Lucene search
K
IcsMost viewed

4251 matches found

ICS
ICS
added 2021/04/15 12:0 p.m.83 views

Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations

Summary Updated April 15, 2021: The U.S. Government attributes this activity to the Russian Foreign Intelligence Service SVR. Additional information may be found in astatement from the White House. For more information on SolarWinds-related activity, go to...

9.5AI score
Exploits0References158
ICS
ICS
added 2021/03/09 12:0 a.m.83 views

Siemens LOGO! 8 BM

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

5.5CVSS5.8AI score0.00266EPSS
Exploits0References10
ICS
ICS
added 2021/01/19 12:0 a.m.83 views

Reolink P2P Cameras

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Reolink Equipment: P2P protocol Vulnerabilities: Use of Hard-coded Cryptographic Key, Cleartext Transmission of Sensitive Information 2. RISK EVALUATION Successful exploitation of these...

7.8CVSS8.1AI score0.00986EPSS
Exploits0References5
ICS
ICS
added 2020/12/08 12:0 a.m.83 views

Schneider Electric Modicon M221 Programmable Logic Controller

1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION: Exploitable from an adjacent network Vendor: Schneider Electric Equipment: Modicon M221 Programmable Logic Controller Vulnerabilities: Inadequate Encryption Strength, Small Space of Random Values, Missing Encryption of Sensitive Data, Exposure of...

9.8CVSS6.5AI score0.00719EPSS
Exploits0References5
ICS
ICS
added 2020/11/19 12:0 a.m.83 views

Mitsubishi Electric MELSEC iQ-R Series (Update C)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Mitsubishi Electric Equipment: MELSEC iQ-R series Vulnerability: Uncontrolled Resource Consumption 2. UPDATE INFORMATION This updated advisory is a follow-up to the advisory update titled ICSA-20-324-05...

7.8CVSS7.6AI score0.04731EPSS
Exploits0References4
ICS
ICS
added 2019/10/31 12:0 a.m.83 views

Honeywell equIP Series IP Cameras

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Honeywell Equipment: equIP series IP cameras Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could result in denial-of-service conditions...

7.5CVSS7.7AI score0.02066EPSS
Exploits0References4
ICS
ICS
added 2019/07/23 12:0 a.m.83 views

NREL EnergyPlus

1. EXECUTIVE SUMMARY CVSS v3 6.1 ATTENTION: Low skill level to exploit Vendor: National Renewable Energy Laboratory NREL Equipment: EnergyPlus Vulnerability: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary...

5.5CVSS6.1AI score0.00337EPSS
Exploits0References5
ICS
ICS
added 2019/01/29 12:0 a.m.83 views

Stryker Medical Beds

1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION: Public exploits are available Vendor: Stryker Equipment: Secure II MedSurg Bed, S3 MedSurg Bed, and InTouch ICU Bed Vulnerability: Reusing a Nonce 2. RISK EVALUATION Successful exploitation of this vulnerability could allow data traffic manipulation,...

8.1CVSS8AI score0.04575EPSS
Exploits1References5
ICS
ICS
added 2018/03/06 12:0 a.m.83 views

Hirschmann Automation and Control GmbH Classic Platform Switches

CVSS v3 7.5 ATTENTION: Exploitable remotely/high skill level is needed to exploit. Vendor: Hirschmann Automation and Control GmbH, a division of Belden Inc. Equipment: Classic Platform Switches Vulnerabilities: Session Fixation, Information Exposure Through Query Strings in GET Request, Cleartext...

9.8CVSS7.6AI score0.02894EPSS
Exploits0References5
ICS
ICS
added 2017/10/26 12:0 a.m.83 views

Korenix JetNet

CVSS v3 9.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Korenix Equipment: JetNet Vulnerabilities: Use of Hard-coded Cryptographic Key, Use of Hard-coded Credentials AFFECTED PRODUCTS The following versions of JetNet, an Ethernet switch, are affected: JetNet5018G version...

10CVSS10AI score0.01923EPSS
Exploits0References3
ICS
ICS
added 2017/05/09 12:0 a.m.83 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update A)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the original advisory...

