Rockwell Automation Stratix Industrial Managed Ethernet Switch 7Pk Errors (CVE-2018-0155)

A vulnerability in the Bidirectional Forwarding Detection BFD offload implementation could allow an unauthenticated remote attacker to cause a crash of the iosd process, causing a DoS condition. The vulnerability is due to insufficient error handling when the BFD header in a BFD packet is...

Rockwell Automation 1783-HMS8SG4CGN Stratix 5400 Managed Ethernet Switch

Binary data 753372.prm...

Rockwell Automation 1783-HMS4EG8CGR Stratix 5400 Managed Ethernet Switch

Binary data 753379.prm...

Rockwell Automation 1783-HMS16T4CGN Stratix 5400 Managed Ethernet Switch

Binary data 753369.prm...

Rockwell Automation 1783-HMS4S8E4CGN Stratix 5400 Managed Ethernet Switch

Binary data 753370.prm...

Rockwell Automation 1783-HMS4EG8CGN Stratix 5400 Managed Ethernet Switch

Binary data 753373.prm...

Rockwell Automation 1783-HMS4C4CGN Stratix 5400 Managed Ethernet Switch

Binary data 753365.prm...

Rockwell Automation 1783-HMS16TG4CGN Stratix 5400 Managed Ethernet Switch

Binary data 753374.prm...

Schweitzer Engineering Laboratories Managed 24-Port Ethernet Switch Detection

Binary data 755348.prm...

Rockwell Automation 1783-HMS4T4E4CGN Stratix 5400 Managed Ethernet Switch

Binary data 753368.prm...

Rockwell Automation 1783-HMS4SG8EG4CGN Stratix 5400 Managed Ethernet Switch

Binary data 753376.prm...

CVE-2018-0679

Cross-site scripting vulnerability in multiple FXC Inc. network devices Managed Ethernet switch FXC5210/5218/5224 firmware prior to version Ver1.00.22, Managed Ethernet switch FXC5426F firmware prior to version Ver1.00.06, Managed Ethernet switch FXC5428 firmware prior to version Ver1.00.07, Powe...

CVE-2018-0679

Cross-site scripting vulnerability in multiple FXC Inc. network devices Managed Ethernet switch FXC5210/5218/5224 firmware prior to version Ver1.00.22, Managed Ethernet switch FXC5426F firmware prior to version Ver1.00.06, Managed Ethernet switch FXC5428 firmware prior to version Ver1.00.07, Powe...

JVN#68528150: Multiple FXC network devices vulnerable to cross-site scripting

Multiple network devices provided by FXC Inc. contain a stored cross-site scripting vulnerability CWE-79. Impact If an attacker with administrative rights logs in the Management GUI and embeds a specially crafted script, then that script may be executed on another administrator's web browser...

ICSA-18-107-05_Rockwell Automation Stratix Industrial Managed Ethernet Switch

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low skill level to exploit. Vendor : Rockwell Automation Equipment : Allen-Bradley Stratix Industrial Managed Ethernet Switch Vulnerabilities : Improper Input Validation, Resource Management Errors, 7PK – Errors, Improper...