Lucene search
K

77 matches found

Talos Blog
Talos Blog
added 2025/10/15 5:39 p.m.6 views

Open PLC and Planet vulnerabilities

Cisco Talos' Vulnerability Discovery & Research team recently disclosed one vulnerability in the OpenPLC logic controller and four vulnerabilities in the Planet WGR-500 router. For Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from...

8.8CVSS8.2AI score0.04421EPSS
Exploits7
RedhatCVE
RedhatCVE
added 2025/10/08 2:14 p.m.4 views

CVE-2025-54399

Multiple stack-based buffer overflow vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to stack-based buffer overflow. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This...

8.8CVSS7.5AI score0.00708EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 2:13 p.m.6 views

CVE-2025-54401

Multiple stack-based buffer overflow vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to stack-based buffer overflow. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This...

8.8CVSS7.5AI score0.00678EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 2:13 p.m.5 views

CVE-2025-54400

Multiple stack-based buffer overflow vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to stack-based buffer overflow. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This...

8.8CVSS7.5AI score0.00678EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 2:13 p.m.4 views

CVE-2025-54404

Multiple OS command injection vulnerabilities exist in the swctrl functionality of Planet WGR-500 v1.3411b190912. A specially crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is related ...

8.8CVSS7.9AI score0.03636EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 2:13 p.m.4 views

CVE-2025-54403

Multiple OS command injection vulnerabilities exist in the swctrl functionality of Planet WGR-500 v1.3411b190912. A specially crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is related ...

8.8CVSS7.9AI score0.03636EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 2:13 p.m.5 views

CVE-2025-54405

Multiple OS command injection vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command...

8.8CVSS7.9AI score0.04229EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 2:13 p.m.7 views

CVE-2025-54406

Multiple OS command injection vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command...

8.8CVSS7.9AI score0.04229EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/08 2:13 p.m.4 views

CVE-2025-54402

Multiple stack-based buffer overflow vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to stack-based buffer overflow. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This...

8.8CVSS7.5AI score0.00708EPSS
Exploits1References1
NVD
NVD
added 2025/10/07 2:15 p.m.4 views

CVE-2025-54403

Multiple OS command injection vulnerabilities exist in the swctrl functionality of Planet WGR-500 v1.3411b190912. A specially crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is related ...

8.8CVSS0.03636EPSS
Exploits1References2
OSV
OSV
added 2025/10/07 2:15 p.m.4 views

CVE-2025-54404

Multiple OS command injection vulnerabilities exist in the swctrl functionality of Planet WGR-500 v1.3411b190912. A specially crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is related ...

8.8CVSS6AI score0.03636EPSS
Exploits1References2
NVD
NVD
added 2025/10/07 2:15 p.m.5 views

CVE-2025-54404

Multiple OS command injection vulnerabilities exist in the swctrl functionality of Planet WGR-500 v1.3411b190912. A specially crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is related ...

8.8CVSS0.03636EPSS
Exploits1References2
OSV
OSV
added 2025/10/07 2:15 p.m.5 views

CVE-2025-54403

Multiple OS command injection vulnerabilities exist in the swctrl functionality of Planet WGR-500 v1.3411b190912. A specially crafted network request can lead to arbitrary command execution. An attacker can send a network request to trigger these vulnerabilities.This command injection is related ...

8.8CVSS5.9AI score0.03636EPSS
Exploits1References2
OSV
OSV
added 2025/10/07 2:15 p.m.5 views

CVE-2025-54406

Multiple OS command injection vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command...

8.8CVSS6AI score0.04229EPSS
Exploits1References2
OSV
OSV
added 2025/10/07 2:15 p.m.5 views

CVE-2025-54405

Multiple OS command injection vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command...

8.8CVSS6AI score0.04229EPSS
Exploits1References2
NVD
NVD
added 2025/10/07 2:15 p.m.8 views

CVE-2025-54406

Multiple OS command injection vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command...

8.8CVSS0.04229EPSS
Exploits1References2
NVD
NVD
added 2025/10/07 2:15 p.m.7 views

CVE-2025-54405

Multiple OS command injection vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This command...

8.8CVSS0.04229EPSS
Exploits1References2
NVD
NVD
added 2025/10/07 2:15 p.m.8 views

CVE-2025-54399

Multiple stack-based buffer overflow vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to stack-based buffer overflow. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This...

8.8CVSS0.00708EPSS
Exploits1References2
OSV
OSV
added 2025/10/07 2:15 p.m.4 views

CVE-2025-54402

Multiple stack-based buffer overflow vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to stack-based buffer overflow. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This...

8.8CVSS6.5AI score0.00708EPSS
Exploits1References2
OSV
OSV
added 2025/10/07 2:15 p.m.5 views

CVE-2025-54401

Multiple stack-based buffer overflow vulnerabilities exist in the formPingCmd functionality of Planet WGR-500 v1.3411b190912. A specially crafted series of HTTP requests can lead to stack-based buffer overflow. An attacker can send a series of HTTP requests to trigger these vulnerabilities.This...

8.8CVSS6.5AI score0.00678EPSS
Exploits1References2
Rows per page
Query Builder