CVE-2019-10953

ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets...

CVE-2019-10953

ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets...

CVE-2019-10953

ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets...

PT-2019-12100

Name of the Vulnerable Software and Affected Versions Programmable Logic Controllers versions affected versions not specified Description The issue concerns a denial-of-service attack due to a flood of network packets. Researchers have found that some controllers from various manufacturers,...

PT-2019-2037 · Siemens · Siemens Plc

Name of the Vulnerable Software and Affected Versions: Siemens affected versions not specified Description: The issue is related to insufficient input validation in the web server of Siemens programmable logic controller PLC devices. This can be exploited by a remote attacker to cause a denial of...

Denial of Service Vulnerability in S7 300 CPU319-3/CP343-1

Siemens China Ltd. is focused on electrification, automation and digitalization. A denial of service vulnerability exists in S7 300 CPU319-3/CP343-1, where an attacker can cause the PLC CPU module and CP module to go down, requiring a manual reboot of the PLC to recover. Other sub-function codes...

Multiple SCALANCE X switches products mirror port isolation vulnerability

SCALANCE X switches are used to connect industrial components such as programmable logic controllers PLCs or human machine interfaces HMIs. A mirror port isolation vulnerability exists in several SCALANCE X switches products. The vulnerability is due to the monitoring barriers on the affected...

CVE-2019-9590

An issue was discovered on TENGCONTROL T-920 PLC v5.5 devices. It allows remote attackers to cause a denial of service persistent failure mode by sending a series of \x19\xb2\x00\x00\x00\x06\x43\x01\x00\xac\xff\x00 aka UID 0x43 requests to TCP port 502...

The vulnerability of the programmable logic integrated circuit that controls the input buffer of Cisco Firepower 9000 Series software-based network interfaces allows a intruder to cause a service failure.

The vulnerability of the programmable logic integrated circuit that controls the input buffer of Cisco Firepower 9000 Series software lies in the handling of various types of input packets. Exploiting this vulnerability can allow an attacker to trigger a Denial-of-Service attack by sending a...

Cisco Firepower 9000 Series Resource Management Error Vulnerability

Cisco Firepower 9000 Series is a 9000 series firewall appliance from Cisco USA. The Cisco Firepower 9000 Series has a resource management error vulnerability that originates from a logic error in the field programmable gate array. An attacker could cause a denial of service by sending specially...

CVE-2019-1700

A vulnerability in field-programmable gate array FPGA ingress buffer management for the Cisco Firepower 9000 Series with the Cisco Firepower 2-port 100G double-width network module PID: FPR9K-DNM-2X100G could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition...

The vulnerability of Siemens Sinumerik programmable logic controllers lies in errors during exception handling, which allow intruders to read arbitrary data or execute arbitrary code in the kernel mode.

The vulnerability of Siemens Sinumerik programmable logic controllers is related to an error in exception handling. Exploiting this vulnerability could allow attackers to read arbitrary data or execute arbitrary code in the kernel mode...

The vulnerability of Siemens Sinumerik programmable logic controllers, related to errors in control of resolution settings, allows attackers to escalate their privileges.

The vulnerability of Siemens Sinumerik programmable logic controllers is related to errors in permission management. Exploiting this vulnerability can allow an attacker to elevate privileges to a user account with enhanced rights by sending a specially crafted authentication request to the...

The vulnerability of Siemens Sinumerik programmable logic controllers lies in buffer overflows in their applications, which allow attackers to execute arbitrary code with elevated privileges.

The vulnerability of Siemens Sinumerik programmable logic controllers is related to buffer overflow attacks. Exploiting this vulnerability can allow attackers to execute arbitrary code with elevated privileges...

The vulnerability of Siemens Sinumeric programmable logic controllers lies in the insufficient protection of the configuration file, allowing a hacker to execute arbitrary code with elevated privileges.

The vulnerability of Siemens Sinumeric programmable logic controllers is related to insufficient protection of the configuration file. Exploiting this vulnerability allows a perpetrator to execute arbitrary code with elevated privileges after a reboot or manually initiating an action...

The vulnerability of Siemens Sinumerik programmable logic controllers lies in the integer overflow that occurs in the VNC server. This allows a perpetrator to execute arbitrary code with privileged privileges.

The vulnerability of Siemens Sinumerik programmable logic controllers is related to a numerical overflow in the VNC server. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with privileged privileges by sending specially crafted packets to port 5900/TCP...

The vulnerability of microprogrammed software in Schneider Electric Modicon programmable logic controllers, related to deficiencies in character elimination, allows a intruder to initiate the password change procedure for the authenticated user.

The vulnerability of the microprogrammed logic controllers from Schneider Electric Modicon relates to deficiencies in the elimination of special symbols. Exploiting this vulnerability can allow an intruder to initiate the password change process for the authenticated user...

The vulnerability of the microprogrammed software of Schneider Electric Modicon programmable logic controllers, related to the lack of necessary checks during password deletion, allows a intruder to gain access to the password deletion function of the web server.

The vulnerability of the microprogrammed logic controllers from Schneider Electric Modicon lies in the lack of necessary checks during password deletion. Exploiting this vulnerability could allow unauthorized individuals to gain access to the password deletion function of the web server...

The vulnerability of the TUNER web service on the TeNIX programmable logic controllers M1500 and M3000 allows a hacker to execute arbitrary code.

The vulnerability of the TUNER web service on the TeNIX programmable logic controllers M1500 and M3000 is related to the absence of name filtering when generating a 404 HTTP error page. As a result, the name of the non-existent webpage is passed unchanged to the generated error page. Exploiting...

The vulnerability of the Taserver web service on the TeNIX operating system for programmable logic controllers MFC1500 and MFC3000 allows a perpetrator to execute arbitrary code.

The vulnerability of the TAserver web service for the TeNIX programmable logic controllers MFC1500 and MFC3000 lies in the lack of name filtering when generating a 404 HTTP error page. As a result, the name of the non-existent web page is passed unchanged to the generated error page. Exploiting...