Lucene search
K

4255 matches found

ICS
ICS
added 2019/08/13 12:0 a.m.59 views

ICSA-19-225-03_Siemens SCALANCE X Switches (Update D)

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SCALANCE X switches Vulnerability: Insufficient Resource Pool 2. UPDATE INFORMATION This updated advisory is a follow-up to the advisory update titled ICSA-19-225-03 Siemens SCALANCE...

8.6CVSS8.8AI score0.01361EPSS
Exploits0References2
ICS
ICS
added 2019/08/13 12:0 a.m.56 views

Siemens SCALANCE Products (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SCALANCE Products Vulnerabilities: Improper Adherence to Coding Standards 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled...

6.6CVSS7.6AI score0.01168EPSS
Exploits0References9
ICS
ICS
added 2019/08/13 12:0 a.m.43 views

Delta Industrial Automation DOPSoft

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Delta Electronics Equipment: Delta Industrial Automation DOPSoft Vulnerabilities: Out-of-bounds read, Use after free 2. RISK EVALUATION Successful exploitation of these vulnerabilities may allow...

7.8CVSS8.5AI score0.0385EPSS
Exploits0References5
ICS
ICS
added 2019/08/01 12:0 a.m.140 views

3S-Smart Software Solutions GmbH CODESYS V3 (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Low skill level to exploit Vendor: 3S-Smart Software Solutions GmbH Equipment: CODESYS V3 Vulnerability: Insufficiently Protected Credentials 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-19-213-04...

8.8CVSS8.8AI score0.00303EPSS
Exploits0References5
ICS
ICS
added 2019/08/01 12:0 a.m.72 views

LCDS LAquis SCADA LQS File Parsing

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: LCDS—Leão Consultoria e Desenvolvimento de Sistemas LTDA ME Equipment: LAquis SCADA Vulnerabilities: Out-of-bounds Read, Type Confusion 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an...

7.8CVSS5.8AI score0.01002EPSS
Exploits0References6
ICS
ICS
added 2019/08/01 12:0 a.m.56 views

3S-Smart Software Solutions GmbH CODESYS V3

1. EXECUTIVE SUMMARY CVSS v3 9.0 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : 3S-Smart Software Solutions GmbH Equipment : CODESYS V3 Vulnerabilities : Unverified Ownership, Uncontrolled Memory Allocation 2. RISK EVALUATION Successful exploitation of these vulnerabilities...

8.6AI score
Exploits0References5
ICS
ICS
added 2019/08/01 12:0 a.m.95 views

Fuji Electric FRENIC Loader

1. EXECUTIVE SUMMARY CVSS v3 4.4 ATTENTION: Low skill level to exploit Vendor: Fuji Electric Equipment: FRENIC Loader Vulnerability: Out-of-Bounds Read 2. RISK EVALUATION Successful exploitation of this vulnerability could allow information disclosure. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS...

4.3CVSS4.1AI score0.00842EPSS
Exploits0References5
ICS
ICS
added 2019/08/01 12:0 a.m.93 views

Rockwell Automation Arena Simulation Software (Update B)

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Low skill level to exploit Vendor: Rockwell Automation Equipment: Arena Simulation Software --------- Begin Update B Part 1 of 2 --------- Vulnerabilities: Use After Free, Information Exposure, Type Confusion, Insufficient UI Warning of Dangerous...

7.8CVSS7.2AI score0.12042EPSS
Exploits0References5
ICS
ICS
added 2019/08/01 12:0 a.m.49 views

Advantech WebAccess HMI Designer

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low skill level to exploit Vendor : Advantech Equipment : Advantech WebAccess HMI Designer Vulnerability : Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of this vulnerability may allow an attacker to remotely execute arbitrary code...

8.8CVSS9.1AI score0.04127EPSS
Exploits0References6
ICS
ICS
added 2019/07/30 6:0 a.m.241 views

Wind River VxWorks (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Wind River Equipment: VxWorks Vulnerabilities: Stack-based Buffer Overflow, Heap-based Buffer Overflow, Integer Underflow, Improper Restriction of Operations within the Bounds of a Memory Buffer,...

