Lucene search
K
IcsMost viewed

4251 matches found

ICS
ICS
added 2018/04/24 12:0 a.m.81 views

Vecna VGo Robot (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.8 --------- Begin Update A Part 1 of 6 --------- ATTENTION: Exploitable remotely/low skill level to exploit --------- End Update A Part 1 of 6 --------- Vendor: Vecna Technologies, Inc. Vecna Equipment: VGo Robot --------- Begin Update A Part 2 of 6 ---------...

9.8CVSS8.7AI score0.02151EPSS
Exploits0References4
ICS
ICS
added 2017/09/21 12:0 a.m.81 views

iniNet Solutions GmbH SCADA Webserver

CVSS v3 10.0 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: iniNet Solutions GmbH Equipment: SCADA Webserver Vulnerability: Improper Authentication AFFECTED PRODUCTS The following versions of iniNet Solutions GmbH’s SCADA Webserver, a third-party web-based server software, ar...

10CVSS9.7AI score0.02466EPSS
Exploits0References3
ICS
ICS
added 2017/04/25 12:0 a.m.81 views

Sierra Wireless AirLink Raven XE and XT

CVSS v3 10.0 ATTENTION: Remotely exploitable/low skill level to exploit. Public exploits are available. Vendor: Sierra Wireless Equipment: AirLink Raven XE and XT Vulnerabilities: Improper Authorization, Cross-Site Request Forgery, Insufficiently Protected Credentials REPOSTED INFORMATION This...

10CVSS9.1AI score0.04264EPSS
Exploits0References3
ICS
ICS
added 2016/12/03 7:0 a.m.81 views

Rockwell Automation Allen-Bradley CompactLogix Reflective Cross-Site Scripting Vulnerability (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.1 --------- Begin Update A Part 1 of 5 -------- ATTENTION: Exploitable remotely/low skill level to exploit/public exploits are available --------- End Update A Part 1 of 5 --------- Vendor: Rockwell Automation Equipment: Allen-Bradley CompactLogix Vulnerability:...

6.1CVSS6.7AI score0.07531EPSS
Exploits5References10
ICS
ICS
added 2015/10/15 6:0 a.m.81 views

CodeWrights GmbH HART Device DTM Vulnerability (Update C)

OVERVIEW This updated advisory is a follow-up to the updated advisory titled ICSA-15-012-01B CodeWrights GmbH HART DTM Vulnerability that was published January 27, 2015, on the NCCIC/ICS-CERT web site. Alexander Bolshev of Digital Security has identified an improper input validation vulnerability...

2.1CVSS7AI score0.00374EPSS
Exploits0References10
ICS
ICS
added 2015/06/25 6:0 a.m.82 views

IBC Solar ServeMaster Source Code Vulnerability

OVERVIEW Independent researcher Maxim Rupp has identified three vulnerabilities in IBC Solar products. The vulnerabilities are disclosure of applications source code, plain text passwords, and cross site scripting. IBC Solar has not produced a patch to mitigate these vulnerabilities. These...

5CVSS6.5AI score0.01359EPSS
Exploits0References10
ICS
ICS
added 2015/05/30 6:0 a.m.81 views

Innominate mGuard VPN Vulnerability

OVERVIEW Innominate mGuard has self identified a denial-of-service DoS vulnerability in the Innominate mGuard device. Inominate has produced a patch to mitigate this vulnerability. This vulnerability could be exploited remotely. AFFECTED PRODUCTS The following mGuard versions are affected:...

4CVSS6.6AI score0.01616EPSS
Exploits0References10
ICS
ICS
added 2023/05/18 7:1 p.m.80 views

Rockwell ArmorStart

1. EXECUTIVE SUMMARY CVSS v3 7.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Equipment: ArmorStart Vulnerabilities: Improper Input Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow a malicious user to view and modify sensitive...

7.1CVSS6.2AI score0.0062EPSS
Exploits0References6
ICS
ICS
added 2022/05/24 12:0 a.m.80 views

Matrikon OPC Server

1. EXECUTIVE SUMMARY CVSS v3 5.8 ATTENTION: Exploitable remotely Vendor: Matrikon, a subsidiary of Honeywell Equipment: Matrikon OPC Server Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to achieve remote command...

