Lucene search
K
IcsMost viewed

4251 matches found

ICS
ICS
added 2016/09/04 6:0 a.m.76 views

Mitsubishi Electric MELSEC-Q Series Ethernet Interface Module Vulnerabilities

OVERVIEW Security researcher Vladimir Dashchenko of Critical Infrastructure Defense Team, Kaspersky Lab has identified vulnerabilities in the Mitsubishi Electric Automation, Inc. Mitsubishi Electric MELSEC-Q series Ethernet interface modules. NCCIC/ICS-CERT and JPCERT have coordinated the reporte...

8.6CVSS8.4AI score0.02615EPSS
Exploits0References10
ICS
ICS
added 2023/11/14 12:0 a.m.75 views

Siemens COMOS

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

9.8CVSS9.7AI score0.02591EPSS
Exploits0References12
ICS
ICS
added 2023/07/11 12:0 a.m.75 views

Siemens RUGGEDCOM ROX

1. EXECUTIVE SUMMARY ​CVSS v3 9.8 ​ATTENTION: Exploitable remotely / low attack complexity ​Vendor: Siemens ​Equipment: RUGGEDCOM ROX ​Vulnerabilities: Cleartext Transmission of Sensitive Information, Command Injection, Improper Authentication, Classic Buffer Overflow, Uncontrolled Resource...

10CVSS10AI score0.96275EPSS
Exploits9References12
ICS
ICS
added 2023/03/31 4:10 p.m.75 views

Rockwell Automation Modbus TCP AOI Server

1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Modbus TCP Server Add-On Instruction AOI Vulnerability: Exposure of Sensitive Information to an Unauthorized Actor 2. RISK EVALUATION Successful exploitation of this...

5.3CVSS5AI score0.00849EPSS
Exploits0References5
ICS
ICS
added 2023/01/10 12:0 a.m.75 views

Schneider Electric EcoStruxure Control Expert, Process Expert, Modicon M340, M580 and M580 CPU (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely Vendor: Schneider Electric Equipment: EcoStruxure Control Expert, EcoStruxure Process Expert, Modicon M340 CPU, Modicon M580 CPU, Modicon Momentum Unity M1E Processor, Modicon MC80 Vulnerability: Authentication Bypass by...

9.8CVSS7.5AI score0.01443EPSS
Exploits0References11
ICS
ICS
added 2022/09/20 6:0 a.m.75 views

Dataprobe iBoot-PDU

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Dataprobe Equipment: iBoot-PDU FW Vulnerabilities: OS Command Injection, Path Traversal, Exposure of Sensitive Information to an Unauthorized Actor, Improper Access Control, Improper Authorization,...

9.8CVSS9.2AI score0.11626EPSS
Exploits0References5
ICS
ICS
added 2022/07/12 12:0 a.m.75 views

Siemens PADS Standard/Plus Viewer

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: PADS Standard/Plus Viewer Vulnerabilities: Out-of-bounds Read, Out-of-bounds Write, Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitations of...

7.8CVSS7.4AI score0.01352EPSS
Exploits0References11
ICS
ICS
added 2022/05/10 12:0 a.m.75 views

Siemens OpenV2G

1. EXECUTIVE SUMMARY CVSS v3 6.2 ATTENTION: Low attack complexity Vendor: Siemens Equipment: OpenV2G Vulnerability: Classic Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to trigger a memory corruption. 3. TECHNICAL DETAILS 3.1 AFFECTED...

5.5CVSS5.9AI score0.00207EPSS
Exploits0References11
ICS
ICS
added 2022/05/10 12:0 a.m.75 views

Siemens Industrial Devices using libcurl

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: Industrial devices using libcurl Vulnerabilities: Use After Free 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-22-132-13 Siemens Industrial Devices using...

8.1CVSS8AI score0.60122EPSS
Exploits2References11
ICS
ICS
added 2022/04/12 12:0 a.m.75 views

Siemens SCALANCE W1700

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SCALANCE W1700 Vulnerabilities: Race Condition, Improper Input Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to cause various...

