Lucene search
K

817 matches found

Cvelist
Cvelist
added 2023/04/20 8:40 p.m.31 views

CVE-2023-2131 CVE-2023-2131

Versions of INEA ME RTU firmware prior to 3.36 are vulnerable to OS command injection, which could allow an attacker to remotely execute arbitrary code...

10CVSS9.9AI score0.01726EPSS
Exploits0References1
CVE
CVE
added 2023/04/20 8:40 p.m.144 views

CVE-2023-2131

CVE-2023-2131 affects INEA ME RTU firmware prior to 3.36. The vulnerability is an OS command injection in the ME RTU remote terminal unit, enabling remote code execution if exploited. Remediation per sources is to update to firmware version 3.36 or later; CISA/ICS advisories describe remote explo...

10CVSS9.8AI score0.01726EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/20 8:40 p.m.10 views

CVE-2023-2131 CVE-2023-2131

Versions of INEA ME RTU firmware prior to 3.36 are vulnerable to OS command injection, which could allow an attacker to remotely execute arbitrary code...

10CVSS7.6AI score0.01726EPSS
Exploits0References1
ICS
ICS
added 2023/04/20 3:30 p.m.30 views

INEA ME RTU

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: INEA Equipment: ME RTU Vulnerability: OS Command Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED...

10CVSS10AI score0.01726EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/04/20 12:0 a.m.5 views

PT-2023-2483 · Inea · Inea Me Rtu

Name of the Vulnerable Software and Affected Versions: INEA ME RTU versions prior to 3.36 Description: The issue exists due to the lack of measures to neutralize special elements used in the operating system command. This could allow a remote attacker to execute arbitrary code. The estimated numb...

10CVSS9.6AI score0.01726EPSS
Exploits0References9
Prion
Prion
added 2022/08/31 4:15 p.m.17 views

Hardcoded credentials

Honeywell ControlEdge through R151.1 uses Hard-coded Credentials. According to FSCT-2022-0056, there is a Honeywell ControlEdge hardcoded credentials issue. The affected components are characterized as: SSH. The potential impact is: Remote code execution, manipulate configuration, denial of...

7.5CVSS9.6AI score0.01395EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2022/08/17 3:15 p.m.38 views

CVE-2022-30262

The Emerson ControlWave 'Next Generation' RTUs through 2022-05-02 mishandle firmware integrity. They utilize the BSAP-IP protocol to transmit firmware updates. Firmware updates are supplied as CAB archive files containing a binary firmware image. In all cases, firmware images were found to have n...

7.8CVSS0.00171EPSS
Exploits0References2
NVD
NVD
added 2022/08/16 1:15 p.m.46 views

CVE-2022-30264

The Emerson ROC and FloBoss RTU product lines through 2022-05-02 perform insecure filesystem operations. They utilize the ROC protocol 4000/TCP, 5000/TCP for communications between a master terminal and RTUs. Opcode 203 of this protocol allows a master terminal to transfer files to and from the...

9.8CVSS0.0042EPSS
Exploits0References2
Prion
Prion
added 2022/08/16 1:15 p.m.17 views

Arbitrary file deletion

The Emerson ROC and FloBoss RTU product lines through 2022-05-02 perform insecure filesystem operations. They utilize the ROC protocol 4000/TCP, 5000/TCP for communications between a master terminal and RTUs. Opcode 203 of this protocol allows a master terminal to transfer files to and from the...

7.5CVSS9.4AI score0.0042EPSS
Exploits0References2Affected Software5
Cvelist
Cvelist
added 2022/08/16 12:42 p.m.33 views

CVE-2022-30264

The Emerson ROC and FloBoss RTU product lines through 2022-05-02 perform insecure filesystem operations. They utilize the ROC protocol 4000/TCP, 5000/TCP for communications between a master terminal and RTUs. Opcode 203 of this protocol allows a master terminal to transfer files to and from the...

