71 matches found
VulStyle: A Multi-Modal Pre-Training for Code Stylometry-Augmented Vulnerability Detection
We present VulStyle, a multi-modal software vulnerability detection model that jointly encodes function-level source code, non-terminal Abstract Syntax Tree AST structure, and code stylometry CStyle features. Prior work in code representation primarily leverages token-level models or full AST...
D-Link DWR-M920 sub_42261C Function Stack Buffer Overflow Vulnerability
The D-Link DWR-M920 is a 4GLTE wireless router manufactured by Youxun D-Link. The D-Link DWR-M920 suffers from a stack buffer overflow vulnerability that stems from incorrect manipulation of the parameter ip6addr in the function sub42261C in the file /boafrm/formFilter, for which no detailed...
EUVD-2025-34149
An unauthanticated remote attacker can perform a DoS of the Modbus service by sending a specific function and sub-function code without affecting the core functionality...
CVE-2025-41704 Phoenix Contact: Unauthenticated Modbus Service DoS via Crafted Function Code
An unauthanticated remote attacker can perform a DoS of the Modbus service by sending a specific function and sub-function code without affecting the core functionality...
CVE-2025-41704 Phoenix Contact: Unauthenticated Modbus Service DoS via Crafted Function Code
An unauthanticated remote attacker can perform a DoS of the Modbus service by sending a specific function and sub-function code without affecting the core functionality...
CVE-2025-41704
CVE-2025-41704 describes an unauthenticated DoS against the Modbus service by sending a crafted function and sub-function code. Public sources constrain affected products to Phoenix Contact and related QUINT4 modules, with references indicating multiple QUINT4-UPS/24DC/24DC/5/EIP, 10/EIP, and 20/...
PT-2025-41854
Name of the Vulnerable Software and Affected Versions Modbus affected versions not specified Description An unauthenticated remote attacker can cause a denial of service DoS condition affecting the Modbus service. This is achieved by sending a specific function and sub-function code. The core...
Schneider Modicon Remote START/STOP Command
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Schneider Modicon Remote START/STOP Command', 'Description' = %q The Schneider Modicon with Unity series of PLCs use Modbus function code 90 0x5a...
Schneider Modicon Ladder Logic Upload/Download
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Schneider Modicon Ladder Logic Upload/Download', 'Description' = %q The Schneider Modicon with Unity series of PLCs use Modbus function code 90...
AutomationDirect P3-550E Programming Software Connection FiBurn heap-based buffer overflow vulnerability
Talos Vulnerability Report TALOS-2024-1936 AutomationDirect P3-550E Programming Software Connection FiBurn heap-based buffer overflow vulnerability May 28, 2024 CVE Number CVE-2024-24851 SUMMARY A heap-based buffer overflow vulnerability exists in the Programming Software Connection FiBurn...
Modbus Banner Grabbing
This module grabs the banner of any device running the Modbus protocol by sending a request with Modbus Function Code 43 Read Device Identification. Modbus is a data communications protocol originally published by Modicon now Schneider Electric in 1979 for use with its programmable logic...
Schneider M580 suffers from denial of service vulnerability (CNVD-2020-04565)
Schneider Electric SA is a global electrical company headquartered in France. A denial of service vulnerability exists in the Schneider M580, which can be exploited by an attacker to cause the PLC to enter a fatal failure mode after sending a well-constructed 0x29 function code data message, whic...
Denial of service vulnerability in schneider M580 (CNVD-2020-04563)
Schneider Electric SA is a global electrical company headquartered in France. A denial of service vulnerability exists in the schneider M580, which can be exploited by an attacker to cause the PLC to enter a fatal failure mode after sending a well-constructed 0x65 function code data message, whic...
Schneider Electric Modicon M580 Has Denial of Service Vulnerability
The Schneider Electric Modicon M580 is an Ethernet programmable controller. A denial of service vulnerability exists in the Schneider Electric Modicon M580, which can be exploited by an attacker to cause a denial of service by sending a carefully constructed 0x28 function code data message...
Schneider Electric Modicon M580 UMAS Function Code 0x29 Denial of Service Vulnerability
Summary An exploitable denial of service vulnerability exists in the UMAS function code 0x29 functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault stat...
Schneider Electric Modicon M580 UMAS function code 0x65 denial-of-service vulnerability
Summary An exploitable denial-of-service vulnerability exists in the UMAS function code 0x65 functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault...
Schneider Electric Modicon M580 UMAS set breakpoint denial-of-service vulnerability
Summary An exploitable denial-of-service vulnerability exists in the UMAS set breakpoint functionality of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault state,...
Schneider Electric Modicon M580 UMAS read memory block information disclosure vulnerability
Summary An exploitable information disclosure vulnerability exists in the UMAS read memory block function of the Schneider Electric Modicon M580 programmable automation controller, firmware version SV2.70. A specially crafted UMAS command can cause the device to return blocks of memory, resulting...
Apache OpenWhisk Remote Code Execution Vulnerability
Apache OpenWhisk is an open source FaaS cloud platform from the Apache Software Foundation in the U.S. PHP Runtime for Apache OpenWhisk is its PHP-based version. A security vulnerability exists in PHP Runtime for Apache OpenWhisk. The vulnerability can be exploited to replace the source code of a...
CVE-2017-11401
An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance before 03.2.00. Improper handling of the mbap.length field of ModBus packets in the ModBus DPI filter allows an attacker to send malformed/crafted packets to a protected asset, bypassing function code filtering...