78 matches found
EUVD-2021-8010
Malicious code in bioql PyPI...
Mitsubishi Electric GOT and Tension Controller (CVE-2021-20589)
Buffer access with incorrect length value vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.38.000, GT25 model communication driver versions 01.19.000 through 01.38.000, GT23 model communication driver versions 01.19.000 through 01.38.000 and GT21 model...
The secrets of Schneider Electric’s UMAS protocol
UMAS Unified Messaging Application Services is a proprietary Schneider Electric SE protocol used to configure and monitor Schneider Electric PLCs. Schneider Electric controllers that use UMAS include Modicon M580 CPU part numbers BMEP and BMEH and Modicon M340 CPU part numbers BMXP34. Controllers...
CVE-2021-20592
Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT SoftGOT2000 versions...
Design/Logic Flaw
Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT SoftGOT2000 versions...
CVE-2021-20592
Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT SoftGOT2000 versions...
CVE-2021-20592
CVE-2021-20592 affects Mitsubishi Electric GOT2000 family: GOT2000 GT27/GT25/GT23 MODBUS/TCP Slave drivers (versions 01.19.000–01.39.010) and GT SoftGOT2000 (versions 1.170C–1.256S). Root cause is missing synchronization in the MODBUS/TCP communication path, allowing a remote unauthenticated atta...
CVE-2021-20589
Buffer access with incorrect length value vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.38.000, GT25 model communication driver versions 01.19.000 through 01.38.000, GT23 model communication driver versions 01.19.000 through 01.38.000 and GT21 model...
Mitsubishi Electric GOT and Tension Controller (Update A)
1. EXECUTIVE SUMMARY CVSS v3 5.9 ATTENTION: Exploitable remotely Vendor: Mitsubishi Electric Equipment: GOT and Tension Controller Vulnerability: Buffer Access with Incorrect Length Value 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-21-131-02...
Design/Logic Flaw
Out-of-bounds read vulnerability in GT21 model of GOT2000 series GT2107-WTBD V01.39.000 and earlier, GT2107-WTSD V01.39.000 and earlier, GT2104-RTBD V01.39.000 and earlier, GT2104-PMBD V01.39.000 and earlier, and GT2103-PMBD V01.39.000 and earlier, GS21 model of GOT series GS2110-WTBD V01.39.000...
Schneider Electric Altivar ATV930D37M3C Variable Speed Drive
Binary data 764312.prm...
Schneider Electric Altivar ATV61HU22M3 Variable Speed Drive
Binary data 764062.prm...
Schneider Electric Altivar ATV930U22M3 Variable Speed Drive
Binary data 764300.prm...
Schneider Electric Altivar ATV930D22M3 Variable Speed Drive
Binary data 764308.prm...
Schneider Electric Altivar ATV61HC22N4D Variable Speed Drive
Binary data 763964.prm...
Schneider Electric Altivar ATV61HC31N4 Variable Speed Drive
Binary data 763971.prm...
Schneider Electric Altivar ATV930D45M3C Variable Speed Drive
Binary data 764314.prm...
Schneider Electric Altivar ATV71HU55M3S337 Variable Speed Drive
Binary data 764268.prm...
Schneider Electric Altivar ATV71HC40N4383 Variable Speed Drive
Binary data 764141.prm...
Schneider Electric Altivar ATV930D18M3 Variable Speed Drive
Binary data 764307.prm...