9CVSS7.7AI score0.00619EPSS
Exploits0References5
ICS
ICS
added 2022/05/10 12:0 a.m.80 views

Siemens SICAM P850 and SICAM P855

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: Siemens SICAM P850 and SICAM P855 Vulnerabilities: Improper Neutralization of Parameter/Argument Delimiters, Cleartext Transmission of Sensitive Information, Cross-site Scripting,...

9.8CVSS8.3AI score0.01766EPSS
Exploits0References11
ICS
ICS
added 2022/03/08 12:0 a.m.80 views

Siemens Climatix POL909

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: Climatix POL909 AWB and AWM modules Vulnerabilities: Cross-site Scripting, Improper Access Control 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an...

6.5CVSS7AI score0.00735EPSS
Exploits0References11
ICS
ICS
added 2022/02/08 12:0 a.m.80 views

Siemens Solid Edge, JT2Go, and Teamcenter Visualization

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: Solid Edge, JT2Go, and Teamcenter Visualization Vulnerabilities: Improper Restriction of Operations within the Bounds of a Memory Buffer, Out-of-bounds Write, Heap-based Buffer Overflow, Out-of-bounds Rea...

7.8CVSS8.4AI score0.01798EPSS
Exploits0References11
ICS
ICS
added 2021/07/13 12:0 a.m.80 views

ICSA-21-194-15_Siemens JT2Go and Teamcenter Visualization

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: JT2Go and Teamcenter Visualization Vulnerabilities: Double Free, Infinite Loop, Out-of-bounds Write, Use After Free, Heap-based Buffer Overflow, Buffer Over-read, Out-of-bounds Read, Improper Restriction...

7.8CVSS8.4AI score0.02132EPSS
Exploits0References2
ICS
ICS
added 2021/04/13 12:0 a.m.80 views

Siemens SIMOTICS CONNECT 400 (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SIMOTICS CONNECT 400 Vulnerabilities: Improper Null Termination, Out-of-bounds Read, Access of Memory Location After End of Buffer, Use of Insufficiently Random Values 2. UPDATE...

7.4CVSS7.1AI score0.03659EPSS
Exploits0References11
ICS
ICS
added 2021/02/25 12:0 a.m.80 views

FATEK Automation FvDesigner

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: FATEK Automation Equipment: FvDesigner Vulnerabilities: Use After Free, Access of Uninitialized Pointer, Stack-based Buffer Overflow, Out-of-Bounds Write, Out-of-Bounds Read 2. RISK EVALUATION Successful exploitation...

7.8CVSS8.5AI score0.01113EPSS
Exploits0References5
ICS
ICS
added 2020/03/10 12:0 a.m.80 views

Siemens SIMATIC S7-300 CPUs and SINUMERIK Controller over Profinet (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC S7-300 CPUs and SINUMERIK Controller over Profinet Vulnerability: Uncontrolled Resource Consumption 2. UPDATE INFORMATION This updated advisory is a follow-up to the...

7.8CVSS7.7AI score0.01674EPSS
Exploits0References9
ICS
ICS
added 2020/02/11 12:0 a.m.80 views

Siemens SIPORT MP

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIPORT MP Vulnerability: Insufficient logging 2. RISK EVALUATION Successful exploitation of this vulnerability could allow the attacker to create special accounts with...

6.5CVSS6.6AI score0.0116EPSS
Exploits0References9
ICS
ICS
added 2019/12/12 12:0 a.m.80 views

Omron PLC CJ and CS Series

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : Omron Equipment : PLC CJ and CS Series Vulnerabilities : Authentication Bypass by Spoofing, Authentication Bypass by Capture-replay, Unrestricted Externally Accessible Lock 2. UPDATE This updated...

9.8CVSS9.6AI score0.0211EPSS
Exploits0References5
ICS
ICS
added 2019/10/01 12:0 a.m.80 views

Yokogawa Products

1. EXECUTIVE SUMMARY CVSS v3 8.4 ATTENTION: Low skill level to exploit Vendor: Yokogawa Equipment: Exaopc, Exaplog, Exaquantum, Exasmoc, Exarqe, GA10, and InsightSuiteAE Vulnerability: Unquoted Search Path or Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a...

7.8CVSS7.8AI score0.0126EPSS
Exploits0References5
ICS
ICS
added 2017/12/21 12:0 a.m.80 views

Schneider Electric Pelco VideoXpert Enterprise

CVSS v3 7.1 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Schneider Electric Equipment: Pelco VideoXpert Enterprise Vulnerabilities: Path Traversal, Improper Access Control AFFECTED PRODUCTS Schneider Electric reports that the vulnerabilities affect the following Pelco...

