Lucene search
K

322 matches found

Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.17 views

Omron CX-One CX-Programmer, CJ2M and CJ2H PLCs Exposure of Sensitive Information to an Unauthorized Actor (CVE-2015-0987)

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password transmission, which allows remote attackers to obtain sensitive information by sniffing the network during a PLC unlock request. This plugin only works with Tenable.ot...

10CVSS5.5AI score0.01162EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.38 views

Siemens SIMATIC S7-1200 CPU Family Denial of Service (CVE-2013-2780)

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service defect-mode transition and control outage via crafted packets to UDP port 161 aka the SNMP port. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

7.8CVSS5.5AI score0.02392EPSS
Exploits0References3
ICS
ICS
added 2022/01/06 12:0 a.m.47 views

IDEC PLCs

1. EXECUTIVE SUMMARY CVSS v3 7.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: IDEC Equipment: PLCs Programmable Logic Controllers Vulnerabilities: Unprotected Transport of Credentials, Plaintext Storage of a Password 2. RISK EVALUATION Successful exploitation of these...

9.8CVSS9.2AI score0.0134EPSS
Exploits0References5
Exploit DB
Exploit DB
added 2022/01/05 12:0 a.m.270 views

Siemens S7 Layer 2 - Denial of Service (DoS)

Exploit Title: Siemens S7 Layer 2 - Denial of Service DoS Date: 21/10/2021 Exploit Author: RoseSecurity Vendor Homepage: https://www.siemens.com/us/en.html Version: Firmware versions = 3 Tested on: Siemens S7-300, S7-400 PLCs !/usr/bin/python3 from scapy.all import from colorama import Fore, Back...

7.4AI score
Exploits0
0day.today
0day.today
added 2022/01/05 12:0 a.m.234 views

Siemens S7 Layer 2 - Denial of Service Exploit

Exploit Title: Siemens S7 Layer 2 - Denial of Service DoS Exploit Author: RoseSecurity Vendor Homepage: https://www.siemens.com/us/en.html Version: Firmware versions = 3 Tested on: Siemens S7-300, S7-400 PLCs !/usr/bin/python3 from scapy.all import from colorama import Fore, Back, Style from...

0.2AI score
Exploits0
NVD
NVD
added 2021/12/24 7:15 a.m.15 views

CVE-2021-20826

Unprotected transport of credentials vulnerability in IDEC PLCs FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 and earlier, WindEDIT Lite v1.3.1 and earlier, and Data File Manager v2.12.1 and earlier allows...

7.6CVSS0.0039EPSS
Exploits0References2
NVD
NVD
added 2021/12/24 7:15 a.m.28 views

CVE-2021-20827

Plaintext storage of a password vulnerability in IDEC PLCs FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 and earlier, WindEDIT Lite v1.3.1 and earlier, and Data File Manager v2.12.1 and earlier allows an...

7.5CVSS0.00588EPSS
Exploits0References2
Prion
Prion
added 2021/12/24 7:15 a.m.19 views

Design/Logic Flaw

Unprotected transport of credentials vulnerability in IDEC PLCs FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 and earlier, WindEDIT Lite v1.3.1 and earlier, and Data File Manager v2.12.1 and earlier allows...

3.3CVSS7.8AI score0.0039EPSS
Exploits0References2Affected Software5
Prion
Prion
added 2021/12/24 7:15 a.m.12 views

Spoofing

Plaintext storage of a password vulnerability in IDEC PLCs FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 and earlier, WindEDIT Lite v1.3.1 and earlier, and Data File Manager v2.12.1 and earlier allows an...

5CVSS7.9AI score0.00588EPSS
Exploits0References2Affected Software5
CVE
CVE
added 2021/12/24 6:30 a.m.55 views

CVE-2021-20827

CVE-2021-20827 describes plaintext storage of a password vulnerability in IDEC PLCs, allowing an attacker to obtain PLC Web server credentials from SD cards (ZLD files) or file backups and potentially hijack the PLC. Affected products and versions include IDEC FC6A/MICROSmart All-in-One CPU Modul...

