Johnson Controls exacqVision Web Service
View CSAF1. EXECUTIVE SUMMARYCVSS v4 7.6ATTENTION: Exploitable remotelyVendor: Johnson Controls Inc.Equipment: exacqVision Web ServiceVulnerability: Permissive Cross-domain Policy with Untrusted...
View ArticleAVTECH IP Camera
View CSAF1. EXECUTIVE SUMMARYCVSS v4 9.3ATTENTION: Exploitable remotely/low attack complexity/public exploits are available/known public exploitationVendor: AVTECH SECURITY CorporationEquipment: IP...
View ArticleJohnson Controls exacqVision Web Service
View CSAF1. EXECUTIVE SUMMARYCVSS v3 6.4ATTENTION: Exploitable remotelyVendor: Johnson Controls, Inc.Equipment: exacqVision Web ServiceVulnerability: Cleartext Transmission of Sensitive Information2....
View ArticleJohnson Controls exacqVision Client and exacqVision Server
View CSAF1. EXECUTIVE SUMMARYCVSS v4 9.0ATTENTION: Exploitable remotelyVendor: Johnson Controls Inc.Equipment: exacqVision Client, exacqVision Server keyVulnerability: Inadequate Encryption Strength2....
View ArticleDelta Electronics DIAScreen
View CSAF1. EXECUTIVE SUMMARYCVSS v4 8.5ATTENTION: Low attack complexityVendor: Delta ElectronicsEquipment: DIAScreenVulnerability: Stack-based Buffer Overflow2. RISK EVALUATIONSuccessful exploitation...
View ArticleDorsett Controls InfoScan
View CSAF1. EXECUTIVE SUMMARYCVSS v4 6.9ATTENTION: Exploitable remotely/low attack complexityVendor: Dorsett ControlsEquipment: InfoScanVulnerabilities: Exposure of Sensitive Information To An...
View ArticleSiemens SINEC NMS
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleSiemens Teamcenter Visualization and JT2Go
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticlePTC Kepware ThingWorx Kepware Server
View CSAF1. EXECUTIVE SUMMARYCVSS v4 5.9ATTENTION: Exploitable from adjacent network.Vendor: PTCEquipment: Kepware ThingWorx Kepware ServerVulnerability: Allocation of Resources Without Limits or...
View ArticleSiemens COMOS
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleSiemens LOGO! V8.3 BM Devices
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleSiemens INTRALOG WMS
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleAVEVA Historian Web Server
View CSAF1. EXECUTIVE SUMMARYCVSS v4 8.5ATTENTION: Exploitable remotely/low attack complexityVendor: AVEVAEquipment: Historian ServerVulnerability: SQL Injection2. RISK EVALUATIONSuccessful...
View ArticleSiemens Location Intelligence
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleSiemens SINEC Traffic Analyzer
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleSiemens SCALANCE M-800, RUGGEDCOM RM1224
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleMOBOTIX P3 and Mx6 Cameras
View CSAF1. EXECUTIVE SUMMARYCVSS v4 8.7ATTENTION: Exploitable remotely/low attack complexityVendor: MOBOTIXEquipment: P3 Cameras, Mx6 CamerasVulnerability: Improper Neutralization of...
View ArticleRockwell Automation 5015 - AENFTXT
View CSAF1. EXECUTIVE SUMMARYCVSS v4 8.7ATTENTION: Exploitable remotely/low attack complexityVendor: Rockwell AutomationEquipment: 5015 - AENFTXTVulnerability: Improper Input Validation2. RISK...
View ArticleAvtec Outpost 0810
View CSAF1. EXECUTIVE SUMMARYCVSS v4 8.7ATTENTION: Exploitable remotely/low attack complexityVendor: AvtecEquipment: Outpost 0810, Outpost Uploader UtilityVulnerability: Storage of File with Sensitive...
View ArticleRockwell Automation Emulate3D
View CSAF1. EXECUTIVE SUMMARYCVSS v4 5.4ATTENTION: Exploitable locallyVendor: Rockwell AutomationEquipment: Emulate3DVulnerability: Externally Controlled Reference to a Resource in Another Sphere2....
View Article