ABB ASPECT-Enterprise, NEXUS, and MATRIX Series Products
View CSAF1. EXECUTIVE SUMMARYCVSS v3 10.0ATTENTION: Exploitable remotely/low attack complexityVendor: ABBEquipment: ASPECT-Enterprise, NEXUS, and MATRIX seriesVulnerabilities: Files or Directories...
View ArticleNedap Librix Ecoreader
View CSAF1. EXECUTIVE SUMMARYCVSS v4 9.3ATTENTION: Exploitable remotely/Low attack complexityVendor: Nedap LibrixEquipment: EcoreaderVulnerability: Missing Authentication for Critical Function2. RISK...
View ArticleSchneider Electric PowerChute Serial Shutdown
View CSAF1. EXECUTIVE SUMMARYCVSS v4 6.3ATTENTION: Exploitable remotely/low attack complexityVendor: Schneider ElectricEquipment: PowerChute Serial ShutdownVulnerability: Improper Authentication2. RISK...
View ArticleSchneider Electric Harmony HMI and Pro-face HMI Products
View CSAF1. EXECUTIVE SUMMARYCVSS v4 8.7ATTENTION: Exploitable remotely/low attack complexityVendor: Schneider ElectricEquipment: Harmony HMI and Pro-face HMI ProductsVulnerability: Use of Unmaintained...
View ArticleDelta Electronics DRASimuCAD (Update A)
View CSAF1. EXECUTIVE SUMMARYCVSS v4 8.4ATTENTION: Low attack complexityVendor: Delta ElectronicsEquipment: DRASimuCADVulnerabilities: Out-of-bounds Write, Type Confusion2. RISK EVALUATIONSuccessful...
View ArticleSchneider Electric Vijeo Designer
View CSAF1. EXECUTIVE SUMMARYCVSS v3 7.8ATTENTION: Low Attack ComplexityVendor: Schneider ElectricEquipment: Vijeo DesignerVulnerability: Improper Privilege Management2. RISK EVALUATIONSuccessful...
View ArticleHitachi Energy FOXMAN-UN
View CSAF1. EXECUTIVE SUMMARYCVSS v3 10.0ATTENTION: Exploitable remotely/low attack complexityVendor: Hitachi EnergyEquipment: FOXMAN-UNVulnerabilities: Authentication Bypass Using an Alternate Path or...
View ArticleSchneider Electric EcoStruxure
View CSAF1. EXECUTIVE SUMMARYCVSS v3 5.4ATTENTION: Exploitable remotely/low attack complexityVendor: Schneider ElectricEquipment: EcoStruxure Power Monitoring Expert, EcoStruxure Power Operation,...
View ArticleBelledonne Communications Linphone-Desktop
View CSAF1. EXECUTIVE SUMMARYCVSS v4 8.7ATTENTION: Exploitable remotely/low attack complexityVendor: Belledonne CommunicationsEquipment: Linphone-DesktopVulnerability: NULL Pointer Dereference2. RISK...
View ArticleSchneider Electric Data Center Expert
View CSAF1. EXECUTIVE SUMMARYCVSS v3 7.2ATTENTION: Exploitable remotely/low attack complexityVendor: Schneider ElectricEquipment: Data Center ExpertVulnerabilities: Improper Verification of...
View ArticleSiemens SIPROTEC 5 Products
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleHitachi Energy FOX61x Products
View CSAF1. EXECUTIVE SUMMARYCVSS v3 4.9ATTENTION: Exploitable remotely/low attack complexityVendor: Hitachi EnergyEquipment: FOX61x ProductsVulnerability: Relative Path Traversal2. RISK...
View ArticleFuji Electric Alpha5 SMART
View CSAF1. EXECUTIVE SUMMARYCVSS v4 8.5ATTENTION: Low attack complexityVendor: Fuji ElectricEquipment: Alpha5 SMARTVulnerability: Stack-based Buffer Overflow2. RISK EVALUATIONSuccessful exploitation...
View ArticleSiemens Siveillance Video Camera
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleHitachi Energy FOX61x, FOXCST, and FOXMAN-UN Products
View CSAF1. EXECUTIVE SUMMARYCVSS v3 4.9ATTENTION: Low attack complexityVendor: Hitachi EnergyEquipment: FOX61x, FOXCST, FOXMAN-UNVulnerability: Improper Validation of Certificate with Host Mismatch2....
View ArticleSiemens Mendix LDAP
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleSiemens Industrial Edge Management
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleSiemens SIMATIC S7-1200 CPUs
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities...
View ArticleZF Roll Stability Support Plus (RSSPlus)
View CSAF1. EXECUTIVE SUMMARYCVSS v4 5.9ATTENTION: Exploitable from an adjacent network/low attack complexityVendor: ZFEquipment: RSSPlusVulnerability: Authentication Bypass By Primary Weakness2. RISK...
View ArticleTraffic Alert and Collision Avoidance System (TCAS) II
View CSAF1. EXECUTIVE SUMMARYCVSS v4 7.1ATTENTION: Exploitable from adjacent networkStandard: Traffic Alert and Collision Avoidance System (TCAS) IIEquipment: Collision Avoidance...
View Article