Lucene search
K

4251 matches found

ICS
ICS
added 2018/07/11 12:0 a.m.94 views

ICSA-18-347-02 Siemens EN100 Ethernet Communication Module and SIPROTEC 5 Relays (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: EN100 Ethernet Communication Module and SIPROTEC 5 relays Vulnerabilities: Improper Input Validation 2. UPDATE INFORMATION This updated advisory is a follow-up to the original...

7.8CVSS8.2AI score0.02389EPSS
Exploits0References9
ICS
ICS
added 2018/07/10 12:0 a.m.69 views

Schweitzer Engineering Laboratories, Inc. Compass and AcSELerator Architect

1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION: Exploitable remotely/Low skill level to exploit/Public exploits are available for these vulnerabilities Vendor: Schweitzer Engineering Laboratories, Inc. SEL Equipment: Compass and AcSELerator Architect Vulnerabilities: Incorrect Default Permissions,...

9.8CVSS9.4AI score0.07819EPSS
Exploits2References5
ICS
ICS
added 2018/07/10 12:0 a.m.45 views

Universal Robots Robot Controllers

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Universal Robots Equipment: Robot Controllers Vulnerabilities: Use of Hard-coded Credentials, Missing Authentication for Critical Function 2. RISK EVALUATION Successful exploitation of these...

10CVSS10AI score0.05099EPSS
Exploits0References6
ICS
ICS
added 2018/07/10 12:0 a.m.229 views

Tridium Niagara

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely Vendor: Tridium Equipment: Niagara Vulnerabilities: Path Traversal, Improper Authentication 2. REPOSTED INFORMATION This advisory was originally posted to the HSIN ICS-CERT library on July 10, 2018, and is being released to the...

9.8CVSS9.1AI score0.0622EPSS
Exploits0References5
ICS
ICS
added 2018/07/03 12:0 a.m.137 views

Rockwell Automation Allen-Bradley Stratix 5950

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: Allen-Bradley Stratix 5950 Vulnerabilities: Improper Input Validation, Improper Certificate Validation, Resource Management Errors 2. RISK EVALUATION Successful...

8.6CVSS8.6AI score0.99903EPSS
Exploits18References6
ICS
ICS
added 2018/06/28 12:0 a.m.41 views

Medtronic MyCareLink Patient Monitor

1. EXECUTIVE SUMMARY CVSS v3 6.4 Vendor: Medtronic Equipment: MyCareLink Patient Monitor Vulnerabilities: Use of Hard-coded Password, Exposed Dangerous Method or Function 2. RISK EVALUATION If exploited, these vulnerabilities may allow privileged access to the monitor’s operating system. However,...

7.2CVSS7.3AI score0.00362EPSS
Exploits0References5
ICS
ICS
added 2018/06/26 12:0 a.m.603 views

ICSA-18-317-01 Siemens IEC 61850 System Configurator, DIGSI 5, DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, and SICAM SCC

1. EXECUTIVE SUMMARY CVSS v3 4.2 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: IEC 61850 system configurator, DIGSI 5, DIGSI 4, SICAM PAS/PQS, SICAM PQ Analyzer, and SICAM SCC Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability...

9.3CVSS7.8AI score0.01841EPSS
Exploits0References9
ICS
ICS
added 2018/06/21 12:0 a.m.49 views

Rockwell Automation Allen-Bradley CompactLogix and Compact GuardLogix (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: Allen-Bradley CompactLogix and Compact GuardLogix Vulnerability: Improper Input Validation 2 UPDATE INFORMATION This updated advisory is a follow-up to the original...

7.8CVSS7.7AI score0.04448EPSS
Exploits0References5
ICS
ICS
added 2018/06/21 12:0 a.m.532 views

Delta Electronics Delta Industrial Automation COMMGR

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Delta Electronics Equipment: Delta Industrial Automation COMMGR Vulnerability: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability may allow remote code...

9.8CVSS9.8AI score0.68957EPSS
Exploits10References5
ICS
ICS
added 2018/06/14 12:0 a.m.73 views

Natus Xltek NeuroWorks

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Natus Medical, Inc. Natus Equipment: Natus Xltek NeuroWorks software Vulnerabilities: Stack-Based Buffer Overflow, Out-of-Bounds Read 2. RISK EVALUATION Successful exploitation of these...

10CVSS9AI score0.03436EPSS
Exploits0References5
ICS
ICS
added 2018/06/12 12:0 a.m.51 views

Schneider Electric U.motion Builder

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Schneider Electric Equipment: U.motion Builder Vulnerabilities: Command Injection, Cross-site Scripting, and Improper Input Validation 2. RISK EVALUATION Successful exploitation of these...

