CVE-2024-50954

The XINJE XL5E-16T and XD5E-24R-E programmable logic controllers V3.5.3b-V3.7.2a have a vulnerability in handling Modbus messages. When a TCP connection is established with the above series of controllers within a local area network LAN, sending a specific Modbus message to the controller can cau...

CVE-2024-6876

CVE-2024-6876 affects the OSCAT Basic Library. The issue is an out-of-bounds read that allows a local, unprivileged attacker to access limited internal PLC data, potentially causing a crash. Public sources cite OSCAT Basic Library with affected versions; CNNVD notes versions prior to 3.3.5. Some ...

CVE-2024-6876 Out-of-bounds read in OSCAT-Library

Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service...

CVE-2018-20818

A buffer overflow vulnerability was discovered in the OpenPLC controller, in the OpenPLCv2 and OpenPLCv3 versions. It occurs in the modbus.cpp mapUnusedIO function, which can cause a runtime crash of the PLC or possibly have unspecified other impact...