4 matches found
CVE-2022-2758
Passwords are not adequately encrypted during the communication process between all versions of LS Industrial Systems LSIS Co. Ltd LS Electric XG5000 software prior to V4.0 and LS Electric PLCs: all versions of XGK-CPUU/H/A/S/E prior to V3.50, all versions of XGI-CPUU/UD/H/S/E prior to V3.20, all...
Design/Logic Flaw
Passwords are not adequately encrypted during the communication process between all versions of LS Industrial Systems LSIS Co. Ltd LS Electric XG5000 software prior to V4.0 and LS Electric PLCs: all versions of XGK-CPUU/H/A/S/E prior to V3.50, all versions of XGI-CPUU/UD/H/S/E prior to V3.20, all...
CVE-2022-2758
CVE-2022-2758 involves inadequate encryption strength in LS Electric’s XG5000 software communication with LS Electric PLCs. Affected products include XG5000 (all versions prior to 4.0) and PLCs: XGK-CPUU/H/A/S/E (all versions prior to 3.50), XGI-CPUU/UD/H/S/E (prior to 3.20), XGR-CPUH (prior to 1...
Memory Corruption Vulnerability in LSIS Configuration Software
LSIS configuration software is a configuration software of LeStar Industrial Electronics Wuxi Co. A memory corruption vulnerability exists in the mce project file handling of LSIS configuration software, which can be exploited by attackers to execute malicious code...