9.8CVSS8.4AI score0.03084EPSS
Exploits0References5
ICS
ICS
added 2018/06/12 12:0 a.m.98 views

Siemens SCALANCE X Switches (Update A)

1. EXECUTIVE SUMMARY CVSS v3 5.8 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: SCALANCE X switches Vulnerabilities: Cross-site Scripting 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-18-163-02 Siemens SCALANCE X Switches that was...

6.1CVSS6.1AI score0.00994EPSS
Exploits0References11
ICS
ICS
added 2018/06/12 12:0 a.m.119 views

Siemens SCALANCE X Switches, RUGGEDCOM WiMAX, RFID 181-EIP, and SIMATIC RF182C (Update D)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable from the same local network segment OSI Layer 2 Vendor: Siemens Equipment: SCALANCE X switches, RUGGEDCOM Win, RFID 181-EIP, and SIMATIC RF182C Vulnerability: Heap-based Buffer Overflow 2. UPDATE INFORMATION This updated advisory is a...

8.8CVSS9.3AI score0.00954EPSS
Exploits0References9
ICS
ICS
added 2018/06/07 12:0 a.m.154 views

Rockwell Automation RSLinx Classic and FactoryTalk Linx Gateway

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Low skill level to exploit Vendor: Rockwell Automation Equipment: RSLinx Classic and FactoryTalk Linx Gateway Vulnerability: Unquoted Search Path or Element 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an authorized, but...

7.8CVSS8.1AI score0.02755EPSS
Exploits7References5
ICS
ICS
added 2018/06/05 12:0 a.m.60 views

ABB IP Gateway

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: ABB Equipment: IP Gateway Vulnerabilities: Improper Authentication, Cross-site Request Forgery, Unprotected Storage of Credentials 2. RISK EVALUATION Successful exploitation of these...

9.8CVSS10AI score0.02646EPSS
Exploits0References5
ICS
ICS
added 2018/06/05 12:0 a.m.45 views

Philips' IntelliVue Patient and Avalon Fetal Monitors

1. EXECUTIVE SUMMARY CVSS v3 8.3 Vendor: Philips Equipment: IntelliVue Patient Monitors, Avalon Fetal/Maternal Monitors Vulnerabilities: Improper Authentication, Information Exposure, Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation may allow an attacker to read/write...

8.3CVSS7.6AI score0.00418EPSS
Exploits0References5
ICS
ICS
added 2018/05/31 12:0 a.m.54 views

GE MDS PulseNET and MDS PulseNET Enterprise

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: GE Equipment: MDS PulseNET and MDS PulseNET Enterprise Vulnerabilities: Improper Authentication, Improper Restriction of XML External Entity Reference, Relative Path Traversal 2. RISK EVALUATION...

9.8CVSS9AI score0.18282EPSS
Exploits0References5
ICS
ICS
added 2018/05/31 12:0 a.m.45 views

ICSA-18-151-01_Delta Industrial Automation DOPSoft

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Delta Electronics Equipment: Delta Industrial Automation DOPSoft Vulnerabilities: Out-of-bounds Read, Heap-based Buffer Overflow, Stack-based Buffer Overflow 2. RISK EVALUATION Successful...

9.8CVSS10AI score0.03577EPSS
Exploits0References2
ICS
ICS
added 2018/05/31 12:0 a.m.49 views

Yokogawa STARDOM Controllers (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Yokogawa Equipment: STARDOM Controllers --------- Begin Update A Part 1 of 5 -------- Vulnerabilities: Use of Hard-coded Credentials, Session Fixation, Insufficiently Protected Credentials,...

8.5AI score
Exploits0References5
ICS
ICS
added 2018/05/24 12:0 a.m.48 views

BeaconMedaes TotalAlert Scroll Medical Air Systems

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: BeaconMedaes Equipment: TotalAlert Scroll Medical Air Systems web application Vulnerabilities: Improper Access Control, Insufficiently Protected Credentials, Unprotected Storage of Credentials 2...

9.8CVSS9.3AI score0.01402EPSS
Exploits0References5
ICS
ICS
added 2018/05/24 12:0 a.m.626 views

Schneider Electric Floating License Manager

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Remotely exploitable/low skill level to exploit Vendor : Schneider Electric Equipment : Floating License Manager Vulnerabilities : Heap-based Buffer Overflow, Improper Restriction of Operations within the Bounds of a Memory Buffer, Open Redirect 2...