9.8CVSS9.7AI score0.84177EPSS
Exploits7References10
ICS
ICS
added 2019/07/30 12:0 a.m.155 views

Prima Systems FlexAir

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Prima Systems Equipment: FlexAir Vulnerabilities : OS Command Injection, Unrestricted Upload of File with Dangerous Type, Cross-site Request Forgery, Small Space of Random Values, Cross-site...

9.8CVSS9.6AI score0.31419EPSS
Exploits26References5
ICS
ICS
added 2019/07/23 12:0 a.m.83 views

NREL EnergyPlus

1. EXECUTIVE SUMMARY CVSS v3 6.1 ATTENTION: Low skill level to exploit Vendor: National Renewable Energy Laboratory NREL Equipment: EnergyPlus Vulnerability: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary...

5.5CVSS6.1AI score0.00337EPSS
Exploits0References5
ICS
ICS
added 2019/07/23 12:0 a.m.114 views

Mitsubishi Electric FR Configurator2

1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION: Low skill level to exploit Vendor: Mitsubishi Electric Equipment: Mitsubishi Electric FR Configurator2 Vulnerabilities: Improper Restriction of XML External Entity Reference, Uncontrolled Resource Consumption 2. RISK EVALUATION Successful exploitation...

7.1CVSS6AI score0.01019EPSS
Exploits0References6
ICS
ICS
added 2019/07/18 12:0 a.m.47 views

Johnson Controls exacqVision Server

1. EXECUTIVE SUMMARY CVSS v3 6.7 Vendor : Exacq Technologies, Inc., a subsidiary of Johnson Controls Equipment : exacqVision Server Vulnerability : Unquoted Search Path or Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated user to elevate their...

7.8CVSS7.2AI score0.00825EPSS
Exploits2References5
ICS
ICS
added 2019/07/11 12:0 a.m.29 views

Delta Industrial Automation CNCSoft ScreenEditor

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Delta Electronics Equipment: CNCSoft ScreenEditor Vulnerabilities: Heap-based Buffer Overflow, Out-of-Bounds Read 2. RISK EVALUATION Successful exploitation of these vulnerabilities could cause...

7.8CVSS7.7AI score0.0143EPSS
Exploits0References5
ICS
ICS
added 2019/07/11 12:0 a.m.27 views

Schneider Electric Interactive Graphical SCADA System

1. EXECUTIVE SUMMARY CVSS v3 7.0 Vendor: Schneider Electric Equipment: Interactive Graphical SCADA System IGSS Vulnerability: Out-of-Bounds Write 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to achieve arbitrary code execution or crash the software. 3...

7.8CVSS8.1AI score0.01279EPSS
Exploits0References5
ICS
ICS
added 2019/07/11 12:0 a.m.108 views

Schneider Electric Floating License Manager

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Schneider Electric Equipment: Floating License Manager Vulnerabilities: Improper Input Validation, Memory Corruption 2. RISK EVALUATION These vulnerabilities could allow an attacker to deny the...

9.8CVSS8.7AI score0.03669EPSS
Exploits0References5
ICS
ICS
added 2019/07/11 12:0 a.m.316 views

AVEVA Vijeo Citect and Citect SCADA Floating License Manager

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : AVEVA Equipment : Vijeo Citect and Citect SCADA Floating License Manager Vulnerabilities : Improper Input Validation, Memory Corruption 2. RISK EVALUATION These vulnerabilities could allow an...

9.8CVSS8.7AI score0.03669EPSS
Exploits0References5
ICS
ICS
added 2019/07/11 12:0 a.m.31 views

Philips Holter 2010 Plus

1. EXECUTIVE SUMMARY CVSS v3 1.9 Vendor : Philips Equipment : Philips Holter 2010 Vulnerability : Use of Obsolete Function 2. RISK EVALUATION Successful exploitation of this vulnerability under certain conditions can lead to a product feature escalation. 3. TECHNICAL DETAILS 3.1 AFFECTED...

4.4CVSS4.7AI score0.00335EPSS
Exploits0References5
ICS
ICS
added 2019/07/09 12:0 a.m.1012 views

ICSA-19-192-03 Siemens TIA Administrator (TIA Portal)

1. EXECUTIVE SUMMARY CVSS v3 8.0 ATTENTION : Low skill level to exploit Vendor : Siemens Equipment : TIA Administrator TIA Portal Vulnerability : Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an execution of some commands without proper...

