20 matches found
Siemens SIPROTEC 5 安全漏洞
Siemens SIPROTEC 5 is a series of multifunctional relays developed by the German company Siemens. There are security vulnerabilities in Siemens SIPROTEC 5, which stem from the lack of using sufficiently random values to create session identifiers. This could allow unauthorized remote attackers to...
EUVD-2017-16876
Malware in sbrugna...
ZIV IDF和ZIV ZLF 资源管理错误漏洞
The ZIV IDF and ZIV ZLF are both transformer differential protection relays from ZIV Spain. A resource management error vulnerability exists in ZIV IDF version v0.10.0-0C03-03 and ZLF version v0.10.0-0C03-04, which stems from mishandling of a TLS request and could result in a denial of service...
Schweitzer Engineering Laboratories 多款产品安全漏洞
Schweitzer Engineering Laboratories SEL-700BT and others are products of Schweitzer Engineering Laboratories, U.S.A. Schweitzer Engineering Laboratories SEL-700BT is Schweitzer Engineering Laboratories SEL-700BT is a motor bus transfer relay.Schweitzer Engineering Laboratories SEL-700G is a...
Unspecified vulnerability in Secheron SEPCOS Control and Protection Relay
The Secheron SEPCOS Control and Protection Relay is a relay from Secheron. Control and protect your DC panels and contact lines from short circuits and other electrical faults, and benefit from enhanced communication capabilities.A security vulnerability exists in the Secheron SEPCOS Control and...
Secheron SEPCOS Control and Protection Relay Elevation of Privilege Vulnerability
Secheron SEPCOS Control and Protection Relay is a relay from Secheron. Control and protect your DC panels and contact lines from short circuits and other electrical faults, and benefit from enhanced communication capabilities.An elevation of privilege vulnerability exists in the Secheron SEPCOS...
Secheron SEPCOS Control and Protection Relay Access Control Error Vulnerability
The Secheron SEPCOS Control and Protection Relay is a relay from Secheron. Control and protect your DC panels and contact lines from short circuits and other electrical faults, and benefit from enhanced communication capabilities.The Secheron SEPCOS Control and Protection Relay is vulnerable to a...
Secheron SEPCOS Control and Protection Relay Code Issue Vulnerability
Secheron SEPCOS Control and Protection Relay is a relay from Secheron. Control and protect your DC panels and contact lines from short circuits and other electrical faults, and benefit from enhanced communication capabilities.A code issue vulnerability exists in the Secheron SEPCOS Control and...
Secheron SEPCOS Control and Protection Relay Weak Password Vulnerability
Secheron SEPCOS Control and Protection Relay is a relay from Secheron. Control and protect your DC panels and contact lines from short circuits and other electrical faults, and benefit from enhanced communication capabilities.The Secheron SEPCOS Control and Protection Relay has a weak password...
CVE-2022-2102 Secheron SEPCOS Control and Protection Relay
Controls limiting uploads to certain file extensions may be bypassed. This could allow an attacker to intercept the initial file upload page response and modify the associated code. This modified code can be forwarded and used by a script loaded later in the sequence, allowing for arbitrary file...
CVE-2022-1667 Secheron SEPCOS Control and Protection Relay
Client-side JavaScript controls may be bypassed by directly running a JS function to reboot the PLC e.g., from the browser console or by loading the corresponding, browser accessible PHP script...
Secheron SEPCOS Control and Protection Relay 安全漏洞
Secheron SEPCOS Control and Protection Relay is a relay from Secheron. Control and protect your DC panels and contact lines from short circuits and other electrical faults, and benefit from enhanced communication capabilities.The Secheron SEPCOS Control and Protection Relay is vulnerable to an...
Schneider Electric Easergy P3 缓冲区错误漏洞
The Schneider Electric Easergy P3 is an easy-to-use protective relay from Schneider Electric France. A buffer error vulnerability exists in the Schneider Electric Easergy P3. The vulnerability stems from the presence of a buffer copying vulnerability that does not check the input size, which coul...
CVE-2021-3553
A Server-Side Request Forgery SSRF vulnerability in the EPPUpdateService of Bitdefender Endpoint Security Tools allows an attacker to use the Endpoint Protection relay as a proxy for any remote host. This issue affects: Bitdefender Endpoint Security Tools versions prior to 6.6.27.390; versions...
Server side request forgery (ssrf)
A Server-Side Request Forgery SSRF vulnerability in the EPPUpdateService of Bitdefender Endpoint Security Tools allows an attacker to use the Endpoint Protection relay as a proxy for any remote host. This issue affects: Bitdefender Endpoint Security Tools versions prior to 6.6.27.390; versions...
CVE-2017-7905
The CVE covers a weakness in cryptographic handling of passwords in GE Multilin protection relays (SR series, UR/URPlus). A non-random initialization vector was used for ciphertext passwords, making them vulnerable to dictionary attacks. Password ciphertext could be obtained from the front LCD or...
GE Multilin UR / URPlus / B95Plus Protection Relay Cryptographic Algorithm Weakness Information Disclosure (UR-2017-0001)
Binary data scadagemultilinprotectionrelayUR-2017-0001.nbin...
Memory corruption
All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. This vulnerability causes the software to halt or not start when trying to open the corrupted file. This vulnerability occurs...
Weak Password Vulnerability in Multiple GE Products
GE 750 Feeder Protection Relay and others are relay products of General Electric GE. A security vulnerability exists in several GE products due to the program using weak passwords. An attacker could exploit the vulnerability to gain access to the system...
Siemens SIPROTEC 4 and SIPROTEC Information Disclosure Vulnerability
Siemens SIPROTEC 4 is a family of multifunctional relays; SIPROTEC Compact is a microcomputer protection device in which EN100 is a multi-format encoder module. An information disclosure vulnerability exists in the integrated web server of SIPROTEC 4 and SIPROTEC Compact. A remote attacker with...