Lucene search
K

109 matches found

Prion
Prion
added 2022/07/26 10:15 p.m.19 views

Design/Logic Flaw

The Motorola MOSCAD Toolbox software through 2022-05-02 relies on a cleartext password. It utilizes an MDLC driver to communicate with MOSCAD/ACE RTUs for engineering purposes. Access to these communications is protected by a password stored in cleartext in the wmdlcdrv.ini driver configuration...

5CVSS8AI score0.0048EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/07/26 10:15 p.m.20 views

Hardcoded credentials

Emerson OpenBSI through 2022-04-29 uses weak cryptography. It is an engineering environment for the ControlWave and Bristol Babcock line of RTUs. DES with hardcoded cryptographic keys is used for protection of certain system credentials, engineering files, and sensitive utilities...

1.7CVSS5.7AI score0.00475EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2022/07/26 10:14 p.m.66 views

CVE-2022-30276

The CVE-2022-30276 issue affects Motorola MOSCAD IP Gateway and ACE IP Gateway (MDLC lines) through 2022-05-02. The root cause is the IPGW protocol (port 5001/TCP) lacking authentication, enabling an adversary who can reach the port to invoke a range of engineering functions (e.g., RTU configurat...

7.5CVSS7.5AI score0.00684EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/07/26 10:14 p.m.34 views

CVE-2022-30276

The Motorola MOSCAD and ACE line of RTUs through 2022-05-02 omit an authentication requirement. They feature IP Gateway modules which allow for interfacing between Motorola Data Link Communication MDLC networks potentially over a variety of serial, RF and/or Ethernet links and TCP/IP networks...

7.7AI score0.00684EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/07/26 10:11 p.m.23 views

CVE-2022-30269

Motorola ACE1000 RTUs through 2022-05-02 mishandle application integrity. They allow for custom application installation via either STS software, the C toolkit, or the ACE1000 Easy Configurator. In the case of the Easy Configurator, application images as PLX/DAT/APP/CRC files are uploaded via the...

9.2AI score0.00392EPSS
Exploits0References2
CVE
CVE
added 2022/07/26 10:11 p.m.99 views

CVE-2022-30269

Motorola ACE1000 RTUs up to 2022-05-02 are affected by CVE-2022-30269: the ACE1000 allows custom application installation via STS, the C Toolkit, or the Easy Configurator, with images uploaded via Web UI or transferred via SFTP/SSH. The vulnerability stems from missing firmware signing/authentica...

8.8CVSS8.9AI score0.00392EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/07/26 9:21 p.m.98 views

CVE-2022-30275

The CVE-2022-30275 entry concerns Motorola MOSCAD Toolbox software (through 2022-05-02) that stores a password in plaintext in the wmdlcdrv.ini driver configuration file. The same password is used for access control to MOSCAD/STS projects via the Legacy Password feature, and an insecure CRC of th...

7.5CVSS7.5AI score0.0048EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/07/26 9:21 p.m.29 views

CVE-2022-30275

The Motorola MOSCAD Toolbox software through 2022-05-02 relies on a cleartext password. It utilizes an MDLC driver to communicate with MOSCAD/ACE RTUs for engineering purposes. Access to these communications is protected by a password stored in cleartext in the wmdlcdrv.ini driver configuration...

7.8AI score0.0048EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/07/26 9:14 p.m.41 views

CVE-2022-29960

Emerson OpenBSI through 2022-04-29 uses weak cryptography. It is an engineering environment for the ControlWave and Bristol Babcock line of RTUs. DES with hardcoded cryptographic keys is used for protection of certain system credentials, engineering files, and sensitive utilities...

5.8AI score0.00475EPSS
Exploits0References3
CVE
CVE
added 2022/07/26 9:14 p.m.84 views

CVE-2022-29960

CVE-2022-29960 affects Emerson OpenBSI (engineering environment for ControlWave/Bristol Babcock RTUs) through 2022-04-29. The root cause is the use of DES with hardcoded cryptographic keys to protect system credentials, engineering files, and sensitive utilities. Exploitation requires local acces...

