140 matches found
The vulnerability of the monitor for distributing electrical loads in Rockwell Automation’s Allen-Bradley PowerMonitor 1000, related to deficiencies in the verification of data entered by users, allows a intruder to gain access to the device.
The vulnerability of the Rockwell Automation Allen-Bradley PowerMonitor 1000 in terms of electrical load distribution is related to deficiencies in data validation by users. Exploiting this vulnerability allows a malicious actor to execute XSS attacks and gain access to the device...
CVE-2019-7364
CVE-2019-7364 describes a DLL preloading vulnerability in Autodesk products (2017–2020 Autodesk Advanced Steel, Civil 3D, AutoCAD and related tools; plus AutoCAD P&ID 2017). The issue allows an attacker to cause code execution by persuading a user to open a malicious DWG file that leverages the D...
The Highly Dangerous 'Triton' Hackers Have Probed the US Grid
The same hackers behind a potentially lethal 2017 oil refinery cyberattack are now sniffing at US electrical utility targets...
Schneider Electric Altivar ATV71HU55M3Z Variable Speed Drive
Binary data 764269.prm...
Emerson 396878-01-6 Isolated Resistance Temperature Device Detection
Binary data 756556.prm...
Emerson 396362-12-5 Universal Digital Input module Detection
Binary data 756555.prm...
Emerson 396362-02-8 Universal Digital Input module Detection
Binary data 756554.prm...
Emerson 396687-01-6 Relay Isolated Vac/Vdc Digital Output module Detection
Binary data 756525.prm...
Emerson 396876-01-3 Isolated Resistance Temperature Device Detection
Binary data 756527.prm...
Rockwell Automation E3 EC3 (1...5A) via 2100-ENET Motor Overload
Binary data 752345.prm...
CVE-2019-7359
An exploitable heap overflow vulnerability in the AcCellMargin handling code in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk AutoCAD MEP 2018,...
CVE-2019-7360
CVE-2019-7360 describes an exploitable use-after-free in the DXF-parsing logic of Autodesk AutoCAD 2018 family (Advance Steel, AutoCAD, Civil 3D, etc.). The root cause is a memory-management flaw in the LinetypeTableRecord handling: when the file indicates a zero-length Elements field, an allocat...
Collectric CMU 1.0 - lang SQL injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Collectric CMU 1.0 - 'lang' SQL injection Google Dork: "Inloggning Collectric CMU" Discoverer: Simon Brannstrom Vendor Homepage: http://ourenergy.se/ Software Link: n/a Version: All known versions Tested on: Linux CVE: N/A About...
WAGO e!DISPLAY 7300T XSS / File Upload / Code Execution
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Remote code execution via multiple attack vectors product: WAGO e!DISPLAY 7300T - WP 4.3 480x272 PIO1 vulnerable version: FW 01 - 01.01.1001 fixed version: FW 02 CVE...
bentley-electrical.co.uk XSS vulnerability
Open Bug Bounty ID: OBB-423571 Description| Value ---|--- Affected Website:| bentley-electrical.co.uk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Preventio...
IEEE P1735 Cryptographic Problem Vulnerability (CNVD-2017-33399)
IEEE P1735 is a standard dedicated to encrypting the intellectual property of electronic designs. The implementation of IEEE P1735 is vulnerable to a cryptographic issue. An attacker could exploit this vulnerability to obtain the intellectual property of an electronic design...
Engineering Firm Leaks Data on Dell, SBC and Oracle
A Texas-based firm called Power Quality Engineering publicly exposed sensitive electrical infrastructure data on the public internet. Firms impacted by the leak were Dell Technologies, SBC, Freescale, Oracle, Texas Instruments and the City of Austin. Chris Vickery, cyber risk analyst at security...
Critical Flaws Found in Solar Panels Could Shut Down Power Grids
A Dutch security researcher has uncovered a slew of security vulnerabilities in an essential component of solar panels which could be exploited to cause widespread outages in European power grids. Willem Westerhof, a cybersecurity researcher at Dutch security firm ITsec, discovered 21 security...
Building a Car Hacking Development Workbench: Part 2
This is part two of a three-part series. Part one covered how to build a development workbench. Part two of this series will cover reading electrical diagrams and serve as a primer for part three, where we will re-engineer common circuit types found in vehicles. Electrical Diagrams &...
The vulnerability of the control device in the electrical energy sector, SICAM PAS, allows a intruder to access the database.
The vulnerability of the telecontrol device in the electrical energy sector of SICAM PAS is related to the use of strict password encoding. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain privileged access to the database using the TCP port 2638...