7.1CVSS7.5AI score0.04612EPSS
Exploits3References3
ICS
ICS
added 2015/02/12 7:0 a.m.80 views

Rockwell Automation RSView32 Weak Encryption Algorithm on Passwords

OVERVIEW This advisory was originally posted to the US-CERT secure Portal library on May 12, 2015, and is being released to the NCCIC/ICS-CERT web site. Rockwell Automation has produced a patch to mitigate a password encryption vulnerability in RSView32. Information Security Analysts Vladimir...

4.9CVSS6.1AI score0.00615EPSS
Exploits0References10
ICS
ICS
added 2012/01/13 7:0 a.m.80 views

Certec atvise webMI2ADS Vulnerabilities

Overview This advisory is a follow-up to the ICS-CERT alert titled ICS-ALERT-11-283-02 – Certec atvise webMI Vulnerabilities, released to the ICS-CERT web page on October 10, 2011. Independent researcher Luigi Auriemma has identified vulnerabilities in Certec’s webMI2ADS application. These...

5CVSS7.2AI score0.07621EPSS
Exploits0References10
ICS
ICS
added 2023/10/10 12:0 a.m.79 views

Siemens SICAM A8000 Devices

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

8.8CVSS8.6AI score0.00727EPSS
Exploits0References12
ICS
ICS
added 2023/08/22 6:0 a.m.79 views

Hitachi Energy AFF66x

1. EXECUTIVE SUMMARY ​CVSS v3 9.6 ​ATTENTION: Exploitable remotely/low attack complexity ​Vendor: Hitachi Energy ​Equipment: AFF66x ​Vulnerabilities: Cross-site Scripting, Use of Insufficiently Random Values, Origin Validation Error, Integer Overflow or Wraparound, Uncontrolled Resource...

9.6CVSS8.8AI score0.98745EPSS
Exploits6References8
ICS
ICS
added 2023/08/01 12:0 p.m.79 views

Threat Actors Exploiting Ivanti EPMM Vulnerabilities

SUMMARY The Cybersecurity and Infrastructure Security Agency CISA and the Norwegian National Cyber Security Centre NCSC-NO are releasing this joint Cybersecurity Advisory CSA in response to active exploitation of CVE-2023-35078 and CVE-2023-35081. Advanced persistent threat APT actors exploited...

10CVSS10AI score0.99999EPSS
Exploits14References66
ICS
ICS
added 2023/03/29 6:59 p.m.79 views

Autodesk FBX SDK

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Autodesk Equipment: FBX SDK Vulnerability: Out-of-bounds Read, Use After Free, Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to code execution or a...

7.8CVSS8.5AI score0.00351EPSS
Exploits0References7
ICS
ICS
added 2023/03/29 6:39 p.m.79 views

Akuvox E11

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Akuvox Equipment: E11 Vulnerabilities: Generation of Predictable IV with CBC, User of Hard-coded Cryptographic Key, Missing Authentication for Critical Function, Storing Passwords in a Recoverable...

9.8CVSS8.8AI score0.01386EPSS
Exploits0References5
ICS
ICS
added 2022/08/09 12:0 a.m.79 views

Siemens Teamcenter

1. EXECUTIVE SUMMARY CVSS v3 7.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: Teamcenter Vulnerabilities: Command Injection, Infinite Loop 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead to command injection and denial-of-service...

9.8CVSS8.9AI score0.01091EPSS
Exploits0References11
ICS
ICS
added 2021/09/14 12:0 a.m.79 views

Siemens LOGO! CMR and SIMATIC RTU 3000 (Update A)

1. EXECUTIVE SUMMARY CVSS v3 5.4 ATTENTION: Low attack complexity Vendor: Siemens Equipment: LOGO! CMR, SIMATIC RTU 3000 Vulnerability: Use of Insufficiently Random Values 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-21-257-13 Siemens LOGO! CMR...