7.1CVSS0.5AI score0.01149EPSS
Exploits0References54
ICS
ICS
added 2017/05/09 12:0 a.m.83 views

Siemens devices using the PROFINET Discovery and Configuration Protocol (Update B)

CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory...

6.5CVSS0.5AI score0.00469EPSS
Exploits0References35
ICS
ICS
added 2016/05/15 6:0 a.m.83 views

Rockwell Automation MicroLogix 1400 SNMP Credentials Vulnerability

OVERVIEW Cisco Talos, Cisco Systems, Inc.'s security intelligence and research group reported to Rockwell Automation that an undocumented and privileged Simple Network Management Protocol SNMP community string exists in MicroLogix 1400 programmable logic controllers PLC. Rockwell Automation has...

7.5CVSS7.5AI score0.29398EPSS
Exploits1References10
ICS
ICS
added 2014/11/30 7:0 a.m.83 views

Schneider Electric Floating License Manager Vulnerability

OVERVIEW Schneider Electric had become aware of an “unquoted service path” vulnerability in the Schneider Electric Floating License Manager, produced a patchSchneider Electric Security Notification SEVD 2014-015-01v3,...

6.9CVSS9.4AI score0.00442EPSS
Exploits1References10
ICS
ICS
added 2022/07/28 12:0 a.m.82 views

Rockwell Products Impacted by Chromium Type Confusion

1. EXECUTIVE SUMMARY CVSS v3 4.0 ATTENTION: Low attack complexity/public exploits are available Vendor: Rockwell Automation Equipment: FactoryTalk Software, Enhanced HIM for PowerFlex, Connected Components Workbench Vulnerability: Type Confusion 2. RISK EVALUATION Successful exploitation of this...

8.8CVSS8.7AI score0.24237EPSS
Exploits1References4
ICS
ICS
added 2022/02/08 12:0 a.m.82 views

Siemens SIMATIC Industrial Products (Update A)

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please seeSiemens' ProductCERT Security Advisories CERT Services | Services |...

7.5CVSS8.1AI score0.02181EPSS
Exploits0References12
ICS
ICS
added 2020/03/12 12:0 a.m.82 views

ABB Asset Suite

1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: ABB Equipment: Asset Suite Vulnerability: Authorization Bypass Through User-Controlled Key 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker access to...

7.1CVSS7AI score0.00779EPSS
Exploits0References5
ICS
ICS
added 2020/03/03 12:0 a.m.82 views

Emerson ValveLink

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: Emerson Equipment: ValveLink Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow arbitrary code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The...

7.8CVSS8AI score0.00278EPSS
Exploits0References5
ICS
ICS
added 2020/02/20 12:0 a.m.82 views

ICSA-20-051-01_B&R Automation Studio and Automation Runtime

1. EXECUTIVE SUMMARY CVSS v3 9.4 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: B&R Industrial Automation GmbH Equipment: Automation Studio and Automation Runtime Vulnerability: Improper Authorization 2. RISK EVALUATION Successful exploitation of this vulnerability may allow a...

9.4CVSS9.4AI score0.0165EPSS
Exploits0References2
ICS
ICS
added 2019/11/07 12:0 a.m.82 views

Mitsubishi Electric MELSEC-Q Series and MELSEC-L Series CPU Modules

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Mitsubishi Electric Equipment: MELSEC-Q Series and MELSEC-L Series CPU Modules Vulnerability: Uncontrolled Resource Consumption 2. RISK EVALUATION Successful exploitation of this vulnerability may...

5.9CVSS6AI score0.01521EPSS
Exploits0References5
ICS
ICS
added 2019/08/27 12:0 a.m.82 views

Datalogic AV7000 Linear Barcode Scanner

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Datalogic Equipment: AV7000 Linear Barcode Scanner Vulnerability: Authentication Bypass Using an Alternate Path or Channel 2. RISK EVALUATION Successful exploitation of this vulnerability could...

8.8CVSS9.4AI score0.02365EPSS
Exploits0References5
ICS
ICS
added 2019/01/31 12:0 a.m.82 views

IDenticard PremiSys (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit/vulnerability details have been publicly disclosed Vendor: IDenticard Equipment: PremiSys Vulnerabilities: Use of Hard-coded Credentials, Use of Hard-coded Password, Inadequate Encryption Strength 2...

