36 matches found
WAGO GmbH & Co. KG Industrial Managed Switches
SUMMARY A vulnerability has been found affecting the Managed Switches of WAGO. An unauthenticated attacker can fully compromise the device via an undocumented function. 2. IMPACT This could lead to a full System compromise of the affected devices. 3. REMEDIATION Please update your devices to the...
Phoenix Contact多款产品 安全漏洞
PHOENIX CONTACT FL SWITCH and PHOENIX CONTACT FL NAT are products of the German company PHOENIX CONTACT. PHOENIX CONTACT FL SWITCH is an industrial-grade Ethernet switch. PHOENIX CONTACT FL NAT is a series of industrial security gateways. Several products from Phoenix Contact have security...
Phoenix Contact多款产品 安全漏洞
PHOENIX CONTACT FL SWITCH and PHOENIX CONTACT FL NAT are products of the German company PHOENIX CONTACT. PHOENIX CONTACT FL SWITCH is an industrial-grade Ethernet switch. PHOENIX CONTACT FL NAT is a series of industrial security gateways. Several products from Phoenix Contact have security...
SODOLA SL902-SWTGW124AS 安全漏洞
SODOLA SL902-SWTGW124AS is an industrial switch manufactured by the Spanish company SODOLA. Versions of SODOLA SL902-SWTGW124AS prior to version 200.1.20 have security vulnerabilities. These vulnerabilities stem from the transmission of authentication credentials via unencrypted HTTP communicatio...
SODOLA SL902-SWTGW124AS 跨站请求伪造漏洞
SODOLA SL902-SWTGW124AS is an industrial switch produced by the Spanish company SODOLA. Versions of SODOLA SL902-SWTGW124AS prior to version 200.1.20 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from a flaw in the management interface’s cross-site request...
WAGO Industrial-Managed-Switch 0852-1322和WAGO Industrial-Managed-Switch 0852-1328 路径遍历漏洞
WAGO Industrial-Managed-Switch 0852-1322 and WAGO Industrial-Managed-Switch 0852-1328 are industrial-grade managed Ethernet switches from the German company WAGO. Both devices have path traversal vulnerabilities, which stem from insufficient URI validation. This vulnerability could allow unverifi...
PHOENIX CONTACT FL SWITCH 跨站脚本漏洞
PHOENIX CONTACT FL SWITCH is an industrial grade Ethernet switch from PHOENIX CONTACT. A cross-site scripting vulnerability exists in Phoenix Contact FL SWITCH versions prior to 3.50, which can be exploited by an unauthenticated, remote attacker to trick an authenticated user into clicking on a...
Cisco IOS Software Industrial Ethernet Switch Device Manager DoS (cisco-sa-ios-invalid-url-dos-Nvxszf6u)
This vulnerability occurs due to improper input validation in the deviceâs HTTP request handling. An attacker could exploit it by sending a specially crafted URL to the web interface, causing the device to crash and reload. Successful exploitation results in a denial-of-service DoS condition,...
PLANET WGS-804HPT和PLANET WGS-4215-8T2S 访问控制错误漏洞
PLANET WGS-804HPT and PLANET WGS-4215-8T2S are both products of PLANET China.PLANET WGS-804HPT is an innovative industrial-grade 8-port 10/100/1000T wall-mounted managed switch.PLANET WGS-4215-8T2S is an innovative industrial-grade PLANET WGS-4215-8T2S is an innovative industrial grade 8-port...
Planet WGS-804HPT 安全漏洞
Planet WGS-804HPT is an industrial 8-port 10/100/1000T wall-mounted managed switch from Planet, China. A security vulnerability exists in the Planet WGS-804HPT. An attacker can exploit this vulnerability to send a malformed HTTP request, which could cause the program to crash...
Planet WGS-804HPT 安全漏洞
Planet WGS-804HPT is an industrial 8-port 10/100/1000T wall-mounted managed switch from Planet, China. A security vulnerability exists in the Planet WGS-804HPT. An attacker can exploit this vulnerability to remotely execute code by sending commands via malicious HTTP requests...
Moxa EDS Device Detection Consolidation
Consolidation of Moxa EDS device detections. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc"; if description...
Westermo Lynx 206-F2G Security Vulnerability
The Westermo Lynx 206-F2G is a Layer 3 industrial Ethernet switch from Westermo, Sweden, powered by the Westermo WeOS network operating system. A security vulnerability exists in the Westermo Lynx 206-F2G. An attacker could use this vulnerability to obtain sensitive information exchanged over TCP...
Westermo Lynx 206-F2G Code Injection Vulnerability
The Westermo Lynx 206-F2G is a Layer 3 industrial Ethernet switch from Westermo, Sweden, powered by the Westermo WeOS network operating system. A security vulnerability exists in the Westermo Lynx 206-F2G. An attacker can exploit this vulnerability to execute malicious code...
Westermo Lynx 206-F2G Cross-Site Scripting Vulnerability
The Westermo Lynx 206-F2G is a Layer 3 industrial Ethernet switch from Westermo, Sweden, powered by the Westermo WeOS network operating system. A security vulnerability exists in the Westermo Lynx 206-F2G. An attacker can exploit this vulnerability to introduce arbitrary JavaScript by injecting a...
Korenix JetNet 2024/01 Security Vulnerability
Korenix JetNet is an industrial 5-port 10 / 100Base-TX Ethernet switch from Korenix. A security vulnerability exists in Korenix JetNet firmware versions prior to 2024/01, which stems from incorrect cryptographic signature validation during the update process, allowing the replacement of the entir...
Security Vulnerability in WAGO Industrial Managed Switch
WAGO Industrial Managed Switch is a series of industrial Ethernet switches from WAGO, Germany. A security vulnerability exists in the WAGO Industrial Managed Switch that originates from allowing an unauthenticated, remote attacker to inject arbitrary system commands and gain full system control...
CVE-2022-40224
A denial of service vulnerability exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP message header can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability...
MOXA SDS-3008 跨站脚本漏洞
Moxa SDS-3008 is a series of industrial switches from MOXA China. The Moxa SDS-3008 suffers from a cross-site scripting vulnerability that can be exploited by an attacker to send a specially crafted HTTP request resulting in arbitrary Javascript execution...
Siemens Scalance X-200 跨站脚本漏洞
The Siemens Scalance X-200 is an industrial-grade Ethernet switch from Siemens Germany. A cross-site scripting vulnerability exists in SCALANCE Switches, which stems from the presence of a cross-site scripting vulnerability that could lead to session hijacking if exploited by an attacker. The...