594 matches found
CVE-2024-6157
An attacker who successfully exploited these vulnerabilities could cause the robot to stop. A vulnerability exists in the PROFINET stack included in the RobotWare versions listed below. This vulnerability arises under specific condition when specially crafted message is processed by the system...
Siemens SINEC Traffic Analyzer Session Expires Insufficiently Vulnerable
SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. Siemens SINEC Traffic Analyzer suffers from an insufficient session...
Siemens SINEC Traffic Analyzer Cross-Site Request Forgery Vulnerability
SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. A cross-site request forgery vulnerability exists in Siemens SINEC...
Hazardous Method or Function Vulnerability Exposed by Siemens SINEC Traffic Analyzer
SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. Siemens SINEC Traffic Analyzer has an exposed dangerous method or...
Siemens SINEC Traffic Analyzer Sensitive Information Plaintext Transfer Vulnerability
SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. Siemens SINEC Traffic Analyzer suffers from a sensitive information...
Siemens SINEC Traffic Analyzer Input Validation Error Vulnerability
SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. An input validation error vulnerability exists in Siemens SINEC Traffi...
Siemens SINEC Traffic Analyzer 跨站请求伪造漏洞
SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. A cross-site request forgery vulnerability exists in Siemens SINEC...
Siemens SINEC Traffic Analyzer 代码问题漏洞
SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. Siemens SINEC Traffic Analyzer suffers from an insufficient session...
Discovery and Basic Configuration Protocol Access Control Error Vulnerability
Discovery and Basic Configuration Protocol is a discovery and basic configuration protocol used by engineering tools and controllers to discover devices, identify device information, and configure device settings such as PROFINET device names, IP addresses, and so on in a PROFINET network. An...
CVE-2023-49960
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint...
CVE-2023-49959
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...
CVE-2023-49959
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...
Command injection
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...
Indu-Sol PROFINET-INspektor NT Security Vulnerability
The Indu-Sol PROFINET-INspektor NT is an analysis and test set for PROFINET communication verification, acceptance, quality checking and monitoring from Indu-Sol, Germany. A security vulnerability exists in Indu-Sol PROFINET-INspektor NT version 2.4.0 and earlier, which stems from a command...
CVE-2023-49960
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint...
CVE-2023-49959
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...
CVE-2023-49960
CVE-2023-49960 affects Indo-Sol PROFINET-INspektor NT up to version 2.4.0. A path-traversal in the firmware’s httpuploadd service allows remote attackers to write arbitrary files via a crafted filename parameter in requests to the /upload endpoint. Connected sources confirm the details and indica...
CVE-2023-49959
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename parameter in POST requests to the /api/updater/ctrl/startupdate...
CVE-2023-49960
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a path traversal vulnerability in the httpuploadd service of the firmware allows remote attackers to write to arbitrary files via a crafted filename parameter in requests to the /upload endpoint...
Indu-Sol PROFINET-INspektor NT Security Vulnerability
The Indu-Sol PROFINET-INspektor NT is an analysis and test set for PROFINET communication verification, acceptance, quality checking and monitoring from Indu-Sol, Germany. A security vulnerability exists in Indu-Sol PROFINET-INspektor NT version 2.4.0 and earlier, which stems from a path traversa...