| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
15651 |
CVE-2018-7876 |
400 |
|
DoS |
2018-03-08 |
2019-10-11 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
In libming 0.4.8, a memory exhaustion vulnerability was found in the function parseSWF_ACTIONRECORD in util/parser.c, which allows remote attackers to cause a denial of service via a crafted file. |
|
15652 |
CVE-2018-7875 |
119 |
|
DoS Overflow |
2018-03-08 |
2018-04-10 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
There is a heap-based buffer over-read in the getString function of util/decompile.c in libming 0.4.8 for CONSTANT8 data. A Crafted input will lead to a denial of service attack. |
|
15653 |
CVE-2018-7874 |
119 |
|
DoS Overflow |
2018-03-08 |
2018-03-23 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
An invalid memory address dereference was discovered in strlenext in util/decompile.c in libming 0.4.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service. |
|
15654 |
CVE-2018-7873 |
119 |
|
DoS Overflow |
2018-03-08 |
2019-10-11 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for INTEGER data. A Crafted input will lead to a denial of service attack. |
|
15655 |
CVE-2018-7872 |
119 |
|
DoS Overflow |
2018-03-08 |
2018-04-10 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
An invalid memory address dereference was discovered in the function getName in libming 0.4.8 for CONSTANT16 data. The vulnerability causes a segmentation fault and application crash, which leads to denial of service. |
|
15656 |
CVE-2018-7871 |
119 |
|
DoS Overflow |
2018-03-08 |
2018-04-10 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
There is a heap-based buffer over-read in the getName function of util/decompile.c in libming 0.4.8 for CONSTANT16 data. A crafted input will lead to a denial of service or possibly unspecified other impact. |
|
15657 |
CVE-2018-7870 |
119 |
|
DoS Overflow |
2018-03-08 |
2018-04-10 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
An invalid memory address dereference was discovered in getString in util/decompile.c in libming 0.4.8 for CONSTANT16 data. The vulnerability causes a segmentation fault and application crash, which leads to denial of service. |
|
15658 |
CVE-2018-7869 |
772 |
|
DoS |
2018-03-08 |
2019-10-02 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
There is a memory leak triggered in the function dcinit of util/decompile.c in libming 0.4.8, which will lead to a denial of service attack. |
|
15659 |
CVE-2018-7868 |
119 |
|
DoS Overflow |
2018-03-08 |
2018-04-10 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
There is a heap-based buffer over-read in the getName function of util/decompile.c in libming 0.4.8 for CONSTANT8 data. A Crafted input will lead to a denial of service attack. |
|
15660 |
CVE-2018-7867 |
119 |
|
DoS Overflow |
2018-03-08 |
2018-04-10 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 during a RegisterNumber sprintf. A Crafted input will lead to a denial of service attack. |
|
15661 |
CVE-2018-7866 |
476 |
|
DoS |
2018-03-08 |
2019-10-11 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
A NULL pointer dereference was discovered in newVar3 in util/decompile.c in libming 0.4.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service. |
|
15662 |
CVE-2018-7857 |
754 |
|
DoS |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a possible Denial of Service when writing out of bounds variables to the controller over Modbus. |
|
15663 |
CVE-2018-7856 |
754 |
|
DoS |
2019-05-22 |
2019-06-11 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a possible denial of Service when writing invalid memory blocks to the controller over Modbus. |
|
15664 |
CVE-2018-7855 |
754 |
|
DoS |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A CWE-248 Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a Denial of Service when sending invalid breakpoint parameters to the controller over Modbus |
|
15665 |
CVE-2018-7854 |
754 |
|
DoS |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A CWE-248 Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a denial of Service when sending invalid debug parameters to the controller over Modbus. |
|
15666 |
CVE-2018-7853 |
754 |
|
DoS |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service when reading invalid physical memory blocks in the controller over Modbus |
|
15667 |
CVE-2018-7852 |
20 |
|
DoS |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service when an invalid private command parameter is sent to the controller over Modbus. |
|
15668 |
CVE-2018-7851 |
119 |
|
DoS Overflow |
2019-05-22 |
2019-10-09 |
6.8 |
None |
Remote |
Low |
Single system |
None |
None |
Complete |
|
CWE-119: Buffer errors vulnerability exists in Modicon M580 with firmware prior to V2.50, Modicon M340 with firmware prior to V3.01, BMxCRA312xx with firmware prior to V2.40, All firmware versions of Modicon Premium and 140CRA312xxx when sending a specially crafted Modbus packet, which could cause a denial of service to the device that would force a restart to restore availability. |
|
15669 |
CVE-2018-7850 |
20 |
|
|
2019-05-22 |
2019-06-11 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
A CWE-807: Reliance on Untrusted Inputs in a Security Decision vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause invalid information displayed in Unity Pro software. |
|
15670 |
CVE-2018-7849 |
20 |
|
DoS |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause a possible Denial of Service due to improper data integrity check when sending files the controller over Modbus. |