9.6AI score0.0042EPSS
Exploits0References2
CVE
CVE
added 2022/08/16 12:42 p.m.80 views

CVE-2022-30264

The CVE-2022-30264 issue affects Emerson ROC and FloBoss RTU lines (through 2022-05-02) where the ROC protocol on 4000/5000 TCP uses Opcode 203 to transfer files to/from flash, enabling arbitrary file read/write/delete. This constitutes insecure filesystem operations with high impact (confidentia...

9.8CVSS9.3AI score0.0042EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/07/28 12:0 a.m.42 views

Schneider Electric Modicon Path Traversal (CVE-2022-34762)

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could cause unauthorized firmware image loading when unsigned images are added to the firmware image path. Affected Products: X80 advanced RTU Communication Module BMENOR2200H V2.01 an...

7.5CVSS7.1AI score0.00666EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/07/27 12:0 a.m.31 views

Schneider Electric Modicon Insufficient Verification of Data Authenticity (CVE-2022-34763)

A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists that could cause loading of unauthorized firmware images due to improper verification of the firmware signature. Affected Products: X80 advanced RTU Communication Module BMENOR2200H V2.01 and later, OPC UA Modicon...

7.5CVSS7.1AI score0.00273EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/07/27 12:0 a.m.45 views

Schneider Electric Modicon Infinite Loop (CVE-2022-34760)

A CWE-835: Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability exists that could cause a denial of service of the webserver due to improper handling of the cookies. Affected Products: X80 advanced RTU Communication Module BMENOR2200H V1.0, OPC UA Modicon Communication Module...

7.5CVSS7.1AI score0.00728EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/07/27 12:0 a.m.40 views

Schneider Electric Modicon NULL Pointer Dereference (CVE-2022-34761)

A CWE-476: NULL Pointer Dereference vulnerability exists that could cause a denial of service of the webserver when parsing JSON content type. Affected Products: X80 advanced RTU Communication Module BMENOR2200H V2.01 and later, OPC UA Modicon Communication Module BMENUA0100 V1.10 and prior - A...

7.5CVSS7.1AI score0.00829EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/07/27 12:0 a.m.40 views

Schneider Electric Modicon Out-of-bounds Write (CVE-2022-34759)

A CWE-787: Out-of-bounds Write vulnerability exists that could cause a denial of service of the webserver due to improper parsing of the HTTP Headers. Affected Products: X80 advanced RTU Communication Module BMENOR2200H V1.0, OPC UA Modicon Communication Module BMENUA0100 V1.10 and prior - A...

7.5CVSS7.2AI score0.00728EPSS
Exploits0References2
NVD
NVD
added 2022/07/26 11:15 p.m.32 views

CVE-2022-30271

The Motorola ACE1000 RTU through 2022-05-02 ships with a hardcoded SSH private key and initialization scripts such as /etc/init.d/sshdservice only generate a new key if no private-key file exists. Thus, this hardcoded key is likely to be used by default...

9.8CVSS0.00874EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/26 11:15 p.m.6 views

CVE-2022-30272

The Motorola ACE1000 RTU through 2022-05-02 mishandles firmware integrity. It utilizes either the STS software suite or ACE1000 Easy Configurator for performing firmware updates. In case of the Easy Configurator, firmware updates are performed through access to the Web UI where file system, kerne...

7.2CVSS7AI score0.00389EPSS
Exploits0References3
NVD
NVD
added 2022/07/26 11:15 p.m.20 views

CVE-2022-30274

The Motorola ACE1000 RTU through 2022-05-02 uses ECB encryption unsafely. It can communicate with an XRT LAN-to-radio gateway by means of an embedded client. Credentials for accessing this gateway are stored after being encrypted with the Tiny Encryption Algorithm TEA in ECB mode using a hardcode...

9.8CVSS0.00544EPSS
Exploits0References2
Prion
Prion
added 2022/07/26 11:15 p.m.23 views

Design/Logic Flaw

The Motorola ACE1000 RTU through 2022-05-02 mishandles firmware integrity. It utilizes either the STS software suite or ACE1000 Easy Configurator for performing firmware updates. In case of the Easy Configurator, firmware updates are performed through access to the Web UI where file system, kerne...

5.8CVSS7.7AI score0.00389EPSS
Exploits0References2
Rows per page
Query Builder