9CVSS8.4AI score0.0289EPSS
Exploits0References6
ICS
ICS
added 2018/12/18 12:0 a.m.82 views

3S-Smart Software Solutions GmbH CODESYS Control V3 Products

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : 3S-Smart Software Solutions GmbH Equipment : CODESYS Control V3 products Vulnerability : Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow...

10CVSS9.9AI score0.01267EPSS
Exploits0References5
ICS
ICS
added 2018/04/17 6:0 a.m.82 views

Schneider Electric Triconex Tricon

1. EXECUTIVE SUMMARY CVSS v3 9.0 ATTENTION : Exploitable remotely/HatMan malware specifically targets these vulnerabilities. Vendor : Schneider Electric Equipment : Triconex Tricon, Model 3008 Vulnerabilities : Improper Restriction of Operations within the Bounds of a Memory Buffer 2. UPDATE...

9.3CVSS8.1AI score0.02276EPSS
Exploits0References10
ICS
ICS
added 2018/01/04 12:0 a.m.82 views

Advantech WebAccess

CVSS v3 8.2 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Advantech Equipment: WebAccess Vulnerabilities: Untrusted Pointer Dereference, Stack-based Buffer Overflow, Path Traversal, SQL Injection, Improper Input Validation. AFFECTED PRODUCTS Advantech reports that the...

10CVSS0.8AI score0.50321EPSS
Exploits9References38
ICS
ICS
added 2017/01/17 12:0 a.m.82 views

GE Proficy HMI/SCADA iFIX, Proficy HMI/SCADA CIMPLICITY, and Proficy Historian Vulnerability

OVERVIEW This advisory was originally posted to the NCCIC Portal on December 1, 2016, and is being released to the ICS-CERT web site. GE has reported an insufficiently protected credentials vulnerability in Proficy Human-Machine Interface/Supervisory Control and Data Acquisition HMI/SCADA iFIX,...

6.7CVSS1AI score0.00369EPSS
Exploits0References26
ICS
ICS
added 2016/11/05 6:0 a.m.82 views

GE SNMP/Web Interface Vulnerabilities

OVERVIEW Independent researcher Karn Ganeshen has identified two vulnerabilities in the GE SNMP/Web Interface adapter. GE has produced a new firmware version to mitigate the identified vulnerabilities in later model devices. Earlier model SNMP/Web Interface adapters may need to be upgraded to...

6.5CVSS8.8AI score0.09933EPSS
Exploits4References10
ICS
ICS
added 2016/07/08 6:0 a.m.82 views

Beckhoff Embedded PC Images and TwinCAT Components Vulnerabilities

OVERVIEW Gregor Bonney from FH Aachen University of Applied Sciences has identified vulnerabilities in Beckhoff’s Embedded PC Images and TwinCAT Components. He published them and reported them to Beckhoff afterward. In 2014, Beckhoff produced a new build and security advisories with instructions ...

9.4CVSS10AI score0.04801EPSS
Exploits0References10
ICS
ICS
added 2015/10/30 6:0 a.m.82 views

Magnetrol HART DTM Vulnerability

OVERVIEW Alexander Bolshev of Digital Security has identified an improper input validation vulnerability in the CodeWrights GmbH HART Device Type Manager DTM library extension utilized by some Magnetrol products. CodeWrights GmbH has updated its software library to mitigate this vulnerability...

2.1CVSS6.3AI score0.00374EPSS
Exploits0References10
ICS
ICS
added 2022/07/21 12:0 a.m.81 views

Rockwell Automation ISaGRAF Workbench

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Low attack complexity Vendor: Rockwell Automation Equipment: ISaGRAF Workbench Vulnerabilities: Deserialization of Untrusted Data, Path Traversal 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in directory traversal,...

8.6CVSS8.2AI score0.02625EPSS
Exploits0References5
ICS
ICS
added 2022/06/23 12:0 a.m.81 views

Elcomplus SmartICS

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Elcomplus LLC Equipment: SmartICS Vulnerabilities: Improper Access Control, Relative Path Traversal, Cross-site Scripting 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow...

