Allen Bradley Micrologix 1100 Input Validation Error Vulnerability

The Allen Bradley Micrologix 1100 is a programmable controller for industrial environments from Allen Bradley of the Netherlands. The device supports Ethernet access, online editing for monitoring and programming, an embedded Web server for controlling the device via a Web page, and an embedded L...

isf

This is an Industrial Exploitation Framework ISF repository, a Python-based framework for exploitation and testing of industrial control systems ICS. The framework is similar to Metasploit and is designed to be used for penetration testing and vulnerability assessment of ICS devices. The reposito...

CLICK PLC CPU Modules 授权问题漏洞

CLICK PLC CPU Modules are Automation Direct's network devices A single CLICK CPU Module can be connected to up to 8 I/O modules to expand the amount of system I/O and meet the needs of a specific application. A security vulnerability exists in Automation Direct CLICK PLC CPU Modules that results ...

CLICK PLC CPU Modules 授权问题漏洞

CLICK PLC CPU Modules are Automation Direct's network devicesA single CLICK CPU Module can be connected to up to eight I/O modules to expand the number of system I/O and meet the needs of a specific application. An authorization issue vulnerability exists in Automation Direct CLICK PLC CPU Module...

CVE-2021-33841

SGE-PLC1000 device, in its 0.9.2b firmware version, does not handle some requests correctly, allowing a remote attacker to inject code into the operating system with maximum privileges...

CODESYS V2 Web-Server 访问控制错误漏洞

3S-Smart Software Solutions CODESYS V2 Web-Server is an application from 3S-Smart Software Solutions, Germany. A web server. An access control error vulnerability exists in 3S-Smart Software Solutions CODESYS V2 Web-Server versions prior to 1.1.9.20, which can be exploited by an attacker with the...

The vulnerability of the Cisco Prime Infrastructure monitoring and management system, the Cisco Evolved Programmable Network (EPN) Manager software for managing network services, and the Cisco Identity Services Engine platform for managing connection policies arises from improper external control of file names or paths. This allows attackers to write arbitrary files.

The vulnerability of the Cisco Prime Infrastructure monitoring and management system, the Cisco Evolved Programmable Network EPN Manager software for managing network services, and the Cisco Identity Services Engine connection policy management platform are related to improper external manipulati...

Cisco Prime Infrastructure Operating System Command Injection Vulnerability

Cisco Prime Infrastructure is a software application from Cisco USA. It is used to simplify the management of wireless and wired networks. An operating system command injection vulnerability exists in Cisco Prime Infrastructure and Evolved Programmable Network EPN Manager, which can be exploited ...

Cisco Prime Infrastructure 操作系统命令注入漏洞

Cisco Prime Infrastructure is a software application from Cisco USA. It is used to simplify the management of wireless and wired networks. An operating system command injection vulnerability exists in Cisco Prime Infrastructure and Evolved Programmable Network EPN Manager, which can be exploited ...

Cisco 多款产品安全漏洞

Cisco Prime Infrastructure is a software application from Cisco USA. It is used to simplify the management of wireless and wired networks. A security vulnerability exists in several Cisco products, which can be exploited by an attacker to identify directories and write arbitrary files to the file...

WAGO Cross-Site Scripting Vulnerability

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed specifically for applications in industrial environments where digital algorithms operate electronic systems. A cross-site scripting vulnerability exists in WAGO. The vulnerability stems from a lack ...

WAGO Unauthorized Access Vulnerability

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed specifically for applications in industrial environments where digital algorithms operate electronic systems. A security vulnerability exists in WAGO. The vulnerability arises from unauthorized acces...

WAGO 安全漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed for use in industrial environments as an electronic system for the operation of digital algorithms. A security vulnerability exists in WAGO. An attacker could use a specially crafted request to cause...

WAGO 信息泄露漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed for use in industrial environments as an electronic system for the operation of digital algorithms. A security vulnerability exists in WAGO. An attacker could use this vulnerability to gain access to...

WAGO 跨站脚本漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed specifically for applications in industrial environments where digital algorithms operate electronic systems. A cross-site scripting vulnerability exists in WAGO. The vulnerability stems from a lack ...

WAGO 安全漏洞

WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed for use in industrial environments as an electronic system for the operation of digital algorithms. A security vulnerability exists in WAGO. The vulnerability stems from a program web server cookie...

Omron CX-One 缓冲区错误漏洞

Omron CX-One is an integrated toolkit from Omron Japan. The product includes an inverter, temperature controller, and PLC programming software. A security vulnerability exists in CX-One Versions version 4.60 and earlier. The vulnerability stems from the program's susceptibility to a stack-based...

The vulnerability of Siemens LOGO!8 BM programmable logic controller’s microprogramming software lies in the lack of authentication for a critical function, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of Siemens LOGO!8 BM programmable logic controller’s microprogramming software is related to the absence of authentication for a critical function. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected information...

Siemens Web Server缓冲区错误漏洞

Siemens SCALANCE X switches are used to connect industrial components such as programmable logic controllers PLCs or human machine interfaces HMIs. A heap buffer overflow vulnerability exists in the Siemens SCALANCE X-200 web server. An attacker could exploit the vulnerability to cause a denial o...

The vulnerability of microprogrammed software in programmable logic controllers such as CompactLogix 5370 L1, CompactLogix 5370 L2, CompactLogix 5370 L3, Compact GuardLogix 5370, ControlLogix 5570, and GuardLogix 5370, related to the execution of a loop with an unavailable exit condition, allows a intruder to cause a service failure.

The vulnerability of microprogrammed software in programmable logic controllers such as CompactLogix 5370 L1, CompactLogix 5370 L2, CompactLogix 5370 L3, Compact GuardLogix 5370, ControlLogix 5570, and GuardLogix 5370, related to the execution of a loop with an unreachable exit condition...