Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Zero Day Initiative
Zero Day Initiativeadded 2023/05/31 12:0 a.m.14 views

(Pwn2Own) Prosys OPC UA Simulation Server OpenSecureChannel Resource Exhaustion Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Prosys OPC UA Simulation Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of OpenSecureChannel messages. By sending a...

7.5CVSS6.6AI score0.00587EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2023/05/17 12:0 a.m.29 views

(Pwn2Own) Prosys OPC UA Simulation Server Resource Exhaustion Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Prosys OPC UA Simulation Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of message chunks. By sending a large number ...

7.5CVSS6.6AI score0.00587EPSS
Exploits0References1
OSV
OSVadded 2023/01/03 10:15 p.m.2 views

CVE-2022-2967

Prosys OPC UA Simulation Server version prior to v5.3.0-64 and UA Modbus Server versions 1.4.18-5 and prior do not sufficiently protect credentials, which could allow an attacker to obtain user credentials and gain access to system data...

7.5CVSS5.8AI score
Exploits0References2
NVD
NVDadded 2023/01/03 10:15 p.m.13 views

CVE-2022-2967

Prosys OPC UA Simulation Server version prior to v5.3.0-64 and UA Modbus Server versions 1.4.18-5 and prior do not sufficiently protect credentials, which could allow an attacker to obtain user credentials and gain access to system data...

7.5CVSS6.9AI score0.00137EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/01/03 12:0 a.m.1 views

PT-2023-12985 · Prosyst · Prosys Opc Ua Simulation Server

Name of the Vulnerable Software and Affected Versions: Prosys OPC UA Simulation Server versions prior to 5.3.0-64 UA Modbus Server versions 1.4.18-5 and prior Description: The issue concerns insufficient protection of credentials, potentially allowing an attacker to obtain user credentials and ga...

7.5CVSS7.5AI score0.00137EPSS
Exploits0References3
ICS
ICSadded 2022/12/15 12:0 a.m.75 views

Prosys OPC UA Simulation Server (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.5 --------- Begin Update A part 1 of 3 --------- ATTENTION: Low attack complexity Vendor: Prosys OPC Equipment: UA Simulation Server, UA Modbus Server --------- End Update A part 1 of 3 --------- Vulnerability: Insufficiently Protected Credentials 2. UPDATE...

7.5CVSS7.5AI score0.00137EPSS
Exploits0References4
CNNVD
CNNVDadded 2022/12/15 12:0 a.m.2 views

Prosys OPC UA Simulation Server 安全漏洞

Prosys OPC UA Simulation Server is a simulation server from Prosys OPC, Finland. A security vulnerability exists in Prosys OPC UA Simulation Server version v5.03-64 that stems from insufficiently protected credentials. An attacker could exploit the vulnerability to obtain user credentials and...

7.5CVSS7.4AI score0.00137EPSS
Exploits0References4
Rows per page
Query Builder