7.8CVSS6.6AI score0.0091EPSS
Exploits0References11
ICS
ICS
added 2021/11/09 12:0 a.m.75 views

Siemens Nucleus RTOS TCP/IP Stack

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: Nucleus Net, Nucleus ReadyStart, Capital VSTAR Vulnerabilities: Type Confusion, Improper Validation of Specified Quantity in Input, Out-of-bounds Read, Improper Restriction of...

9.8CVSS9.5AI score0.03031EPSS
Exploits0References11
ICS
ICS
added 2021/11/04 12:0 a.m.75 views

AzeoTech DAQFactory

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: AzeoTech Equipment: DAQFactory Vulnerabilities: Use of Inherently Dangerous Function, Deserialization of Untrusted Data, Cleartext Transmission of Sensitive Information, Modification of Assumed-Immutable Data MAID 2. RISK...

7.8CVSS7AI score0.00766EPSS
Exploits0References5
ICS
ICS
added 2021/07/29 12:0 a.m.75 views

Hitachi ABB Power Grids eSOMS

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Low attack complexity Vendor: Hitachi ABB Power Grids Equipment: eSOMS Vulnerability: Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow access to user credentials that are stored by the...

7.5CVSS7.6AI score0.01016EPSS
Exploits0References5
ICS
ICS
added 2021/07/27 12:0 a.m.75 views

LCDS LAquis SCADA

1. EXECUTIVE SUMMARY CVSS v3 9.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: LCDS—Leão Consultoria e Desenvolvimento de Sistemas Ltda ME Equipment: LAquis SCADA Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability may allow an...

9.3CVSS7.7AI score0.02247EPSS
Exploits0References5
ICS
ICS
added 2021/07/13 12:0 a.m.75 views

Siemens JT Utilities

1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION : Low attack complexity Vendor : Siemens Equipment : JT Utilities Vulnerabilities : Function Call with Incorrect Variable or Reference as Argument, NULL Pointer Dereference 2. RISK EVALUATION Successful exploitation of these vulnerabilities could cause a...

5.5CVSS6AI score0.00236EPSS
Exploits0References11
ICS
ICS
added 2021/03/04 12:0 a.m.75 views

Rockwell Automation 1734-AENTR Series B and Series C

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: 1734-AENTR Series B and Series C Vulnerabilities: Improper Access Control, Cross-site Scripting 2. RISK EVALUATION Successful exploitation of these vulnerabilities...

6.1CVSS6.5AI score0.01246EPSS
Exploits0References5
ICS
ICS
added 2020/08/25 12:0 a.m.75 views

Emerson OpenEnterprise

1. EXECUTIVE SUMMARY CVSS v3 3,8 ATTENTION: Low skill level to exploit Vendor: Emerson Equipment: OpenEnterprise SCADA Software Vulnerability: Inadequate Encryption Strength 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker access to credentials held by...

6.5CVSS5.5AI score0.00097EPSS
Exploits0References5
ICS
ICS
added 2020/07/13 12:0 p.m.75 views

Critical Vulnerability in SAP NetWeaver AS Java

Summary On July 13, 2020 EST, SAP released a security update to address a critical vulnerability, CVE-2020-6287, affecting the SAP NetWeaver Application Server AS Java component LM Configuration Wizard. An unauthenticated attacker can exploit this vulnerability through the Hypertext Transfer...

10CVSS10AI score0.94719EPSS
Exploits6References29
ICS
ICS
added 2020/04/07 12:0 a.m.75 views

Fuji Electric V-Server Lite

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Fuji Electric Equipment: V-Server Lite Vulnerability: Heap-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to gain elevated...

7.8CVSS8.2AI score0.00805EPSS
Exploits0References5
ICS
ICS
added 2020/02/25 12:0 a.m.75 views

Moxa ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Configuration Utility

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Moxa Equipment: ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Configuration Utility Vulnerabilities: Cleartext Storage of Sensitive Information, Cleartext Transmission of Sensitive...

7.5CVSS8.1AI score0.0131EPSS
Exploits0References5
ICS
ICS
added 2019/09/03 12:0 a.m.75 views

EZAutomation EZ PLC Editor

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: EZAutomation Equipment: EZ PLC Editor Vulnerability: Improper Restriction of Operations within the Bounds of a Memory Buffer 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to...

