Lucene search
K

109 matches found

CVE
CVE
added 2017/11/15 8:0 a.m.59 views

CVE-2017-12737

The CVE-2017-12737 entry applies to Siemens SICAM RTUs SM-2556 COM Modules (firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, DNPi00). The vulnerability arises from a missing authentication for a critical function: the integrated web server (port 80) could allow unauthenticated remote acces...

5.3CVSS5.2AI score0.01743EPSS
Exploits2References2Affected Software1
0day.today
0day.today
added 2017/11/15 12:0 a.m.95 views

Siemens SICAM RTUs SM-2556 COM Modules XSS / Bypass / Code Execution Vulnerabilities

Siemens SICAM RTUs SM-2556 COM modules firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00 suffer from authentication bypass, code execution, and cross site scripting vulnerabilities. ======================================================================= title: Authentication...

10CVSS6.7AI score0.05646EPSS
Exploits2
Packet Storm
Packet Storm
added 2017/11/14 12:0 a.m.92 views

Siemens SICAM RTUs SM-2556 COM Modules XSS / Bypass / Code Execution

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Authentication bypass, cross-site scripting & code execution product: Siemens SICAM RTUs SM-2556 COM Modules firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00 and...

6.5AI score0.05646EPSS
Exploits2
Prion
Prion
added 2016/03/12 2:59 a.m.11 views

Information disclosure

Schneider Electric Telvent Sage 2300 RTUs with firmware before C3413-500-S01, and LANDAC II-2, Sage 1410, Sage 1430, Sage 1450, Sage 2400, and Sage 3030M RTUs with firmware before C3414-500-S02J2, allow remote attackers to obtain sensitive information from device memory by reading a padding field...

5CVSS6.8AI score0.01176EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2016/03/12 2:0 a.m.21 views

CVE-2015-6485

Schneider Electric Telvent Sage 2300 RTUs with firmware before C3413-500-S01, and LANDAC II-2, Sage 1410, Sage 1430, Sage 1450, Sage 2400, and Sage 3030M RTUs with firmware before C3414-500-S02J2, allow remote attackers to obtain sensitive information from device memory by reading a padding field...

5.1AI score0.01176EPSS
Exploits0References1
CVE
CVE
added 2016/03/12 2:0 a.m.50 views

CVE-2015-6485

CVE-2015-6485 corresponds to an ICS vulnerability in Schneider Electric Telvent SAGE RTUs caused by an IEEE Ethernet frame padding issue (CWE-226). The weakness allows an attacker on the network to elicit information leakage from device memory by reading a specially padded Ethernet frame. Affecte...

5.3CVSS5.1AI score0.01176EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2015/06/18 12:0 a.m.108 views

Wind River VXWorks TCP Predictability Vulnerability in ICS Devices (Update B)

OVERVIEW This updated advisory is a follow-up to the updated advisory titled ICSA-15-169-01A Wind River VxWorks TCP Predictability Vulnerability in ICS Devices that was published November 5, 2015, on the NCCIC/ICS-CERT web site. Raheem Beyah, David Formby, and San Shin Jung of Georgia Tech, via a...

5.8CVSS0.03743EPSS
Exploits0References19
securityvulns
securityvulns
added 2011/03/23 12:0 a.m.98 views

SCADA Trojans: Attacking the Grid + Advantech vulnerabilities

Hi! You can download the slides of the research I was presenting at RootedCon'11 in Madrid "SCADA Trojans: Attacking the grid". A journey into attacking the power grid. I presented: - 0days in Advantech/BroadWin WebAccess SCADA product - Weak Design/Vulnerabilities in CSE-Semaphore TBOX RTUs -...

7.2AI score
Exploits0
CERT
CERT
added 2008/09/25 12:0 a.m.44 views

ABB PCU400 vulnerable to buffer overflow

Overview ABB PCU400 contains a vulnerability which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The ABB PCU400 application serves as a communication gateway between RTUs that use the IEC-870-5-104 protocol and the SCADA server. The...

10CVSS7.6AI score0.0782EPSS
Exploits1References2
Rows per page
Query Builder