5.3CVSS5.5AI score0.01526EPSS
Exploits0References9Affected Software1
ICS
ICS
added 2019/01/29 12:0 a.m.170 views

Yokogawa License Manager Service

1. EXECUTIVE SUMMARY CVSS v8.1 ATTENTION : Exploitable remotely Vendor : Yokogawa Equipment : License Manager Service Vulnerability : Unrestricted Upload of Files with Dangerous Type 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to remotely upload files,...

10CVSS9.8AI score0.05405EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2019/01/28 12:0 a.m.4 views

The vulnerability in the web interface of the Cisco Secure ACS control system allows a perpetrator to execute stored scripts across sites.

The vulnerability in the Cisco Secure ACS access control system’s web interface management interface is related to improper verification and the absence of encryption for user data. Exploiting this vulnerability allows a malicious actor to remotely execute stored scripts against the user’s web...

5.4CVSS6AI score0.00891EPSS
Exploits0References9Affected Software1
Vulnrichment
Vulnrichment
added 2019/01/10 5:0 p.m.8 views

CVE-2018-0482 Cisco Prime Network Control System Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient...

5.4CVSS5.8AI score0.00876EPSS
Exploits0References2
CVE
CVE
added 2019/01/10 5:0 p.m.65 views

CVE-2018-0482

Cisco Prime Network Control System (NCS) web-based management interface contains a stored XSS vulnerability due to insufficient validation of user-supplied input. An authenticated, remote attacker could lure a user into clicking a malicious link, causing arbitrary script execution in the web inte...

5.4CVSS5.2AI score0.00876EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2019/01/10 4:29 p.m.26 views

CVE-2018-0482

A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient...

5.4CVSS5.2AI score0.00876EPSS
Exploits0References2
OSV
OSV
added 2019/01/10 4:29 p.m.4 views

CVE-2018-0482

A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient...

5.4CVSS6AI score0.00876EPSS
Exploits0References2
Cisco
Cisco
added 2019/01/09 4:0 p.m.66 views

Cisco Prime Network Control System Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web interface of the affected system. The vulnerability is due to insufficient...

5.4CVSS1.3AI score0.00876EPSS
Exploits0References1
CNVD
CNVD
added 2018/12/26 12:0 a.m.2 views

Code Execution Vulnerability in HOLLiAS_MACS Distributed Control System by HOLLiAS

HOLLIS Group is a professional automation company integrating R&D, production, sales and technical service. A code execution vulnerability exists in the HOLLiASMACS distributed control system of HOLLiS, which can be exploited by attackers to execute arbitrary code...

8AI score
Exploits0
Rows per page
Query Builder