9CVSS6.3AI score0.00765EPSS
Exploits0References4
ICS
ICS
added 2022/06/21 12:0 a.m.81 views

JTEKT TOYOPUC

1. EXECUTIVE SUMMARY CVSS v3 7.7 ATTENTION: Exploitable remotely Vendor: JTEKT Equipment: TOYOPUC Products Vulnerability: Missing Authentication for Critical Function CISA is aware of a public report, known as “OT:ICEFALL” that details vulnerabilities found in multiple operational technology OT...

9.8CVSS10AI score0.00982EPSS
Exploits0References4
ICS
ICS
added 2022/06/16 12:0 a.m.81 views

AutomationDirect DirectLOGIC with Serial Communication

1. EXECUTIVE SUMMARY CVSS v3 7.7 ATTENTION: Low attack complexity Vendor: AutomationDirect Equipment: DirectLOGIC with Serial Communication Vulnerability: Cleartext Transmission of Sensitive Information 2. UPDATE OR REPOSTED INFORMATION This updated advisory is a follow-up to the original...

9.1CVSS9.1AI score0.00621EPSS
Exploits0References4
ICS
ICS
added 2022/03/31 12:0 a.m.81 views

Hitachi Energy e-mesh EMS

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: e-mesh EMS Vulnerabilities: Improper Restriction of Operations Within the Bounds of a Memory Buffer, Use After Free, Uncontrolled Resource Consumption 2. RISK EVALUATION...

9.3CVSS8AI score0.77385EPSS
Exploits2References5
ICS
ICS
added 2022/03/31 12:0 a.m.81 views

Mitsubishi Electric FA Products

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely Vendor: Mitsubishi Electric Equipment: FA products Vulnerabilities: Use of Password Hash Instead of Password for Authentication, Use of Weak Hash, Cleartext Storage of Sensitive Information, Authentication Bypass by Capture-replay...

9.1CVSS7.9AI score0.0229EPSS
Exploits0References4
ICS
ICS
added 2022/03/08 12:0 a.m.81 views

Siemens Polarion ALM

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: Polarion ALM Vulnerability: Cross-site Scripting 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-22-069-08 Siemens Polarion ALM that...

6.1CVSS6.9AI score0.00733EPSS
Exploits0References11
ICS
ICS
added 2021/11/09 12:0 a.m.81 views

OSIsoft PI Web API

1. EXECUTIVE SUMMARY CVSS v3 6.9 ATTENTION: Exploitable remotely/low attack complexity Vendor: OSIsoft Equipment: PI Web API Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote authenticated attacker access to sensitive...

6.9CVSS5.3AI score0.00668EPSS
Exploits0References5
ICS
ICS
added 2021/09/14 12:0 a.m.81 views

Siemens SIPROTEC 5 relays (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SIPROTEC 5 relays Vulnerabilities: Classic Buffer Overflow 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-21-257-10 Siemens SIPROTEC 5...

9.8CVSS9AI score0.02156EPSS
Exploits0References11
ICS
ICS
added 2021/08/05 12:0 a.m.81 views

FATEK Automation FvDesigner

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: FATEK Automation Equipment: FvDesigner Vulnerabilities: Access of Uninitialized Pointer, Stack-based Buffer Overflow, Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these vulnerabilities may allow an...

7.8CVSS8.3AI score0.0201EPSS
Exploits0References6
ICS
ICS
added 2021/07/15 12:0 a.m.81 views

ICSMA-21-196-01_Ypsomed mylife

1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Ypsomed Equipment: mylife Cloud, mylife Mobile Application Vulnerabilities: Insufficiently Protected Credentials, Not Using an Unpredictable IV with CBC Mode, Use of Hard-coded Credentials 2. RISK...

