21 matches found
Technostrobe HI-LED-WR120-G2 访问控制错误漏洞
Technostrobe HI-LED-WR120-G2 is a high-brightness industrial strobe lighting device from the Canadian company Technostrobe. The version 5.5.0.1R6.03.30 of Technostrobe HI-LED-WR120-G2 contains an access control vulnerability. This vulnerability stems from incorrect handling of parameters in the /...
Multiple Vulnerabilities in Siemens RUGGEDCOM APE1808 Device Fortigate NGFW V7.4.7 Prior Versions
The RUGGEDCOM APE1808 is a powerful industrial-grade application hosting platform that allows you to deploy a wide range of commercial edge computing and cybersecurity applications in harsh industrial environments. Siemens RUGGEDCOM APE1808 appliance Fortigate NGFW V7.4.7 prior version has multip...
Siemens SCALANCE LPE9403 OS Command Injection Vulnerability (CNVD-2025-17604)
Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from an operating system command injection vulnerability that originates from...
Advantech EKI-6333AC-2G和Advantech EKI-6333AC-2GD 安全漏洞
The Advantech EKI-6333AC-2G and Advantech EKI-6333AC-2GD are both industrial-grade wireless access points APs from Advantech, China. A security vulnerability exists in the Advantech EKI-6333AC-2G version 1.6.3 and earlier, EKI-6333AC-2GD version v1.6.3 and earlier, and EKI-6333AC-1GPO version...
CIRCUTOR Q-SMT 安全漏洞
CIRCUTOR Q-SMT is an industrial hardware device from CIRCUTOR, Inc. A security vulnerability exists in CIRCUTOR Q-SMT version 1.0.4, which stems from an authentication mechanism on the login page that can be bypassed, allowing an attacker with web access privileges to interact with the device usi...
Digital Prototype Systems NetGuardian DIN 安全漏洞
Digital Prototype Systems NetGuardian DIN is a small industrial RTU from Digital Prototype Systems. A security vulnerability exists in the Digital Prototype Systems NetGuardian DIN that stems from multiple vulnerabilities in the web interface...
The vulnerability of the Weincloud industrial device management cloud platform lies in improper handling of its components, allowing attackers to trigger a service failure.
The vulnerability of the Weincloud industrial device management cloud platform is related to incorrect handling of its components. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of the Weincloud industrial device management cloud platform lies in its insufficient authentication attempt limit, which allows attackers to execute a brute-force attack.
The vulnerability of the Weincloud industrial device management cloud platform lies in the insufficient limitation on authentication attempts. Exploiting this vulnerability allows a malicious actor to execute a brute-force attack...
MOXA NPort IAW5000A-I/O Series 信任管理问题漏洞
MOXA NPort IAW5000A-I/O Series is a wireless device server for use in industrial environments from MOXA, China. The server enables the integration of field serial devices with wireless Ethernet networks and incorporates digital IOs for industrial data acquisition applications. A hard-coded...
Milesight UR32L 操作系统命令注入漏洞
The Milesight UR32L is a 4G industrial router from China's Milesight. The Milesight UR32L vtyshubus toolshexcute.constprop.1 feature suffers from a command injection vulnerability that can be exploited by an attacker to execute arbitrary commands on the system...
Sprecher Automation SPRECON-E-C/P/T3 输入验证错误漏洞
The Sprecher Automation SPRECON-E-C/P/T3 is an industrial device from Sprecher Automation. The Sprecher Automation SPRECON-E-C/P/T3 suffers from an input validation error vulnerability that stems from faulty firmware validation and can be exploited by an attacker to inject and execute arbitrary...
Advantech DeviceOn/iEdge Server Elevation of Privilege Vulnerability
Advantech DeviceOn/iEdge Server is industrial device intelligence software that enables non-intelligent devices to have IoT connectivity management capabilities.Advantech DeviceOn/iEdge Server elevation of privilege vulnerability can be exploited by attackers to gain elevated privileges to NT...
MOXA NPort IAW5000A-I/O Series 操作系统命令注入漏洞
MOXA NPort IAW5000A-I/O Series is a wireless device server for use in industrial environments from MOXA, China. The server integrates field serial devices with wireless Ethernet networks and incorporates digital IOs for industrial data acquisition applications. The NPort IAW5000A-I/O Series suffe...
MOXA NPort IA5150A 访问控制错误漏洞
MOXA Moxa NPort IA5150A Series is an industrial control device server from China Moxa MOXA. for 1-port RS-232 / 422/485 industrial automation device server with serial/LAN/power surge protection, two 10/100BaseTX ports with single IP, and operating temperature from 0 to 60°C. The NPort IA5150A...
Siemens SIMATIC MV400 安全漏洞
Siemens SIMATIC MV400 is an industrial device from Siemens Germany. It is used for optical identification. An unspecified vulnerability exists in the Siemens SIMATIC MV400 series TCP protocol stack. An attacker can exploit this vulnerability to terminate arbitrary TCP sessions...
Unspecified Vulnerability in Siemens SIMATIC MV400 Series TCP Protocol Stack
Siemens SIMATIC MV400 is an industrial device from Siemens Germany. It is used for optical identification. An unspecified vulnerability exists in the Siemens SIMATIC MV400 series TCP protocol stack. An attacker can exploit this vulnerability to terminate arbitrary TCP sessions...
Rockwell Automation 1734-AENTR 跨站脚本漏洞
The Rockwell Automation 1734-AENTR is an industrial device from Rockwell Automation, Inc. It provides an industrial control system. The 1734-AENTR suffers from a cross-site scripting vulnerability that originates in the web interface of the communication module that is susceptible to an attacked...
Siemens SIMATIC 安全特征问题漏洞
Siemens SIMATIC MV400 is an industrial device from Siemens Germany. It is used for optical identification. A security vulnerability exists in the Siemens SIMATIC MV400 series TCP protocol stack. An attacker could exploit this vulnerability to predict and hijack TCP sessions...
Denial of Service Vulnerability in ZLAN Serial Server
ZLAN5102/ZLAN5103 Serial Servers are industrial-grade protocol converters between RS232/485 and TCP/IP produced by Shanghai Zoran. A denial of service vulnerability exists in the ZLAN Serial Servers, which can be exploited by an attacker to cause the device to deny service and reboot...
The vulnerability of the iwwebs microprogramming software component in the wireless access point for Moxa AWK-3131A industrial systems allows a intruder to gain full control over the device.
The vulnerability of the iwwebs microprogramming software for wireless access devices in Moxa AWK-3131A industrial systems exists due to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability can allow a malicious actor t...