CVE-2026-35225 Improper timeout handling in CODESYS EtherNetIP

An unauthenticated remote attacker is able to exhaust all available TCP connections in the CODESYS EtherNet/IP adapter stack, preventing legitimate clients from establishing new connections...

CVE-2026-35225

Summary of CVE-2026-35225 (CODESYS EtherNet/IP adapter stack) : An unauthenticated remote attacker can exhaust all TCP connections, preventing legitimate clients from establishing new connections. Root cause cited in reports is improper timeout handling during connection management. Impact stated...

CODESYS EtherNetIP 代码问题漏洞

CODESYS EtherNetIP is an Ethernet-based industrial protocol developed by the German company CODESYS. There is a code vulnerability in CODESYS EtherNetIP, which stems from exhausting all available TCP connections. This vulnerability could allow unauthorized remote attackers to prevent legitimate...

EUVD-2021-23353

Malware in sbrugna...

CVE-2021-36765

In CODESYS EtherNetIP before 4.1.0.0, specific EtherNet/IP requests may cause a null pointer dereference in the downloaded vulnerable EtherNet/IP stack that is executed by the CODESYS Control runtime system...

CVE-2021-36765

In CODESYS EtherNetIP before 4.1.0.0, specific EtherNet/IP requests may cause a null pointer dereference in the downloaded vulnerable EtherNet/IP stack that is executed by the CODESYS Control runtime system...

CVE-2021-36765

CVE-2021-36765 affects CODESYS EtherNetIP prior to 4.1.0.0. The issue is a null pointer dereference in the downloaded EtherNet/IP stack that is executed by the CODESYS Control runtime system when handling certain EtherNet/IP requests. Documented impact is limited to the dereference condition; CVS...

CODESYS EtherNetIP 代码问题漏洞

CODESYS EtherNetIP is an open standard promoted and maintained by ODVA ®, a user organization of 3S-Smart Software Solutions, Germany. A code issue exists in CODESYS EtherNetIP due to a null pointer dereference issue in the product stack. The following products and versions are affected: CODESYS...

Rockwell Automation EDS Subsystem

1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION: Exploitable from adjacent network/low skill level to exploit Vendor: Rockwell Automation Equipment: EDS Subsystem Vulnerabilities: Improper Restriction of Operations within the Bounds of a Memory Buffer, SQL Injection 2. RISK EVALUATION Successful...

Rockwell Automation PM3000 M8 w/EtherNetIP,Class 0.2 1404-M8xxx-ENT-02 B

Binary data 753893.prm...

Rockwell Automation PM3000 M8 w/EtherNetIP,Class 0.5 1404-M8xxx-ENT B

Binary data 753892.prm...

Rockwell Automation PM3000 M5 w/EtherNetIP,Class 0.2 1404-M5xxx-ENT-02 B

Binary data 753885.prm...

Rockwell Automation PM3000 M5 w/EtherNetIP,Class 0.5 1404-M5xxx-ENT B

Binary data 753884.prm...

Rockwell Automation PM3000 M6 w/EtherNetIP,Class 0.5 1404-M6xxx-ENT B

Binary data 753888.prm...

Rockwell Automation PM3000 M6 w/EtherNetIP,Class 0.2 1404-M6xxx-ENT-02 B

Binary data 753889.prm...

Rockwell Automation PM3000 M4 w/EtherNetIP,Class 1 1404-M4xxx-ENT B

Binary data 753882.prm...

ISF - Industrial Control System Exploitation Framework

ISFIndustrial Exploitation Framework is a exploitation framework based on Python, it's similar to metasploit framework. ISF is based on open source project routersploit. Read this in other languages:English, 简体中文, ICS Protocol Clients Name | Path | Description ---|---|--- modbustcpclient |...

Rockwell Automation MicroLogix Detection Consolidation

Consolidation of Rockwell Automation MicroLogix detections. This VT has been deprecated and replaced by the VT SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...

WAGO PLC Detection Consolidation

Consolidation of WAGO PLC Controller detections. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...