The vulnerability of the microprogrammed software used in Modicon M580 programmable logic controllers and the EVLink Pro AC charging stations relates to incorrect calculations of the size of the allocated buffer. This vulnerability allows a intruder to cause malfunctions in the equipment.

The vulnerability of the microprogrammed software used in Modicon M580 programmable logic controllers and the EVLink Pro AC charging stations is related to incorrect calculations of the size of the buffer space allocated. Exploiting this vulnerability allows a malicious actor to cause service...

WAGO 750-8xx 安全漏洞

The WAGO wago 750-8xx is a series of programmable logic controllers from the German company WAGO. The devices are specifically designed for applications in industrial environments where digital algorithms operate electronic systems. A security vulnerability exists in the WAGO 750-8xx that stems...

XINJE XL5E-16T和XINJE XD5E-24R-E 安全漏洞

XINJE XL5E-16T and XINJE XD5E-24R-E are both products of China XINJE Corporation XINJE.XINJE XL5E-16T is an enhanced Ethernet controller.XINJE XD5E-24R-E is an Ethernet controller. A security vulnerability exists in the XINJE XL5E-16T and XINJE XD5E-24R-E.5.3b through 3.7.2a versions, which stems...

The vulnerability of the microprogramming software for Schneider Electric’s programmable logic controllers (PLC) models M241, M251, M258, and LMC058 is related to errors in processing input data. This vulnerability allows attackers to trigger maintenance failures and compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the microprogrammed software of Schneider Electric’s programmable logic controllers PLC models M241, M251, M258, and LMC058 is related to errors in processing input data. Exploiting this vulnerability can allow an attacker to trigger maintenance failures and compromise the...

The vulnerability of the Diffie-Hellman algorithm in microprogrammed logic controllers (PLCs) from Schneider Electric Modicon M340 CPU BMXP34 allows a attacker to execute a “man-in-the-middle” attack.

The vulnerability of the Diffie-Hellman algorithm in microprogrammed logic controllers PLCs from Schneider Electric Modicon M340 CPU BMXP34 lies in the ability to bypass authentication through spoofing. Exploiting this vulnerability allows a malicious actor to carry out a “man-in-the-middle” atta...

The vulnerability in the web interface of the Cisco Evolved Programmable Network Manager (EPNM) and the Cisco Prime Infrastructure monitoring and management system allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability of the Web interface for managing Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure, a system for monitoring and managing network equipment, is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allow...

Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Stack Overflow Code Execution Vulnerability

Fuji Electric Tellus Lite V-Simulator is a remote monitoring software for industrial environments developed by Fuji Electric Japan for collecting real-time data from PLCs, temperature controllers, inverters and other devices. Fuji Electric Tellus Lite V-Simulator 5 V8 File Parsing Stack Overflow...

The vulnerability of the implementations of CIP/Modbus programmable logic controllers of the Micro850/870 series allows a intruder to trigger a service failure.

The vulnerability of CIP/Modbus programmable logic controllers of the Micro850/870 series lies in the uncontrollable consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

WAGO多款产品 安全漏洞

WAGO PFC100 and others are products of WAGO, Germany.WAGO PFC100 is a programmable logic controller PLC.WAGO CC100 0751-9x01 is a compact controller.WAGO Edge Controller 0752-8303/8000-0002 is a controller. A security vulnerability exists in several WAGO products. The vulnerability originates fro...

WAGO多款产品 路径遍历漏洞

WAGO Edge Controller and others are products of WAGO, Germany.WAGO Edge Controller is an edge controller.WAGO PFC is a compact PLC for modular WAGO-I/O systems.WAGO CC100 0751-9x01 is a compact controller. A path traversal vulnerability exists in various WAGO products, which can be exploited by a...

CVE-2022-20657 Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface of an affected device. This vulnerability exists because the web-based management interface does not properly...

The vulnerability of microprogrammed software in programmable logic controllers such as ControlLogix 5580, GuardLogix 5580, CompactLogix 5380, CompactLogix 5480, CompactGuardLogix 5380, and 1756-EN4TR lies in their uncontrolled resource consumption, which allows a intruder to trigger malfunctions during maintenance.

The vulnerability of microprogrammed software in programmable logic controllers such as ControlLogix 5580, GuardLogix 5580, CompactLogix 5380, CompactLogix 5480, CompactGuardLogix 5380, and 1756-EN4TR is related to uncontrolled resource consumption. Exploiting this vulnerability could allow a...

XINJE XD5E和XINJE XL5E 安全漏洞

XINJE XD5E and XINJE XL5E are both products of China XINJE Corporation.XINJE XD5E is a PLC.XINJE XL5E is a PLC. A security vulnerability exists in the XINJE XD5E and XINJE XL5E version 3.5.3b that originates from a vulnerability that allows an attacker to cause a denial of service via a specially...

The vulnerability of Siemens Sinumerik programmable logic controllers lies in the improper assignment of permissions for the scripts executed by the system. This allows attackers to increase their privileges.

The vulnerability of Siemens Sinumerik programmable logic controllers is related to the incorrect assignment of permissions for the system’s scripts. Exploiting this vulnerability can allow attackers to enhance their privileges...

Cisco Evolved Programmable Network Manager Cross-Site Scripting Vulnerability (CNVD-2025-01394)

Cisco Evolved Programmable Network Manager is a programmable network manager. A cross-site scripting vulnerability exists in the Cisco Evolved Programmable Network Manager WEB interface, which can be exploited by a remote attacker to inject malicious script or HTML code, which can be used to obta...

Cisco Evolved Programmable Network Manager XSS (cisco-sa-epnmpi-sxss-yyf2zkXs)

The version of Cisco Evolved Programmable Network Manager installed on the remote host is prior to 8.0.0. It is, therefore, affected by the following: - A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM could allow an authenticated,...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from waiting for fifo occupancy to fall below a threshold in an FPGA could result in a soft CPU lockup...

The vulnerability of the web server of the microprogramming software for programmable logic controllers SIMATICS7-1500 and S7-1200 CPU family allows a hacker to redirect users to any desired URL address.

The vulnerability of the web server of the microprogramming software for programmable logic controllers SIMATICS7-1500 and S7-1200 CPUs is related to the redirection of URLs to unreliable websites. Exploiting this vulnerability allows an attacker to remotely redirect users to arbitrary URL...

Cisco Evolved Programmable Network Manager和Cisco Prime Infrastructure 跨站脚本漏洞

Cisco Evolved Programmable Network Manager is a programmable network manager. A cross-site scripting vulnerability exists in the Cisco Evolved Programmable Network Manager WEB interface, which can be exploited by a remote attacker to inject malicious script or HTML code, which can be used to obta...

The vulnerability of the CIP Message Handler component in Rockwell Automation’s programmable logic controllers ControlLogix 5580, CompactLogix 5380, Compact GuardLogix 5380 SIL 2, Compact GuardLogix 5380 SIL 3, CompactLogix 5480, FactoryTalk Logix Echo allows a intruder to trigger a service failure.

The vulnerability of the CIP Message Handler component in Rockwell Automation’s programmable logic controllers ControlLogix 5580, CompactLogix 5380, Compact GuardLogix 5380 SIL 2, Compact GuardLogix 5380 SIL 3, CompactLogix 5480, and FactoryTalk Logix Echo is related to errors in processing input...