9.8CVSS9.7AI score0.44505EPSS
Exploits1References5
ICS
ICS
added 2018/05/22 12:0 a.m.100 views

BD Kiestra and InoquIA Systems (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION : Exploitable from adjacent network Vendor : Becton, Dickinson and Company BD Equipment : BD Kiestra and InoqulA systems Vulnerabilities : Product UI does not Warn User of Unsafe Actions 2. UPDATE INFORMATION This updated advisory is a follow-up to the...

6.3CVSS6.6AI score0.00412EPSS
Exploits0References5
ICS
ICS
added 2018/05/22 12:0 a.m.62 views

Martem TELEM-GW6/GWM (Update B)

1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : Martem Equipment : TELEM-GW6/GWM --------- Begin Update B Part 1 of 5 -------- Vulnerabilities : Missing Authentication for Critical Function, Incorrect Default Permissions, Resource Exhaustion,...

9.8CVSS8.9AI score0.03413EPSS
Exploits0References5
ICS
ICS
added 2018/05/17 6:0 a.m.28 views

Philips EncoreAnywhere

1. EXECUTIVE SUMMARY CVSS v3 5.9 ATTENTION : Exploitable remotely/public exploits are available Vendor : Philips Equipment : EncoreAnywhere product used in the Asia-Pacific APAC Region Vulnerability : Information Exposure 2. RISK EVALUATION Successful exploitation of this vulnerability can result...

7.5CVSS7.1AI score0.00539EPSS
Exploits0References8
ICS
ICS
added 2018/05/17 12:0 a.m.265 views

GE PACSystems CPE305/310, CPE330, CPE400, RSTi-EP CPE 100, CPU320/CRU320, RXi

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : GE Equipment : PACSystems CPE305/310, CPE330, CPE400, RSTi-EP CPE 100, CPU320/CRU320, RXi Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of this...

7.8CVSS7.8AI score0.03474EPSS
Exploits0References5
ICS
ICS
added 2018/05/17 12:0 a.m.85 views

PHOENIX CONTACT FL SWITCH 3xxx/4xxx/48xx Series

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : PHOENIX CONTACT Equipment : FL SWITCH 3xxx/4xxx/48xx Series Vulnerabilities : Command Injection, Information Exposure, Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of...

9.3CVSS8.4AI score0.04619EPSS
Exploits0References5
ICS
ICS
added 2018/05/17 12:0 a.m.53 views

Delta Electronics Delta Industrial Automation TPEditor (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.3 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : Delta Electronics Equipment : Delta Industrial Automation TPEditor Vulnerability : Heap-based Buffer Overflow 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory...

9.8CVSS10AI score0.03918EPSS
Exploits0References5
ICS
ICS
added 2018/05/17 12:0 a.m.37 views

Medtronic N'Vision Clinician Programmer (Update A)

1. EXECUTIVE SUMMARY --------- Begin Update A Part 1 of 5 -------- CVSS v3 6.3 --------- End Update A Part 1 of 5 ----------- ATTENTION: Low skill level to exploit Vendor: Medtronic Equipment: N’Vision Clinician Programmer --------- Begin Update A Part 2 of 5 ----------- Vulnerabilities:...

4.6CVSS6.3AI score0.00331EPSS
Exploits0References4
ICS
ICS
added 2018/05/15 12:0 a.m.94 views

Advantech WebAccess

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Remotely exploitable/low skill level to exploit Vendor : Advantech Equipment : WebAccess Vulnerabilities : SQL Injection, Improper Authorization, Path Traversal, Heap-based Buffer Overflow, Stack-based Buffer Overflow, Untrusted Pointer Dereference,...

9.8CVSS10AI score0.05754EPSS
Exploits0References6
ICS
ICS
added 2018/05/15 12:0 a.m.38 views

Siemens SIMATIC S7-400 CPU (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : Siemens Equipment : SINAMIC S7-400 CPU Vulnerability : Improper Input Validation 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-18-137-03 Siemens...

7.5CVSS7.8AI score0.02544EPSS
Exploits0References9
ICS
ICS
added 2018/05/10 12:0 a.m.40 views

MatrikonOPC Explorer

1. EXECUTIVE SUMMARY CVSS v3 6.7 ATTENTION : Low skill level to exploit Vendor : MatrikonOPC Equipment : MatrikonOPC Explorer Vulnerability : Files or Directories Accessible to External Parties 2. RISK EVALUATION If the attacker has local access to the system, an attacker could exploit this...