5.4CVSS5.8AI score0.00356EPSS
Exploits0References11
ICS
ICS
added 2021/09/14 12:0 a.m.79 views

Siemens SINEMA Remote Connect Server

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SINEMA Remote Connect Server Vulnerabilities: Modification of Assumed-Immutable Data, Improper Access Control, Exposure of Sensitive Information to an Unauthorized Actor, Improper...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References11
ICS
ICS
added 2021/08/17 12:0 a.m.79 views

ThroughTek Kalay P2P SDK

1. EXECUTIVE SUMMARY CVSS v3 9.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: ThroughTek Equipment: Kalay P2P SDK Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could permit remote code execution and unauthorized access to...

8.3CVSS8.9AI score0.02575EPSS
Exploits1References5
ICS
ICS
added 2021/06/29 12:0 a.m.79 views

Exacq Technologies exacqVision Web Service

1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Exacq Technologies, Inc., a subsidiary of Johnson Controls Inc. Equipment: exacqVision Web Service Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability...

6.1CVSS6.1AI score0.01222EPSS
Exploits0References5
ICS
ICS
added 2021/05/27 12:0 a.m.79 views

Johnson Controls Sensormatic Electronics VideoEdge

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Sensormatic Electronics, LLC, a subsidiary of Johnson Controls Equipment: VideoEdge Vulnerability: Off-by-one Error 2. RISK EVALUATION Under specific circumstances, a local authenticated user may be able to exploit this...

7.8CVSS8.7AI score0.99295EPSS
Exploits81References5
ICS
ICS
added 2021/04/13 12:0 a.m.79 views

Siemens Nucleus Products IPv6 Stack

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens --------- Begin Update A Part 1 of 3 --------- Equipment: Capital VSTAR, Nucleus NET, Nucleus ReadyStart v3, Nucleus ReadyStart v4, Nucleus Source Code --------- End Update A Part 1 of 3...

8.7CVSS8.2AI score0.01885EPSS
Exploits0References10
ICS
ICS
added 2020/10/29 12:0 a.m.79 views

Mitsubishi Electric MELSEC iQ-R

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Mitsubishi Electric Equipment: MELSEC iQ-R Vulnerabilities: Improper Restriction of Operations within the Bounds of a Memory Buffer, Session Fixation, NULL Pointer Dereference, Improper Access...

9.8CVSS8.4AI score0.0317EPSS
Exploits0References5
ICS
ICS
added 2020/06/30 12:0 p.m.79 views

Dridex Malware

Summary This Alert is the result of recent collaboration between the Department of the Treasury Financial Sector Cyber Information Group CIG and the Department of the Treasury’s Financial Crimes Enforcement Network FinCEN to identify and share information with the financial services sector...

9.3CVSS9AI score0.99933EPSS
Exploits29References44
ICS
ICS
added 2020/06/25 12:0 a.m.79 views

Rockwell Automation FactoryTalk View SE

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Low skill level to exploit Vendor: Rockwell Automation Equipment: FactoryTalk View SE Vulnerabilities: Cleartext Storage of Sensitive Information, Weak Encoding for Password 2. RISK EVALUATION Successful exploitation of these vulnerabilities could lead...

7.8CVSS6.9AI score0.00269EPSS
Exploits0References5
ICS
ICS
added 2020/04/14 12:0 a.m.79 views

Eaton HMiSoft VU3

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: Eaton Equipment: HMiSoft VU3 HMIVU3 runtime not impacted Vulnerabilities: Stack-based Buffer Overflow, Out-of-bounds Read 2. RISK EVALUATION Successful exploitation of these vulnerabilities could crash the device being...

7.8CVSS7.7AI score0.00832EPSS
Exploits0References5
ICS
ICS
added 2019/12/19 12:0 a.m.79 views

Philips Veradius Unity, Pulsera, and Endura Dual WAN Routers

1. EXECUTIVE SUMMARY CVSS v3 5.3 Vendor: Philips Equipment: Veradius Unity, Pulsera, and Endura Dual WAN Router Vulnerability: Inadequate Encryption Strength 2. RISK EVALUATION Successful exploitation of this vulnerability could compromise the management interface of the front end router...

6.5CVSS6.5AI score0.00195EPSS
Exploits0References5
ICS
ICS
added 2018/12/18 12:0 a.m.79 views

ABB M2M ETHERNET

1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION: Exploitable from an adjacent network/low skill level to exploit Vendor: ABB Equipment: M2M ETHERNET Vulnerability: Improper Authentication 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to upload a malicious...

