CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

CVE•added 2025/12/01 3:25 p.m.•9 views

CVE-2025-54850

Socomec DIRIS Digiware M-70 (firmware 1.6.9) exposes a DoS vulnerability in its Modbus TCP and Modbus RTU over TCP services. An unauthenticated attacker can send a crafted sequence of Modbus RTU over TCP messages to port 503 that uses the Write Single Register function (code 6) to modify register...

7.5CVSS6.7AI score0.00108EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-17170

Malware in sbrugna...

9.1CVSS9.3AI score0.00106EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-16383

Malware in sbrugna...

7.8CVSS7.4AI score0.00529EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-16361

Malware in sbrugna...

7.5CVSS7.4AI score0.00507EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2021-9914

Malicious code in bioql PyPI...

9.1CVSS9.3AI score0.00183EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-39936

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00571EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:47 a.m.•8 views

CVE-2019-6807

A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a possible denial of service when writing sensitive application variables to the controller over Modbus...

7.5CVSS6.7AI score0.00507EPSS

Exploits1References1

Prion•added 2022/09/12 6:15 p.m.•12 views

Design/Logic Flaw

A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists that could cause unauthorized access in read and write mode to the controller when communicating over Modbus. Affected Products: EcoStruxure Control Expert Including all Unity Pro versions former name of...

7.5CVSS9.1AI score0.00571EPSS

Exploits0References1Affected Software36

Cvelist•added 2022/09/12 5:40 p.m.•18 views

CVE-2022-37300

9.8CVSS9.5AI score0.00571EPSS

Exploits0References1

Tenable Nessus•added 2022/02/07 12:0 a.m.•751 views

Schneider Electric Modicon Controllers and Software Authentication Bypass By Spoofing (CVE-2021-22779)

Authentication Bypass by Spoofing vulnerability exists in EcoStruxure Control Expert all versions prior to V15.0 SP1, including all versions of Unity Pro, EcoStruxure Control Expert V15.0 SP1, EcoStruxure Process Expert all versions, including all versions of EcoStruxure Hybrid DCS, SCADAPack...

9.1CVSS8.7AI score0.00183EPSS

Exploits0References3

NVD•added 2021/07/14 3:15 p.m.•16 views

CVE-2021-22779

9.1CVSS0.00183EPSS

Exploits0References1

Prion•added 2021/07/14 3:15 p.m.•23 views

Design/Logic Flaw

6.4CVSS9AI score0.00183EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/07/14 2:26 p.m.•30 views

CVE-2021-22779

9.3AI score0.00183EPSS

Exploits0References1

CVE•added 2021/07/14 2:26 p.m.•98 views

CVE-2021-22779

The CVE-2021-22779 entry describes an Authentication Bypass by Spoofing vulnerability affecting Schneider Electric products including EcoStruxure Control Expert (pre- and post‑patch variants), EcoStruxure Process Expert, SCADAPack RemoteConnect for x70, and Modicon M580/M340 CPUs. The flaw enable...

9.1CVSS9AI score0.00183EPSS

Exploits0References1Affected Software3

ATTACKERKB•added 2021/07/14 12:0 a.m.•77 views

CVE-2021-22779

9.1CVSS1.3AI score0.00183EPSS

Exploits0References2

Gitee•added 2020/09/10 9:29 a.m.•3 views

isf

This is an offensive tool for ICS exploitation. It is a Python-based framework for exploiting Industrial Control Systems ICS, similar to Metasploit. The framework, known as ICSSploit, is a fork of the routersploit project and is designed for ICS exploitation. It includes various modules for...

6.9AI score

Exploits0

Tenable Nessus•added 2019/05/31 12:0 a.m.•10 views

Schneider Electric Altivar ATV71HC40N4383 Variable Speed Drive

Binary data 764141.prm...

7.3AI score

Exploits0

Tenable Nessus•added 2019/05/21 12:0 a.m.•12 views

Schneider Electric Zelio Logic Modbus Communication Module Detection

Binary data 263.prm...

7.3AI score

Exploits0

OpenVAS•added 2019/02/16 12:0 a.m.•103 views

Schneider Electric Modbus Communication DTM Library Detection (Windows SMB Login)

Detects the installed version of Schneider Electric Modbus Communication DTM Library for Windows. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...

7.4AI score

Exploits0References1

NVD•added 2018/10/08 3:29 p.m.•11 views

CVE-2018-5400

The Auto-Maskin products utilize an undocumented custom protocol to set up Modbus communications with other devices without validating those devices. The originating device sends a message in plaintext, 48:65:6c:6c:6f:20:57:6f:72:6c:64, "Hello World" over UDP ports 44444-44446 to the broadcast...

9.1CVSS9.2AI score0.00106EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by