6.1CVSS6.3AI score0.00388EPSS
Exploits0References5
ICS
ICS
added 2018/05/10 12:0 a.m.46 views

Rockwell Automation Arena

1. EXECUTIVE SUMMARY CVSS v3 5.5 Vendor : Rockwell Automation Equipment : Arena Vulnerability : Use After Free 2. RISK EVALUATION Successful exploitation of this vulnerability could cause the software application to crash. 3. TECHNICAL DETAILS 3.1 AFFECTED PRODUCTS The following versions of...

5.5CVSS5.8AI score0.02047EPSS
Exploits0References5
ICS
ICS
added 2018/05/08 12:0 a.m.86 views

Silex Technology SX-500/SD-320AN or GE Healthcare MobileLink (Update B)

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION : Exploitable Remotely / Low skill level to exploit / Public exploits are available Vendors : Silex Technology, GE Healthcare Equipment : SX-500, SD-320AN, MobileLink Vulnerabilities : Improper Authentication, OS Command Injection 2. UPDATE INFORMATION...

7.4CVSS7.9AI score0.01348EPSS
Exploits0References5
ICS
ICS
added 2018/05/03 12:0 a.m.72 views

Philips Brilliance Computed Tomography (CT) System (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.4 ATTENTION: Low skill level to exploit Vendor: Philips --------- Begin Update A Part 1 of 3 ---------- Equipment: Brilliance CT Scanners and MX8000 Dual EXP --------- End Update A Part 1 of 3 ---------- Vulnerabilities: Execution with Unnecessary Privileges,...

8.8CVSS8.9AI score0.00411EPSS
Exploits0References5
ICS
ICS
added 2018/05/03 12:0 a.m.55 views

ICSA-18-128-02 Siemens Siveillance VMS (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.1 ATTENTION : Exploitable remotely Vendor : Siemens Equipment : Siveillance Video Management Software VMS Vulnerability : Deserialization of Untrusted Data 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-18-128-02...

8.1CVSS8.3AI score0.04182EPSS
Exploits0References9
ICS
ICS
added 2018/05/03 12:0 a.m.37 views

Siemens Medium Voltage SINAMICS Products (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely/low skill level to exploit Vendor : Siemens Equipment : Medium Voltage SINAMICS Products Vulnerabilities : Improper Input Validation 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled...

7.4AI score
Exploits0References9
ICS
ICS
added 2018/05/03 12:0 a.m.56 views

Lantech IDS 2102

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low skill level to exploit. Vendor : Lantech Equipment : IDS 2102 Vulnerabilities : Improper Input Validation, Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker...

10CVSS10AI score0.05811EPSS
Exploits0References5
ICS
ICS
added 2018/05/03 12:0 a.m.38 views

ICSA-18-128-03 Siemens Siveillance VMS Video Mobile App

1. EXECUTIVE SUMMARY CVSS v3 4.8 ATTENTION : Exploitable remotely Vendor : Siemens Equipment : Siveillance VMS Video Mobile App Vulnerability : Improper Certificate Validation 2. RISK EVALUATION Successful exploitation of this vulnerability may allow an attacker in a privileged network position...

7.4CVSS7.5AI score0.00751EPSS
Exploits0References9
ICS
ICS
added 2018/04/26 12:0 a.m.49 views

Delta Electronics PMSoft

1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION : Low skill level to exploit. Vendor : Delta Electronics Equipment : PMSoft Vulnerabilities : Multiple Stack-Based Buffer Overflow vulnerabilities 2. RISK EVALUATION Successful exploitation of these vulnerabilities could cause the application to crash;...

7.8CVSS8.5AI score0.00471EPSS
Exploits0References5
ICS
ICS
added 2018/04/26 12:0 a.m.1068 views

WECON Technology Co., Ltd. LeviStudio HMI Editor and PI Studio HMI Project Programmer

1. EXECUTIVE SUMMARY CVSS v3 5.9 ATTENTION : Low skill level to exploit. Vendor : WECON Technology Co., Ltd. WECON Equipment : LeviStudio HMI Editor, and PI Studio HMI Project Programmer Vulnerabilities : Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these...

6.8CVSS6.3AI score0.00732EPSS
Exploits0References5
ICS
ICS
added 2018/04/24 12:0 a.m.64 views

Advantech WebAccess HMI Designer

1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION : Exploitable remotely/low skill level to exploit. Vendor : Advantech Equipment : Advantech WebAccess HMI Designer Vulnerabilities : Heap-based Buffer Overflow, Double Free, Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these...

