62 matches found
EUVD-2019-8903
Malware in sbrugna...
EUVD-2020-26813
Malware in sbrugna...
EUVD-2020-26690
Malware in sbrugna...
EUVD-2016-10178
Malware in sbrugna...
EUVD-2021-14212
Malware in sbrugna...
EUVD-2022-36367
Malicious code in bioql PyPI...
EUVD-2022-15423
Malicious code in bioql PyPI...
CVE-2023-1285
Signal Handler Race Condition vulnerability in Mitsubishi Electric India GC-ENET-COM whose first 2 digits of 11-digit serial number of unit are "16" allows a remote unauthenticated attacker to cause a denial-of-service DoS condition in Ethernet communication by sending a large number of specially...
CVE-2021-27458
If Ethernet communication of the JTEKT Corporation TOYOPUC product series’ TOYOPUC-PC10 Series: PC10G-CPU TCC-6353: All versions, PC10GE TCC-6464: All versions, PC10P TCC-6372: All versions, PC10P-DP TCC-6726: All versions, PC10P-DP-IO TCC-6752: All versions, PC10B-P TCC-6373: All versions, PC10B...
CVE-2021-20586
Resource management errors vulnerability in a robot controller of MELFA FR Seriescontroller "CR800-VD" of RV-FR-D- all versions, controller "CR800-HD" of RH-FRH-D- all versions, controller "CR800-HRD" of RH-FRHR-D- all versions, controller "CR800-VR with R16RTCPU" of RV-FR-R- all versions,...
CVE-2019-10930
A vulnerability has been identified in All other SIPROTEC 5 device types with CPU variants CP300 and CP100 and the respective Ethernet communication modules All versions , DIGSI 5 engineering software All versions V7.90, SIPROTEC 5 device types 6MD85, 6MD86, 6MD89, 7UM85, 7SA87, 7SD87, 7SL87,...
CVE-2019-19279
A vulnerability has been identified in SIPROTEC 4 and SIPROTEC Compact relays equipped with EN100 Ethernet communication modules All versions. Specially crafted packets sent to port 50000/UDP of the EN100 Ethernet communication modules could cause a Denial-of-Service of the affected device. A...
CVE-2019-10931
A vulnerability has been identified in All other SIPROTEC 5 device types with CPU variants CP300 and CP100 and the respective Ethernet communication modules All versions , DIGSI 5 engineering software All versions V7.90, SIPROTEC 5 device types 6MD85, 6MD86, 6MD89, 7UM85, 7SA87, 7SD87, 7SL87,...
CVE-2024-8403
Improper Validation of Specified Type of Input vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET versions 1.100 to 1.200 and FX5-ENET/IP versions 1.100 to 1.104 allows a remote attacker to cause a Denial of Service condition in Ethernet communication of the products by...
CVE-2024-8403
The CVE-2024-8403 issue is a DoS vulnerability in Mitsubishi Electric MELSEC iQ-F Series MELSEC iQ-F Ethernet Module (FX5-ENET) and EtherNet/IP Module. It stems from improper validation of a specified input type in SLMP packets, allowing remote attackers to disrupt Ethernet communication. Affecte...
Mitsubishi Electric MELSEC iQ-F Series Insufficient Resource Pool (CVE-2023-7033)
Insufficient Resource Pool vulnerability in Ethernet function of Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules allows a remote attacker to cause a temporary Denial of Service condition for a certain period of time in Ethernet communication of the products by performing TCP SYN...
Mitsubishi Electric Multiple Factory Automation Products (Update A)
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Corporation Equipment : MELSEC iQ-F Series Vulnerability : Insufficient Resource Pool 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a...
The vulnerabilities of the microprogrammed software for Ethernet communication adapters, the FX3U-ENETADP/Ethernet Communication Block FX3U-ENET(-L), and the microprogrammed software for programmable logic controllers MELSEC iQ-F and MELSEC-F, allow attackers to cause malfunctions in the equipment’s operation.
The vulnerabilities of microprogrammed software for Ethernet communication adapters, such as the FX3U-ENETADP/Ethernet Communication Block FX3U-ENET-L, and microprogrammed software for programmable logic controllers like MELSEC iQ-F and MELSEC-F, are related to insufficient verification of data...
Mitsubishi Electric MELSEC-F Series
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION : Exploitable remotely/low attack complexity Vendor : Mitsubishi Electric Corporation Equipment : MELSEC-F Series Vulnerability : Improper Authentication 2. RISK EVALUATION Successful exploitation of this vulnerability may allow a remote...
Schneider Electric Modicon Exposure of Sensitive Information to an Unauthorized Actor (CVE-2021-22785)
A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of files located in the web root directory to leak when an attacker sends a HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 Versions prior to V3.40, Modicon M340 X...