7.8CVSS8AI score0.00897EPSS
Exploits1References9
ICS
ICS
added 2019/07/09 12:0 a.m.78 views

ICSA-19-192-04 Siemens SIMATIC RF6XXR

1. EXECUTIVE SUMMARY CVSS v3 5.9 ATTENTION : Exploitable remotely/public exploits are available Vendor : Siemens Equipment : SIMATIC RF6XXR Vulnerabilities : Improper Input Validation, Cryptographic Issues 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow access to...

2.6CVSS8.3AI score0.35584EPSS
Exploits1References9
ICS
ICS
added 2019/07/09 12:0 a.m.35 views

ICSA-19-190-04 Siemens Spectrum Power (Update A)

1. EXECUTIVE SUMMARY CVSS v3 4.7 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: Spectrum Power Vulnerability: Cross-site Scripting 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-19-190-04 Siemens Spectrum...

6.1CVSS6.6AI score0.00793EPSS
Exploits0References9
ICS
ICS
added 2019/07/09 12:0 a.m.53 views

Schneider Electric Zelio Soft 2

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Schneider Electric Equipment: Zelio Soft 2 Vulnerability: Use After Free 2. RISK EVALUATION Successful exploitation of this vulnerability could allow remote code execution through the opening of a...

7.8CVSS8.3AI score0.03699EPSS
Exploits0References5
ICS
ICS
added 2019/07/09 12:0 a.m.853 views

Siemens SIPROTEC 5 and DIGSI 5 (Update C)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely; low skill level to exploit Vendor: Siemens Equipment: SIPROTEC 5 and DIGSI 5 Vulnerabilities: Improper Input Validation 2 UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-19-190-05 Siemen...

7.5CVSS8.2AI score0.01763EPSS
Exploits0References9
ICS
ICS
added 2019/07/09 12:0 a.m.106 views

ICSA-19-192-02 Siemens SIMATIC WinCC and PCS7 (Update C)

1. EXECUTIVE SUMMARY CVSS v3 7.2 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC WinCC and SIMATIC PCS7 Vulnerability: Unrestricted Upload of File with Dangerous Type 2. UPDATE INFORMATION This updated advisory is a follow-up to the advisory update...

7.2CVSS7.3AI score0.01297EPSS
Exploits0References9
ICS
ICS
added 2019/07/09 12:0 a.m.35 views

Rockwell Automation PanelView 5510

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely Vendor: Rockwell Automation Equipment: PanelView 5510 Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote unauthenticated user to gain root privileges on the...

10CVSS10AI score0.04597EPSS
Exploits0References5
ICS
ICS
added 2019/07/09 12:0 a.m.53 views

Emerson DeltaV Distributed Control System

1. EXECUTIVE SUMMARY CVSS v3 6.1 ATTENTION: Low skill level to exploit Vendor: Emerson Equipment: DeltaV Distributed Control System DCS Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain administrative...

10CVSS10AI score0.02297EPSS
Exploits0References5
ICS
ICS
added 2019/07/09 12:0 a.m.40 views

GE Aestiva and Aespire Anesthesia (Update A)

1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: GE Equipment: Aestiva and Aespire Anesthesia Vulnerability: Improper Authentication 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSMA-19-190-01 GE...

5.3CVSS5.3AI score0.01336EPSS
Exploits0References4
ICS
ICS
added 2019/07/02 12:0 a.m.41 views

Quest KACE Systems Management Appliance

1. EXECUTIVE SUMMARY CVSS v3 2.7 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : Quest Equipment : KACE Systems Management Appliance SMA Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an administrative...

9CVSS7.2AI score0.02415EPSS
Exploits0References5
ICS
ICS
added 2019/07/02 12:0 a.m.50 views

Schneider Electric Modicon Controllers

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Schneider Electric Equipment: Modicon Controllers Vulnerability: Improper Check for Unusual or Exceptional Conditions 2. RISK EVALUATION Successful exploitation of this vulnerability could result...