4.3CVSS5AI score0.00787EPSS
Exploits0References5
ICS
ICS
added 2017/08/24 12:0 a.m.79 views

ICSA-17-236-01_Westermo MRD-305-DIN, MRD-315, MRD-355, and MRD-455

CVSS v3 10.0 ATTENTION: Remotely exploitable/low skill level to exploit Vendor: Westermo Equipment: MRD-305-DIN, MRD-315, MRD-355, and MRD-455 Vulnerabilities: Cross-Site Request Forgery CSRF, Use of Hard-Coded Credentials, and Use of Hard-Coded Cryptographic Key AFFECTED PRODUCTS The following...

8.8CVSS7.6AI score0.00642EPSS
Exploits0References2
ICS
ICS
added 2024/01/09 12:0 a.m.78 views

Siemens Teamcenter Visualization and JT2Go

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

7.8CVSS6.8AI score0.00264EPSS
Exploits0References12
ICS
ICS
added 2023/07/06 12:0 p.m.78 views

Increased Truebot Activity Infects U.S. and Canada Based Networks

SUMMARY The Cybersecurity and Infrastructure Security Agency CISA, the Federal Bureau of Investigation FBI, the Multi-State Information Sharing and Analysis Center MS-ISAC, and the Canadian Centre for Cyber Security CCCS are releasing this joint Cybersecurity Advisory CSA in response to cyber...

9.8CVSS10AI score0.99934EPSS
Exploits16References149
ICS
ICS
added 2023/06/01 6:0 a.m.78 views

Advantech WebAccess/SCADA

1. EXECUTIVE SUMMARY CVSS v3 7.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: Advantech Equipment: WebAccess Node Vulnerabilities: Improper Control of Generation of Code 'Code Injection', Unrestricted Upload of File with Dangerous Type 2. RISK EVALUATION Successful exploitation...

9.8CVSS8.6AI score0.00898EPSS
Exploits0References8
ICS
ICS
added 2022/08/25 12:0 a.m.78 views

FATEK Automation FvDesigner

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: FATEK Automation Equipment: FvDesigner Vulnerability: Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of this vulnerability may allow remote code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The...

7.8CVSS7.8AI score0.00291EPSS
Exploits0References6
ICS
ICS
added 2022/06/14 12:0 a.m.78 views

Siemens SCALANCE LPE 4903 and SINUMERIK Edge

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: SCALANCE LPE 4903 and SINUMERIK Edge Vulnerability: Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unprivileged local user to escalate privileges and...

7.8CVSS8.9AI score0.94921EPSS
Exploits152References11
ICS
ICS
added 2022/04/19 12:0 a.m.78 views

Elcomplus SmartPTT SCADA Server

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Elcomplus Equipment: SmartPTT SCADA Server Vulnerabilities: Cross-site Scripting, Unauthorized Exposure to Sensitive Information, Unrestricted Upload of File with Dangerous Type, Path Traversal,...

9.8CVSS8.4AI score0.01096EPSS
Exploits0References5
ICS
ICS
added 2021/12/14 12:0 a.m.78 views

Schneider Electric Rack PDU (Update A)

1. EXECUTIVE SUMMARY --------- Begin Update A Part 1 of 3 --------- CVSS v3 6.5 ATTENTION: Exploitable remotely --------- End Update A Part 1 of 3 --------- Vendor: Schneider Electric Equipment: Rack Power Distribution Unit PDU --------- Begin Update A Part 2 of 3 --------- Vulnerability:...

8CVSS8.1AI score0.00774EPSS
Exploits0References4
ICS
ICS
added 2021/07/13 12:0 a.m.78 views

Siemens SCALANCE FragAttacks

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SCALANCE family devices Vulnerabilities: Improper Authentication, Injection, Improper Validation of Integrity Check, Improper Input Validation 2. RISK EVALUATION Successful...

6.5CVSS7.5AI score0.06487EPSS
Exploits2References10
ICS
ICS
added 2021/06/01 12:0 a.m.78 views

Hillrom Medical Device Management (Update B)

1. EXECUTIVE SUMMARY CVSS v3 5.9 ATTENTION: Exploitable remotely Vendor: Hillrom Equipment: Welch Allyn medical device management tools Vulnerabilities: Out-of-Bounds Write, Out-of-Bounds Read 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled...

9.8CVSS10AI score0.01859EPSS
Exploits0References4
Total number of security vulnerabilities4251