7.5CVSS7.5AI score0.00588EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/12/24 6:30 a.m.56 views

CVE-2021-20826

CVE-2021-20826 affects IDEC PLCs: FC6A/MICROSmart All-in-One CPU Module (v2.32 and earlier), FC6A/MICROSmart Plus (v1.91 and earlier), WindLDR (v8.19.1 and earlier), WindEDIT Lite (v1.3.1 and earlier), and Data File Manager (v2.12.1 and earlier). Root cause: unprotected transport of credentials (...

7.6CVSS7.3AI score0.0039EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/12/24 6:30 a.m.18 views

CVE-2021-20826

Unprotected transport of credentials vulnerability in IDEC PLCs FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 and earlier, WindEDIT Lite v1.3.1 and earlier, and Data File Manager v2.12.1 and earlier allows...

7.5AI score0.0039EPSS
Exploits0References2
NVD
NVD
added 2021/08/31 11:15 a.m.18 views

CVE-2021-34578

This vulnerability allows an attacker who has access to the WBM to read and write settings-parameters of the device by sending specifically constructed requests without authentication on multiple WAGO PLCs in firmware versions up to FW07...

9.8CVSS0.00963EPSS
Exploits0References1
Prion
Prion
added 2021/08/31 11:15 a.m.13 views

Authentication flaw

This vulnerability allows an attacker who has access to the WBM to read and write settings-parameters of the device by sending specifically constructed requests without authentication on multiple WAGO PLCs in firmware versions up to FW07...

6.8CVSS7.9AI score0.00963EPSS
Exploits0References1Affected Software12
CVE
CVE
added 2021/08/31 10:33 a.m.57 views

CVE-2021-34578

CVE-2021-34578 affects WAGO PLCs (e.g., firmware versions up to FW07) where an authentication issue in the WBM allows an attacker with access to read and write device settings by sending specially crafted requests. The vulnerability arises from improper authentication/authorization of settings-pa...

9.8CVSS8.5AI score0.00963EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/30 12:0 a.m.7 views

The vulnerability of microprogrammed software in Schneider Electric’s programmable logic controllers such as Modicon M340, Modicon Quantum, and Modicon Premium lies in errors related to register data manipulation, allowing attackers to execute arbitrary commands.

The vulnerability of microprogrammed software in Schneider Electric’s programmable logic controllers such as Modicon M340, Modicon Quantum, and Modicon Premium is related to errors in controlling registration data. Exploiting this vulnerability allows an attacker to execute arbitrary commands usi...

10CVSS8.1AI score0.02301EPSS
Exploits0References2Affected Software13
ThreatPost
ThreatPost
added 2021/07/22 5:46 p.m.76 views

Industrial Networks Exposed Through Cloud OT

The benefits of using a cloud-based management platform to monitor and configure industrial control systems ICS devices are obvious — efficiency, cost-savings and better diagnostics just for starters. But new research found critical vulnerabilities in these platforms that could be used to paralyz...

9.8CVSS8.7AI score0.01418EPSS
Exploits2References6
ThreatPost
ThreatPost
added 2021/07/13 8:4 p.m.83 views

Unpatched, Critical RCE Bug Allows Utility Takeovers

A critical remote code-execution RCE vulnerability in Schneider Electric programmable logic controllers PLCs has come to light, which allows unauthenticated cyberattackers to gain root-level control over PLCs used in manufacturing, building automation, healthcare and enterprise environments. If...

10CVSS10AI score0.64612EPSS
Exploits2References10
The Hacker News
The Hacker News
added 2021/05/31 7:52 a.m.103 views

A New Bug in Siemens PLCs Could Let Hackers Run Malicious Code Remotely

Siemens on Friday shipped firmware updates to address a severe vulnerability in SIMATIC S7-1200 and S7-1500 programmable logic controllers PLCs that could be exploited by a malicious actor to remotely gain access to protected areas of the memory and achieve unrestricted and undetected code...

9.8CVSS1.9AI score0.05184EPSS
Exploits0
CNVD
CNVD
added 2021/05/12 12:0 a.m.24 views

Siemens SCALANCE XM-400 and XR-500 Devices Denial of Service Vulnerability

SCALANCE X switches are used to connect industrial components such as programmable logic controllers PLCs or human machine interfaces HMIs. A denial of service vulnerability exists in the Siemens SCALANCE XM-400 and XR-500 Devices, which can be exploited by an attacker to create a permanent denia...

7.5CVSS7.3AI score0.01629EPSS
Exploits0References1
Rows per page
Query Builder