7.5CVSS8AI score0.01129EPSS
Exploits0References4
ICS
ICS
added 2019/06/27 12:0 a.m.58 views

ABB CP635 HMI

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable from adjacent network/low skill level to exploit Vendor: ABB Equipment: CP635 HMI Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to prevent legitimate...

8.8CVSS9.1AI score0.02895EPSS
Exploits1References6
ICS
ICS
added 2019/06/27 12:0 a.m.31 views

Advantech WebAccess/SCADA

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Advantech Equipment: WebAccess/SCADA Vulnerabilities: Path Traversal, Stack-based Buffer Overflow, Heap-based Buffer Overflow, Out-of-bounds Read, Out-of-bounds Write, Untrusted Pointer Dereference...

9.8CVSS10AI score0.10665EPSS
Exploits0References5
ICS
ICS
added 2019/06/27 12:0 a.m.117 views

ABB PB610 Panel Builder 600

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Low skill level to exploit Vendor: ABB Equipment: PB610 Panel Builder 600 Vulnerabilities: Use of Hard-coded Credentials, Improper Authentication, Relative Path Traversal, Improper Input Validation, Stack-based Buffer Overflow 2. RISK EVALUATION An...

8.8CVSS9.2AI score0.52093EPSS
Exploits13References5
ICS
ICS
added 2019/06/27 12:0 a.m.48 views

SICK MSC800

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: SICK Equipment: MSC800 Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a low-skilled remote attacker to reconfigure...

9.8CVSS9.9AI score0.03378EPSS
Exploits0References5
ICS
ICS
added 2019/06/27 12:0 a.m.43 views

ABB CP651 HMI

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable from adjacent network/low skill level to exploit Vendor: ABB Equipment: CP651 HMI Vulnerability: Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to prevent legitimate...

8.8CVSS9.2AI score0.00726EPSS
Exploits0References6
ICS
ICS
added 2019/06/27 12:0 a.m.30 views

Medtronic MiniMed 508 and Paradigm Series Insulin Pumps

1. EXECUTIVE SUMMARY CVSS v3 7.1 Vendor: Medtronic Equipment: MiniMed 508 and Paradigm Series Insulin Pumps Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability may allow an attacker with adjacent access to one of the affected products to...

8.8CVSS8.8AI score0.01234EPSS
Exploits0References5
ICS
ICS
added 2019/06/20 12:0 a.m.100 views

PHOENIX CONTACT Automation Worx Software Suite

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Phoenix Contact Equipment: Automation Worx Software Suite Vulnerabilities: Access of Uninitialized Pointer, Out-of-bounds Read, Use After Free 2. RISK EVALUATION Successful exploitation of these...

8.8CVSS9.4AI score0.0377EPSS
Exploits0References5
ICS
ICS
added 2019/06/17 12:0 p.m.61 views

Microsoft Operating Systems BlueKeep Vulnerability

Summary The Cybersecurity and Infrastructure Security Agency CISA is issuing this Activity Alert to provide information on a vulnerability, known as “BlueKeep,” that exists in the following Microsoft Windows Operating Systems OSs, including both 32- and 64-bit versions, as well as all Service Pac...

10CVSS9.9AI score0.99999EPSS
Exploits123References25
ICS
ICS
added 2019/06/13 12:0 a.m.204 views

WAGO Industrial Managed Switches 852-303, 852-1305, and 852-1505

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : WAGO Equipment : Industrial Managed Switches 852-303, 852-1305, and 852-1505 Vulnerabilities : Use of Hard-coded Credentials, Use of Hard-coded Cryptographic Key, Using Components with Known...

10CVSS10AI score0.03261EPSS
Exploits1References5
ICS
ICS
added 2019/06/13 12:0 a.m.240 views

Johnson Controls exacqVision Enterprise System Manager

1. EXECUTIVE SUMMARY CVSS v3 6.7 Vendor: Johnson Controls Equipment: exacqVision Enterprise System Manager ESM Vulnerability: Improper Authorization 2. RISK EVALUATION Successful exploitation of this vulnerability could allow malicious code execution. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS...