5.5CVSS5.5AI score0.00475EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/07/12 12:0 a.m.52 views

Oracle Linux 8 : ol8addon (ELSA-2022-17957)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-17957 advisory. - Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker to cause an indefinite hang by passing a buffer larg...

8.8CVSS7.5AI score0.0187EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.20 views

Siemens SICAM MMU, SICAM T, and SICAM SGU Authentication Bypass By Capture-Replay (CVE-2020-10045)

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. An error in the challenge-response procedure could allow an attacker to replay authentication traffic and gain access to protected areas of the web application. This plugin onl...

8.8CVSS7.8AI score0.01066EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.22 views

Siemens SICAM A8000 RTUs Protection Mechanism Failure (CVE-2020-28396)

A vulnerability has been identified in SICAM A8000 CP-8000 All versions V16, SICAM A8000 CP-8021 All versions V16, SICAM A8000 CP-8022 All versions V16. A web server misconfiguration of the affected device can cause insecure ciphers usage by a users browser. An attacker in a privileged position...

7.3CVSS7.2AI score0.00564EPSS
Exploits0References4
NVD
NVD
added 2022/01/28 8:15 p.m.10 views

CVE-2021-22816

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause a Denial of Service of the RTU when receiving a specially crafted request over Modbus, and the RTU is configured as a Modbus server. Affected Products: SCADAPack 312E, 313E, 314E, 330E, 333E, 334...

7.8CVSS0.00947EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/01/28 7:9 p.m.20 views

CVE-2021-22816

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause a Denial of Service of the RTU when receiving a specially crafted request over Modbus, and the RTU is configured as a Modbus server. Affected Products: SCADAPack 312E, 313E, 314E, 330E, 333E, 334...

7.7AI score0.00947EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2021/03/29 3:28 p.m.43 views

Flaws in Ovarro TBox RTUs Could Open Industrial Systems to Remote Attacks

As many as five vulnerabilities have been uncovered in Ovarro's TBox remote terminal units RTUs that, if left unpatched, could open the door for escalating attacks against critical infrastructures, like remote code execution and denial-of-service. "Successful exploitation of these vulnerabilities...

0.01196EPSS
Exploits0
NVD
NVD
added 2020/08/14 4:15 p.m.15 views

CVE-2020-15781

A vulnerability has been identified in SICAM WEB firmware for SICAM A8000 RTUs All versions V05.30. The login screen does not sufficiently sanitize input, which enables an attacker to generate specially crafted log messages. If an unsuspecting victim views the log messages via the web browser,...

9.6CVSS8.7AI score0.01002EPSS
Exploits0References1
CVE
CVE
added 2020/08/14 3:24 p.m.60 views

CVE-2020-15781

CVE-2020-15781 affects Siemens SICAM A8000 SICAM WEB firmware prior to version 05.30. The login page fails to adequately sanitize input, allowing an attacker to generate specially crafted log messages that, when viewed in a browser, may be interpreted and executed as code (XSS). Impacted product:...

9.6CVSS8.4AI score0.01002EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/08/14 3:24 p.m.19 views

CVE-2020-15781

A vulnerability has been identified in SICAM WEB firmware for SICAM A8000 RTUs All versions V05.30. The login screen does not sufficiently sanitize input, which enables an attacker to generate specially crafted log messages. If an unsuspecting victim views the log messages via the web browser,...

8.7AI score0.01002EPSS
Exploits0References1
Pen Test Partners Blog
Pen Test Partners Blog
added 2019/10/10 2:30 p.m.116 views

Operational Technology Networks or OT

Operational Technology Networks or OT Notes: It’s mixing up OT with maritime, so probably isn’t suitable as is. The first section is really good, very relevant. We can use all of that. Once we get in to NMEA data, then it goes off topic. I suggest: Network equipment such as the Scalance Then a...

7.5CVSS0.4AI score0.20372EPSS
Exploits4
Rows per page
Query Builder