7.8CVSS7.8AI score0.01367EPSS
Exploits0References5
ICS
ICS
added 2019/09/03 12:0 a.m.75 views

EZAutomation EZ Touch Editor

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: EZAutomation Equipment: EZ Touch Editor Vulnerability: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute code under the privileges of the...

7.8CVSS8AI score0.01442EPSS
Exploits0References6
ICS
ICS
added 2019/05/02 12:0 a.m.75 views

GE Communicator

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: General Electric Equipment: Communicator Vulnerabilities: Uncontrolled Search Path, Use of Hard-coded Credentials, Improper Access Controls 2. RISK EVALUATION Successful exploitation of these...

9.8CVSS7.9AI score0.01277EPSS
Exploits0References6
ICS
ICS
added 2019/04/02 12:0 a.m.75 views

Advantech WebAccess/SCADA

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Advantech Equipment: WebAccess/SCADA Vulnerabilities: Command Injection, Stack-based Buffer Overflow, Improper Access Control 2. RISK EVALUATION Successful exploitation of these vulnerabilities may...

9.8CVSS10AI score0.06092EPSS
Exploits0References5
ICS
ICS
added 2018/12/18 12:0 a.m.75 views

3S-Smart Software Solutions GmbH CODESYS V3 Products

1. EXECUTIVE SUMMARY CVSS v3 9.4 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : 3S-Smart Software Solutions GmbH Equipment : CODESYS V3 products Vulnerabilities : Use of Insufficiently Random Values, Improper Restriction of Communication Channel to Intended Endpoints 2. RISK...

8.2AI score
Exploits0References4
ICS
ICS
added 2018/07/19 12:0 a.m.75 views

AVEVA InTouch

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: AVEVA Software, LLC. AVEVA Equipment: InTouch Vulnerability: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated user to...

9.8CVSS10AI score0.05427EPSS
Exploits0References5
ICS
ICS
added 2017/10/12 12:0 a.m.75 views

WECON Technology Co., Ltd. LeviStudio HMI Editor

CVSS v3 7.5 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: WECON Technology Co., Ltd. WECON Equipment: LeviStudio HMI Editor Vulnerabilities: Stack-based Buffer Overflow AFFECTED PRODUCTS The following versions of LEVI Studio HMI Editor, an HMI programming software product, a...

9.8CVSS10AI score0.02772EPSS
Exploits0References3
ICS
ICS
added 2017/09/28 12:0 a.m.75 views

Siemens Ruggedcom ROS, SCALANCE

CVSS v3 8.8 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Siemens Equipment: Ruggedcom ROS, SCALANCE Vulnerability: Improper Access Control AFFECTED PRODUCTS Siemens reports that the vulnerability affects the following devices which use the Ruggedcom Discovery Protocol RCDP:...

8.8CVSS9AI score0.00999EPSS
Exploits0References27
ICS
ICS
added 2017/02/07 12:0 a.m.75 views

ICSA-17-038-01_Sielco Sistemi Winlog SCADA Software

CVSS v3 7.2 Vendor: Sielco Sistemi Equipment: Winlog SCADA Software Vulnerability: Uncontrolled Search Path Element AFFECTED PRODUCTS The following Sielco Sistemi products are affected: Winlog Lite SCADA Software, versions prior to Version 3.02.01, and Winlog Pro SCADA Software, versions prior to...

9.3CVSS7.3AI score0.00938EPSS
Exploits1References2
ICS
ICS
added 2017/01/12 12:0 a.m.75 views

Carlo Gavazzi VMU-C EM and VMU-C PV

CVSS V3 10 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Carlo Gavazzi Equipment: VMU-C EM, VMU-C PV Vulnerabilities: Access Control Flaws, CSRF, Sensitive Information Stored In Clear Text AFFECTED PRODUCTS Carlo Gavazzi reports that the vulnerabilities affect the following...

10CVSS9.6AI score0.09317EPSS
Exploits2References3
ICS
ICS
added 2016/07/17 6:0 a.m.75 views

Rockwell Automation Stratix Denial-of-Service and Memory Leak Vulnerabilities

OVERVIEW Rockwell Automation reports that several of the vulnerabilities contained in Cisco’s semi-annual Cisco IOS and IOS XE Software Security Advisory Bundled PublicationCisco Event Response: September 2016 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication,...

