27 matches found
CVE-2026-4436
CVE-2026-4436 affects GPL Odorizers GPL750 (odorizer devices). A low-privileged remote attacker can send Modbus packets to manipulate registers that feed the odorant injection logic, potentially causing over- or under-injection of odorant into a gas line. Several sources (NVD/NIST, Red Hat, ENISA...
EUVD-2024-34178
Malicious code in bioql PyPI...
CVE-2024-11737
CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and a loss of confidentiality, integrity of the controller when an unauthenticated crafted Modbus packet is sent to the device...
CVE-2024-11737
CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and a loss of confidentiality, integrity of the controller when an unauthenticated crafted Modbus packet is sent to the device...
CVE-2024-11737
CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and a loss of confidentiality, integrity of the controller when an unauthenticated crafted Modbus packet is sent to the device...
CVE-2024-11737
CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and a loss of confidentiality, integrity of the controller when an unauthenticated crafted Modbus packet is sent to the device...
CVE-2024-11737
CVE-2024-11737 affects Schneider Electric Modicon controllers (M241/M251/M258 and LMC058). The vulnerability is improper input validation in Modbus processing, allowing an unauthenticated crafted Modbus packet to cause denial of service and compromise confidentiality and integrity of the controll...
Schneider Electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2018-7851)
CWE-119: Buffer errors vulnerability exists in Modicon M580 with firmware prior to V2.50, Modicon M340 with firmware prior to V3.01, BMxCRA312xx with firmware prior to V2.40, All firmware versions of Modicon Premium and 140CRA312xxx when sending a specially crafted Modbus packet, which could caus...
Rockwell Automation MicroLogix 1400 Buffer Copy Without Checking Size of Input (CVE-2021-22659)
Rockwell Automation MicroLogix 1400 Version 21.6 and below may allow a remote unauthenticated attacker to send a specially crafted Modbus packet allowing the attacker to retrieve or modify random values in the register. If successfully exploited, this may lead to a buffer overflow resulting in a...
Buffer overflow
Rockwell Automation MicroLogix 1400 Version 21.6 and below may allow a remote unauthenticated attacker to send a specially crafted Modbus packet allowing the attacker to retrieve or modify random values in the register. If successfully exploited, this may lead to a buffer overflow resulting in a...
CVE-2021-22659
Rockwell Automation MicroLogix 1400 Version 21.6 and below may allow a remote unauthenticated attacker to send a specially crafted Modbus packet allowing the attacker to retrieve or modify random values in the register. If successfully exploited, this may lead to a buffer overflow resulting in a...
Buffer overflow
CWE-119: Buffer errors vulnerability exists in Modicon M580 with firmware prior to V2.50, Modicon M340 with firmware prior to V3.01, BMxCRA312xx with firmware prior to V2.40, All firmware versions of Modicon Premium and 140CRA312xxx when sending a specially crafted Modbus packet, which could caus...
CVE-2018-7851
CVE-2018-7851 involves buffer errors (CWE-119) in Schneider Electric Modicon PLCs. Affected products and firmware histories include: Modicon M580 with firmware prior to v2.50, Modicon M340 prior to v3.01, BMxCRA312xx prior to v2.40, and all firmware versions of Modicon Premium and 140CRA312xxx. T...
ZScada Modbus Buffer 2.0 - Stack Buffer Overflow (Metasploit)
ZScada Modbus Buffer 2.0 - Stack Buffer Overflow Metasploit require 'msf/core' class MetasploitModule 'ZScada Net Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in Z-Scada Net 2.0. The vulnerability is triggered when parsing the response to a Modbus...
ZScada Modbus Buffer 2.0 - Stack Buffer Overflow (Metasploit)
require 'msf/core' class MetasploitModule 'ZScada Net Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in Z-Scada Net 2.0. The vulnerability is triggered when parsing the response to a Modbus packet. , 'Author' = 'james fitts' , 'License' = MSFLICENSE,...
ZScada Modbus Buffer 2.0 - Stack-Based Buffer Overflow Exploit
Exploit for windows platform in category remote exploits require 'msf/core' class MetasploitModule 'ZScada Net Buffer Overflow', 'Description' = %q This module exploits a stack based buffer overflow found in Z-Scada Net 2.0. The vulnerability is triggered when parsing the response to a Modbus...
Tri-PLC Nano-10 r81 - Denial of Service
No description provided by source. Exploit Title: Tri-PLC Nano-10 DoS Date: 07/11/2013 Exploit Author: Sapling Vendor Homepage: www.tri-plc.com Version: Firmware Version r81 and prior CVE : CVE-2013-2784 ICSA: ICSA-13-189-02 / The vulnerability exists due to a flaw in the PLC's ability to handle ...
Automated Solutions Modbus/TCP OPC Server Remote Heap Corruption PoC
No description provided by source. !/usr/bin/python asmb-heap.py Automated Solutions Modbus/TCP OPC Server Remote Heap Corruption PoC Jeremy Brown 0xjbrown41-gmail-com Jan 2011 A specially crafted length field in a MODBUS packet header can trigger heap corruption. 00408312 | 8B5424 3C MOV EDX,DWO...
Tri-PLC Nano-10 r81 Denial Of Service
Exploit Title: Tri-PLC Nano-10 DoS Date: 07/11/2013 Exploit Author: Sapling Vendor Homepage: www.tri-plc.com Version: Firmware Version r81 and prior CVE : CVE-2013-2784 ICSA: ICSA-13-189-02 / The vulnerability exists due to a flaw in the PLC's ability to handle a Modbus packet with the bit quanti...
Tri-PLC Nano-10 r81 - Denial of Service
Exploit for hardware platform in category dos / poc Exploit Title: Tri-PLC Nano-10 DoS Date: 07/11/2013 Exploit Author: Sapling Vendor Homepage: www.tri-plc.com Version: Firmware Version r81 and prior CVE : CVE-2013-2784 ICSA: ICSA-13-189-02 / The vulnerability exists due to a flaw in the PLC's...