7CVSS6.9AI score0.00735EPSS
Exploits1References5
ICS
ICS
added 2019/06/13 12:0 a.m.41 views

BD Alaris Gateway Workstation

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Remotely exploitable/low skill level to exploit Vendor: BD Becton, Dickinson and Company Equipment: Alaris Gateway Workstation Vulnerabilities: Improper Access Control, Unrestricted Upload of File with Dangerous Type 2. RISK EVALUATION Exploitation of...

5.3CVSS7.7AI score0.01675EPSS
Exploits0References5
ICS
ICS
added 2019/06/11 12:0 a.m.105 views

Siemens SCALANCE X (Update B)

1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION: Low skill level to exploit Vendor: Siemens Equipment: SCALANCE X Switches Vulnerability: Storing Passwords in a Recoverable Format 2. UPDATE INFORMATION This updated advisory is a follow-up to the advisory update titled ICSA-19-162-04 Siemens SCALANCE X...

5.5CVSS5.5AI score0.00301EPSS
Exploits0References9
ICS
ICS
added 2019/06/11 12:0 a.m.116 views

Siemens LOGO!8 Devices

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: LOGO!8 devices Vulnerabilities: Improper Restriction of Operations within the Bounds of a Memory Buffer, Session Fixation 2. RISK EVALUATION Successful exploitation of these...

8.8CVSS8.5AI score0.01599EPSS
Exploits0References9
ICS
ICS
added 2019/06/11 12:0 a.m.145 views

Siemens SIMATIC Ident MV440 Family (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC Ident MV440 Familiy Vulnerabilities: Improper Privilege Management, Cleartext Transmission of Sensitive Information 2. UPDATE INFORMATION This updated advisory is a...

7.1CVSS6.8AI score0.02265EPSS
Exploits0References9
ICS
ICS
added 2019/06/11 12:0 a.m.87 views

ICSA-19-162-01 Siemens Siveillance VMS

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: Siveillance VMS Vulnerabilities: Improper Authorization, Incorrect User Management, Missing Authorization 2. RISK EVALUATION Successful exploitation of these vulnerabilities...

9.8CVSS8.5AI score0.01667EPSS
Exploits0References9
ICS
ICS
added 2019/06/06 12:0 a.m.170 views

Optergy Proton Enterprise Building Management System

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Optergy Equipment: Proton/Enterprise Building Management System Vulnerabilities: Information Exposure, Cross-site Request Forgery, Unrestricted Upload of File with Dangerous Type, Open Redirect,...

10CVSS9.2AI score0.93384EPSS
Exploits22References5
ICS
ICS
added 2019/06/06 12:0 a.m.85 views

Panasonic Control FPWIN Pro

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Low skill level to exploit Vendor: Panasonic Equipment: Control FPWIN Pro Vulnerabilities: Heap-based Buffer Overflow, Type Confusion 2. RISK EVALUATION Successful exploitation of these vulnerabilities could crash the device and allow remote code...

7.8CVSS8.3AI score0.06853EPSS
Exploits0References5
ICS
ICS
added 2019/06/04 12:0 a.m.199 views

PHOENIX CONTACT PLCNext AXC F 2152

1. EXECUTIVE SUMMARY CVSS v3 7.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Phoenix Contact Equipment: PLCNext AXC F 2152 Vulnerabilities: Key Management Errors, Improper Access Control, Man-in-the-Middle, Using Component with Known Vulnerabilities 2. RISK EVALUATION...

7.1CVSS6.6AI score0.01581EPSS
Exploits0References6
ICS
ICS
added 2019/06/04 12:0 a.m.180 views

PHOENIX CONTACT FL NAT SMx

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Phoenix Contact Equipment: FL NAT SMx Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow unauthorized users full access to the...

8.8CVSS8.9AI score0.01638EPSS
Exploits0References5
ICS
ICS
added 2019/06/04 12:0 a.m.139 views

Geutebrück G-Cam and G-Code

1. EXECUTIVE SUMMARY CVSS v3 7.2 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Geutebrück Equipment: G-Cam and G-Code Vulnerabilities: Cross-site Scripting, OS Command Injection 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow remote code...

9CVSS7.1AI score0.03272EPSS
Exploits0References6
Total number of security vulnerabilities4255