8.3CVSS8.1AI score0.04896EPSS
Exploits0References10
ICS
ICS
added 2012/11/19 7:0 a.m.75 views

Advantech WebAccess Vulnerabilities

OVERVIEW This advisory follows up on two previous ICS-CERT Alerts: “ICS-ALERT-11-245-01—Multiple ActiveX Vulnerabilities in Advantech BroadWin WebAccess,” published September 2, 2011.http://ics-cert.us-cert.gov/alerts/ICS-ALERT-11-245-01, ICS-ALERT-11-245-01, website last accessed February 15,...

10CVSS8.5AI score0.04305EPSS
Exploits0References10
ICS
ICS
added 2023/01/12 12:0 a.m.74 views

InHand Networks InRouter

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: InHand Networks Equipment: InRouter302, InRouter615 Vulnerabilities: Cleartext Transmission of Sensitive Information, OS Command Injection, Use of a One-way Hash with a Predictable Salt, Improper Acces...

10CVSS8.9AI score0.01638EPSS
Exploits0References4
ICS
ICS
added 2022/07/07 12:0 a.m.74 views

Bently Nevada ADAPT 3701/4X Series and 60M100

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Bently Nevada Equipment: 3701/4X series and 60M100 3701/60 Condition Monitoring System Vulnerabilities: Use of Hard-coded Credentials, Missing Authentication for Critical Function CISA is aware of a...

9.8CVSS10AI score0.00904EPSS
Exploits0References5
ICS
ICS
added 2021/10/07 12:0 a.m.74 views

Johnson Controls exacqVision Server Bundle

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Exacq Technologies, a subsidiary of Johnson Controls, Inc. Equipment: exacqVision Server Bundle Vulnerability: Improper Privilege Management= 2. RISK EVALUATION Successful exploitation of this...

9.8CVSS10AI score0.01504EPSS
Exploits0References5
ICS
ICS
added 2021/05/27 12:0 a.m.74 views

Siemens JT2Go and Teamcenter Visualization

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: JT2Go and Teamcenter Visualization Vulnerabilities: Untrusted Pointer Dereference, Out-of-bounds Read, Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could...

8.8CVSS7.8AI score0.03991EPSS
Exploits0References8
ICS
ICS
added 2020/11/03 12:0 a.m.74 views

ARC Informatique PcVue (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: ARC Informatique Equipment: PcVue Vulnerabilities: Deserialization of Untrusted Data, Access to Critical Private Variable via Public Method, Information Exposure of Sensitive Information to an...

9.8CVSS8.8AI score0.03721EPSS
Exploits0References5
ICS
ICS
added 2020/09/10 6:0 a.m.74 views

Philips Patient Monitoring Devices (Update C)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION : Low attack complexity Vendor : Philips Equipment : Patient Information Center iX PICiX; PerformanceBridge Focal Point; IntelliVue Patient Monitors MX100, MX400-MX850, and MP2-MP90; and IntelliVue X2, and X3 Vulnerabilities : Improper...

8.8CVSS7AI score0.00704EPSS
Exploits0References9
ICS
ICS
added 2020/07/14 12:0 a.m.74 views

Siemens SIMATIC HMI Panels

1. EXECUTIVE SUMMARY CVSS v3 5.7 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC HMI Panels Vulnerability: Cleartext Transmission of Sensitive Information 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to...

6.5CVSS6.6AI score0.00332EPSS
Exploits0References9
ICS
ICS
added 2020/03/03 12:0 a.m.74 views

ICSA-20-063-02_PHOENIX CONTACT Emalytics Controller ILC

1. EXECUTIVE SUMMARY CVSS v3 9.4 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Phoenix Contact Equipment: Emalytics Controller ILC 2050 BIL Vulnerability: Incorrect Permission Assignment for Critical Resource 2. RISK EVALUATION Successful exploitation of this vulnerability...

9.4CVSS9.5AI score0.01846EPSS
Exploits0References2
ICS
ICS
added 2020/02/11 12:0 a.m.74 views

Siemens SCALANCE S-600 (Update B)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SCALANCE S-600 Firewall Vulnerabilities: Resource Exhaustion, Cross-site Scripting 2. UPDATE INFORMATION This updated advisory is a follow-up to the advisory update titled...

