7 matches found
EUVD-2021-21256
Malware in sbrugna...
EUVD-2021-21255
Malware in sbrugna...
CVE-2024-50954
The XINJE XL5E-16T and XD5E-24R-E programmable logic controllers V3.5.3b-V3.7.2a have a vulnerability in handling Modbus messages. When a TCP connection is established with the above series of controllers within a local area network LAN, sending a specific Modbus message to the controller can cau...
CVE-2024-50954
The XINJE XL5E-16T and XD5E-24R-E programmable logic controllers V3.5.3b-V3.7.2a have a vulnerability in handling Modbus messages. When a TCP connection is established with the above series of controllers within a local area network LAN, sending a specific Modbus message to the controller can cau...
CVE-2024-50954
The CVE-2024-50954 issue affects XINJE XL5E-16T and XD5E-24R-E PLCs running V3.5.3b–V3.7.2a. The root cause is a vulnerability in Modbus message handling over a TCP LAN connection, which can crash the controller and disrupt operation, evidenced by the ERR indicator lighting and RUN indicator turn...
CVE-2021-34605
A zip slip vulnerability in XINJE XD/E Series PLC Program Tool up to version v3.5.1 can provide an attacker with arbitrary file write privilege when opening a specially-crafted project file. This vulnerability can be triggered by manually opening an infected project file, or by initiating an uplo...
CVE-2021-34605 Xinje XD/E Series PLC Program Tool Zip Slip
A zip slip vulnerability in XINJE XD/E Series PLC Program Tool up to version v3.5.1 can provide an attacker with arbitrary file write privilege when opening a specially-crafted project file. This vulnerability can be triggered by manually opening an infected project file, or by initiating an uplo...