CVE-2026-4293 Kieback & Peter DDC Building Controllers Cross-site Scripting

The affected Kieback & Peter DDC building controllers are vulnerable to cross-site scripting, enabling JavaScript to be executed by the victim's browser, which allows the attacker to control the browser...

部分Siemens产品 安全漏洞

APOGEE PXC Modular and Compact Series Direct Digital Control DDC devices, part of the APOGEE Automation System. TALON TC Modular and Compact Series Direct Digital Control DDC devices, part of the TALON Automation System. Siemens APOGEE/TALON Field Panels contain a privilege management vulnerabili...

Johnson Controls MS-NCE2520-0 Metasys NCE Controller

Binary data 764892.prm...

EasyIO EasyIO-30P-SF Controller Hardcoding Vulnerability

The EasyIO EasyIO-30P-SF is a 32-bit controller for DDC Direct Digital Control systems. The EasyIO EasyIO-30P-SF controller uses hard-coded passwords that allow remote attackers to exploit vulnerabilities for unauthorized access...

Hacking Maytag: Coin-Operated Laudromat Machines

Most Maytag commercial washers and dryers out there use a common controller platform. It dates back to the 80s and is still produced. So almost all Maytag with digital control panel is exploitable in this way. The identifying features are green vacuum florescent display with a four-digit numerica...