CVE-2023-25620

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when a malicious project file is loaded onto the controller by an authenticated user...

CVE-2023-25620

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause denial of service of the controller when a malicious project file is loaded onto the controller by an authenticated user...

CVE-2023-28398 CVE-2023-28398

Osprey Pump Controller version 1.01 could allow an unauthenticated user to create an account and bypass authentication, thereby gaining unauthorized access to the system. A threat actor could exploit this vulnerability to create a user account without providing valid credentials. A threat actor w...

Osprey Pump Controller 1.0.1 Unauthenticated File Disclosure

Summary Providing pumping systems and automated controls for golf courses and turf irrigation, municipal water and sewer, biogas, agricultural, and industrial markets. Osprey: door-mounted, irrigation and landscape pump controller. Technology hasn't changed dramatically on pump and electric motor...

SUSE CVE-2017-5973

The xhcikickepctx function in hw/usb/hcd-xhci.c in QEMU aka Quick Emulator allows local guest OS privileged users to cause a denial of service infinite loop and QEMU process crash via vectors related to control transfer descriptor sequence...

PT-2023-2008 · Wago · Wago Cc100 +3

Name of the Vulnerable Software and Affected Versions: WAGO PFC100/PFC200 versions affected versions not specified WAGO CC100 versions affected versions not specified WAGO Edge Controller versions affected versions not specified WAGO Touch Panel 600 versions affected versions not specified...

Schneider Electric EcoStruxure Control Expert 安全漏洞

Schneider Electric EcoStruxure Control Expert formerly known as Unity Pro is a suite of programming software for Schneider Electric logic controller products from Schneider Electric, France. A security vulnerability exists in Schneider Electric EcoStruxure Control Expert that stems from the...

The vulnerability of the Windows Boot Manager’s download controller allows a hacker to bypass the device encryption function of BitLocker and gain access to encrypted data.

The vulnerability of the Windows Boot Manager download controller for Microsoft Windows operating systems relates to the bypassing of security functions. Exploiting this vulnerability can allow an attacker to circumvent the BitLocker device encryption function and gain access to encrypted data...

PT-2022-27265 · Unknown · Diagnosis Controller

Name of the Vulnerable Software and Affected Versions: Diagnosis Controller affected versions not specified Description: The issue concerns a lack of parameter validation in the Diagnosis Controller, which can be exploited through command injection via HTTP Request. This allows an attacker to...

CVE-2022-20856

A vulnerability in the processing of Control and Provisioning of Wireless Access Points CAPWAP Mobility messages in Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...

CVE-2022-37299

An issue was discovered in Shirne CMS 1.2.0. There is a Path Traversal vulnerability which could cause arbitrary file read via /static/ueditor/php/controller.php...

Yokogawa Electric CENTUM VP / CS 3000 controller FCS 资源管理错误漏洞

The Yokogawa Electric CENTUM VP / CS 3000 controller FCS is a series of sophisticated, high-performance controllers from Yokogawa Electric Corporation Japan. A resource management error vulnerability exists in Yokogawa Electric Corporation's CENTUM VP / CS 3000 controller FCS CP31, CP33, CP345,...

Microsoft Windows Storage Spaces Controller 安全漏洞

Microsoft Windows Storage Spaces Controller is a necessary driver for providing storage space functionality from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows Storage Spaces Controller. The following products and versions are affected: Windows Server, version 20H...

CVE-2022-30243

The CVE-2022-30243 entry relates to Honeywell Alerton Visual Logic up to 2022-05-04, where unauthenticated remote writes allow crafted programming changes stored on the controller and executed without verification. This enables a malicious user to alter or stop the controller’s program, potential...

CVE-2022-28114

DSCMS v3.0 was discovered to contain an arbitrary file deletion vulnerability via /controller/Adv.php...

Jenkins dbCharts 插件安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. Jenkins Plugin is an application that provides hundreds of plugins to support building, deploying, and automating any project. Jenkins dbCharts Plugin is vulnerable to an information disclosure...

Beckhoff TwinCAT Denial of Service (CVE-2019-5637)

When Beckhoff TwinCAT is configured to use the Profinet driver, a denial of service of the controller could be reached by sending a malformed UDP packet to the device. This issue affects TwinCAT 2 version 2304 and prior and TwinCAT 3.1 version 4204.0 and prior. This plugin only works with...

Microsoft Windows Storage Spaces Controller缓冲区错误漏洞

Microsoft Windows Storage Spaces Controller is an essential driver for providing storage space functionality from Microsoft Corporation USA. A buffer error vulnerability exists in Microsoft Windows Storage Spaces Controller. The following products and editions are affected:Windows Server 2019...

Information disclosure

Storage Spaces Controller Information Disclosure Vulnerability...

Design/Logic Flaw

The affected controllers do not properly sanitize the input containing code syntax. As a result, an attacker could craft code to alter the intended controller flow of the software...