7.8CVSS8.7AI score0.02245EPSS
Exploits0References5
ICS
ICS
added 2018/04/24 12:0 a.m.57 views

Intel 2G Modem

1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION : Exploitable remotely Vendor : Intel Equipment : Intel 2G Modem Vulnerability : Buffer Overflow 2. RISK EVALUATION Successful exploitation of this buffer overflow vulnerability may allow remote code execution. The vulnerability affects Intel 2G modem...

8.3CVSS8.8AI score0.0134EPSS
Exploits0References4
ICS
ICS
added 2018/04/24 12:0 a.m.86 views

BD Pyxis

1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION : Public exploits are available. Vendor : Becton, Dickinson and Company BD Equipment : Certain BD Pyxis Products Vulnerability : Reusing a Nonce 2. RISK EVALUATION Successful exploitation of this vulnerability could allow data traffic manipulation,...

8.1CVSS7.9AI score0.04575EPSS
Exploits1References4
ICS
ICS
added 2018/04/24 12:0 a.m.81 views

Vecna VGo Robot (Update A)

1. EXECUTIVE SUMMARY CVSS v3 8.8 --------- Begin Update A Part 1 of 6 --------- ATTENTION: Exploitable remotely/low skill level to exploit --------- End Update A Part 1 of 6 --------- Vendor: Vecna Technologies, Inc. Vecna Equipment: VGo Robot --------- Begin Update A Part 2 of 6 ---------...

9.8CVSS8.7AI score0.02151EPSS
Exploits0References4
ICS
ICS
added 2018/04/19 12:0 a.m.42 views

Siemens SIMATIC WinCC OA Operator IOS App (Update A)

1. EXECUTIVE SUMMARY CVSS v3 4.0 Vendor : Siemens Equipment : SIMATIC WinCC OA iOS App Vulnerability : File and Directory Information Exposure. 2 UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-18-109-01 Siemens SIMATIC WinCC OA Operator iOS App that...

4.6CVSS4.3AI score0.00275EPSS
Exploits0References4
ICS
ICS
added 2018/04/17 12:0 p.m.95 views

Biosense Webster Carto 3 System Vulnerabilities

1. EXECUTIVE SUMMARY Biosense Webster Inc. BWI, a Johnson & Johnson company, has produced a software update that applies operating system patches and anti-virus signature updates to close known vulnerabilities in the operating system of the CARTO 3 System, a 3D cardiovascular mapping platform...

6.7AI score
Exploits0References19
ICS
ICS
added 2018/04/17 6:0 a.m.82 views

Schneider Electric Triconex Tricon

1. EXECUTIVE SUMMARY CVSS v3 9.0 ATTENTION : Exploitable remotely/HatMan malware specifically targets these vulnerabilities. Vendor : Schneider Electric Equipment : Triconex Tricon, Model 3008 Vulnerabilities : Improper Restriction of Operations within the Bounds of a Memory Buffer 2. UPDATE...

9.3CVSS8.1AI score0.02276EPSS
Exploits0References10
ICS
ICS
added 2018/04/17 12:0 a.m.30 views

Abbott Laboratories Defibrillator

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION : Exploitable remotely Vendor : Abbott Laboratories Equipment : Implantable Cardioverter Defibrillator and Cardiac Synchronization Therapy Defibrillator Vulnerabilities : Improper Authentication and Improper Restriction of Power Consumption MedSec...

8.8CVSS8.8AI score0.01084EPSS
Exploits0References4
ICS
ICS
added 2018/04/17 12:0 a.m.51 views

Schneider Electric InduSoft Web Studio and InTouch Machine Edition

1. EXECUTIVE SUMMARY CVSS v3 9.8 Attention : Exploitable remotely/low skill level to exploit. Vendor : Schneider Electric Software, LLC Equipment : InduSoft Web Studio, InTouch Machine Edition Vulnerability : Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this...

10CVSS10AI score0.08431EPSS
Exploits0References5
ICS
ICS
added 2018/04/17 12:0 a.m.50 views

ICSA-18-107-03_Rockwell Automation Stratix Services Router

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low skill level to exploit. Vendor : Rockwell Automation Equipment : Allen-Bradley Stratix 5900 Services Router Vulnerabilities : Improper Input Validation, Improper Restriction of Operations within the Bounds of a Memory Buffer,...

10CVSS9.6AI score0.14468EPSS
Exploits0References2
Total number of security vulnerabilities4251