7.8CVSS7.5AI score0.015EPSS
Exploits0References11
ICS
ICS
added 2019/10/08 12:0 a.m.74 views

ICSA-19-281-04 Siemens SIMATIC IT UADM

1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC IT Unified Architecture Discrete Manufacturing UADM Vulnerability: Use of Hard-coded Cryptographic Key 2. RISK EVALUATION Successful exploitation of this vulnerability...

6.5CVSS6.9AI score0.01273EPSS
Exploits0References9
ICS
ICS
added 2019/09/10 12:0 a.m.74 views

ICSA-19-253-04 Siemens IE-WSN-PA Link WirelessHART Gateway

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: IE/WSN-PA Link WirelessHART Gateway Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability could allow information disclosure, code execution, or...

9.6CVSS9.1AI score0.0112EPSS
Exploits0References9
ICS
ICS
added 2019/04/04 12:0 a.m.74 views

Rockwell Automation Stratix 5950

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: Stratix 5950 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to cause an...

8.6CVSS8.6AI score0.16221EPSS
Exploits0References5
ICS
ICS
added 2018/09/06 12:0 p.m.74 views

ABB NETCADOPS HELP SYSTEM VULNERABILITY

Overview A cross-site scriptinghttp://www.owasp.org/index.php/Cross-siteScriptingXSS vulnerability exists in the system used by the ABB Electrical Distribution Management System DMS product netCADOPS to generate online Help. Affected Products All releases of the ABB netCADOPS product. The ABB...

7AI score
Exploits0References17
ICS
ICS
added 2018/08/23 12:0 p.m.74 views

Unitronics VisiLogic OPLC IDE vlp File Parsing Stack Buffer Overflow Vulnerability

OVERVIEW ZDI has identified a buffer overflow vulnerability discovered by Steven Seeley of Source Incite in Unitronics VisiLogic. Unitronics has produced a new version to mitigate this vulnerability. This vulnerability could be exploited remotely. AFFECTED PRODUCTS Unitronics reports that the...

9.8CVSS10AI score0.04499EPSS
Exploits0References18
ICS
ICS
added 2018/08/07 12:0 a.m.74 views

ICSA-18-226-01 Siemens SIMATIC STEP 7 and SIMATIC WinCC (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable locally/low skill level to exploit Vendor: Siemens Equipment: SIMATIC STEP 7 TIA Portal and SIMATIC WinCC TIA Portal Vulnerabilities: Incorrect Default Permissions 2. UPDATE INFORMATION This updated advisory is a follow-up to the original...

8.6CVSS8.5AI score0.00443EPSS
Exploits0References9
ICS
ICS
added 2017/11/30 12:0 a.m.74 views

Siemens SWT3000

CVSS v3 5.3 ATTENTION: Remotely exploitable/low skill level to exploit. Vendor: Siemens Equipment: SWT3000 Vulnerabilities: Improper Authentication, Authentication Bypass, Improper Input Validation. AFFECTED PRODUCTS Siemens reports that the vulnerabilities affect the following SWT 3000...

10CVSS8.3AI score0.03002EPSS
Exploits0References3
ICS
ICS
added 2016/08/02 12:0 a.m.74 views

Siemens SINEMA Server Privilege Escalation Vulnerability (Update A)

OVERVIEW This updated advisory is a follow-up to the original advisory titled ICSA-16-215-02 Siemens SINEMA Server Privilege Escalation Vulnerability that was published August 2, 2016, on the NCCIC/ICS-CERT web site. --------- Begin Update A Part 1 of 2 -------- Security researcher rgod working...

7.8CVSS0.9AI score0.00475EPSS
Exploits0References21
ICS
ICS
added 2015/02/28 7:0 a.m.74 views

IDS RTU 850 Directory Traversal Vulnerability

OVERVIEW Independent researchers Benjamin Kahler and Sebastian Kraemer of HSASec have identified a directory traversal vulnerability in IDS RTU 850C. IDS has produced a new module that mitigates this vulnerability. This vulnerability could be exploited remotely. AFFECTED PRODUCTS The following ID...

6.8CVSS6.9AI score0.02605EPSS
Exploits0References10
Total number of security vulnerabilities4251