7.5CVSS6.6AI score0.01105EPSS
Exploits0References2
ICS
ICS
added 2021/05/13 12:0 a.m.81 views

OPC UA Products Built with the .NET Framework 4.5, 4.0, and 3.5

1. EXECUTIVE SUMMARY CVSS v3 7.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: Unified Automation GmbH Equipment:.NET applications Vulnerability: Exposure of Sensitive Information to an Unauthorized Actor 2. RISK EVALUATION Successful exploitation of this vulnerability could allow...

7.5CVSS7.7AI score0.01741EPSS
Exploits0References5
ICS
ICS
added 2021/04/20 12:0 a.m.81 views

ICSA-21-110-02_Rockwell Automation Stratix Switches

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/ Low attack complexity Vendor: Rockwell Automation Equipment: Stratix Switches Vulnerabilities: Insufficiently Protected Credentials, Insufficient Verification of Data Authenticity, Use of Out-of-Range Pointer Offset, Insertion of...

8.5CVSS7.8AI score0.02262EPSS
Exploits0References2
ICS
ICS
added 2021/01/28 12:0 a.m.81 views

Rockwell Automation FactoryTalk Linx and FactoryTalk Services Platform

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: FactoryTalk Linx and FactoryTalk Services Platform Vulnerabilities: Classic Buffer overflow, Improper Check or Handling of Exceptional Conditions 2. RISK EVALUATION...

7.5CVSS7.6AI score0.38828EPSS
Exploits0References5
ICS
ICS
added 2021/01/12 12:0 a.m.81 views

SOOIL Dana Diabecare RS Products

1. EXECUTIVE SUMMARY CVSS v3 7.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: SOOIL Developments Co., Ltd. Equipment: Diabecare RS, AnyDana-i and AnyDana-A Vulnerabilities: Use of Hard Coded Credentials, Insufficiently Protected Credentials, Use of Insufficiently Random...

8.8CVSS7.3AI score0.00581EPSS
Exploits0References5
ICS
ICS
added 2020/10/13 12:0 a.m.81 views

Flexera InstallShield

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low skill level to exploit Vendor: Flexera Equipment: InstallShield Vulnerability: Untrusted Search Path 2. RISK EVALUATION Successful exploitation of this vulnerability could allow execution of a malicious DLL. 3. TECHNICAL DETAILS 3.1 AFFECTED...

7.8CVSS7.8AI score0.00503EPSS
Exploits0References5
ICS
ICS
added 2020/04/14 12:0 a.m.81 views

Siemens SCALANCE and SIMATIC (Update H)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SCALANCE, SIMATIC Vulnerability: Resource Exhaustion 2. UPDATE INFORMATION This updated advisory is a follow-up to the advisory update titled ICSA-20-105-07 Siemens SCALANCE & SIMATIC...

7.5CVSS7.7AI score0.01327EPSS
Exploits0References12
ICS
ICS
added 2020/04/14 12:0 a.m.81 views

Siemens Climatix (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: Climatix Vulnerability: Cross-site Scripting, Basic XSS 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-20-105-04 Siemens Climatix...

6.1CVSS7.2AI score0.00645EPSS
Exploits0References9
ICS
ICS
added 2020/01/14 12:0 a.m.81 views

Siemens SCALANCE X Switches (Update B)

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SCALANCE X Switches Vulnerability: Missing Authentication for Critical Function 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled...

8.6CVSS8.8AI score0.01389EPSS
Exploits0References11
ICS
ICS
added 2018/11/27 12:0 a.m.81 views

Rockwell Automation FactoryTalk Services Platform

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: FactoryTalk Services Platform Vulnerability: Heap-based Buffer Overflow 2. REPOSTED INFORMATION This advisory was originally posted to the HSIN ICS-CERT library on...

7.8CVSS7.8AI score0.03866EPSS
Exploits0References5
ICS
ICS
added 2018/04/24 12:0 a.m.81 views

Vecna VGo Robot (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.8 --------- Begin Update A Part 1 of 6 --------- ATTENTION: Exploitable remotely/low skill level to exploit --------- End Update A Part 1 of 6 --------- Vendor: Vecna Technologies, Inc. Vecna Equipment: VGo Robot --------- Begin Update A Part 2 of 6 ---------...

9.8CVSS8.7AI score0.02151EPSS
Exploits0References4
Total number of security vulnerabilities4251