|
15671 |
CVE-2018-7848 |
200 |
|
+Info |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of SNMP information when reading files from the controller over Modbus |
|
15672 |
CVE-2018-7847 |
284 |
|
DoS Exec Code |
2019-05-22 |
2019-06-10 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service or potential code execution by overwriting configuration settings of the controller over Modbus. |
|
15673 |
CVE-2018-7846 |
119 |
|
Overflow |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
A CWE-501: Trust Boundary Violation vulnerability on connection to the Controller exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum and Modicon Premium which could cause unauthorized access by conducting a brute force attack on Modbus protocol to the controller. |
|
15674 |
CVE-2018-7845 |
125 |
|
|
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
A CWE-125: Out-of-bounds Read vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of unexpected data from the controller when reading specific memory blocks in the controller over Modbus. |
|
15675 |
CVE-2018-7844 |
200 |
|
+Info |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of SNMP information when reading memory blocks from the controller over Modbus. |
|
15676 |
CVE-2018-7843 |
399 |
|
DoS |
2019-05-22 |
2019-06-10 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause denial of service when reading memory blocks with an invalid data size or with an invalid data offset in the controller over Modbus. |
|
15677 |
CVE-2018-7842 |
264 |
|
Bypass |
2019-05-22 |
2019-06-10 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
A CWE-290: Authentication Bypass by Spoofing vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause an elevation of privilege by conducting a brute force attack on Modbus parameters sent to the controller. |
|
15678 |
CVE-2018-7841 |
89 |
|
Exec Code Sql |
2019-05-22 |
2019-05-23 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
A SQL Injection (CWE-89) vulnerability exists in U.motion Builder software version 1.3.4 which could cause unwanted code execution when an improper set of characters is entered. |
|
15679 |
CVE-2018-7840 |
427 |
|
|
2019-05-22 |
2019-05-23 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
A Uncontrolled Search Path Element (CWE-427) vulnerability exists in VideoXpert OpsCenter versions prior to 3.1 which could allow an attacker to cause the system to call an incorrect DLL. |
|
15680 |
CVE-2018-7838 |
119 |
|
DoS Overflow |
2019-07-15 |
2019-10-09 |
7.8 |
None |
Remote |
Low |
Not required |
None |
None |
Complete |
|
A CWE-119 Buffer Errors vulnerability exists in Modicon M580 CPU - BMEP582040, all versions before V2.90, and Modicon Ethernet Module BMENOC0301, all versions before V2.16, which could cause denial of service on the FTP service of the controller or the Ethernet BMENOC module when it receives a FTP CWD command with a data length greater than 1020 bytes. A power cycle is then needed to reactivate the FTP service. |
|
15681 |
CVE-2018-7834 |
79 |
|
XSS |
2019-05-22 |
2019-10-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
A CWE-79 Cross-Site Scripting vulnerability exists in all versions of the TSXETG100 allowing an attacker to send a specially crafted URL with an embedded script to a user that would then be executed within the context of that user. |
|
15682 |
CVE-2018-7833 |
754 |
|
|
2018-12-17 |
2018-12-28 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
An Improper Check for Unusual or Exceptional Conditions vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where an unauthenticated user can send a specially crafted XML data via a POST request to cause the web server to become unavailable |
|
15683 |
CVE-2018-7832 |
20 |
|
|
2018-12-24 |
2019-05-28 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
|
An Improper Input Validation vulnerability exists in Pro-Face GP-Pro EX v4.08 and previous versions which could cause the execution arbitrary executable when GP-Pro EX is launched. |
|
15684 |
CVE-2018-7831 |
352 |
|
XSS |
2018-11-30 |
2018-12-28 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
An Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 allowing an attacker to send a specially crafted URL to a currently authenticated web server user to execute a password change on the web server. |
|
15685 |
CVE-2018-7830 |
113 |
|
DoS Http R.Spl. |
2018-11-30 |
2018-12-28 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where a denial of service can occur for ~1 minute by sending a specially crafted HTTP request. |
|
15686 |
CVE-2018-7829 |
943 |
|
Exec Code |
2019-05-22 |
2019-05-24 |
9.0 |
None |
Remote |
Low |
Single system |
Complete |
Complete |
Complete |
|
An Improper Neutralization of Special Elements in Query vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera which allows an attacker to execute arbitrary system commands. |
|
15687 |
CVE-2018-7828 |
352 |
|
CSRF |
2019-05-22 |
2019-05-28 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
A Cross-Site Request Forgery (CSRF) vulnerability exists in the 1st Gen. Pelco Sarix Enhanced Camera and Spectra Enhanced PTZ Camera when an authenticated user clicks a specially crafted malicious link while logged into the camera. |
|
15688 |
CVE-2018-7826 |
77 |
|
Exec Code |
2019-05-22 |
2019-05-28 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
|
A Command Injection vulnerability exists in the web-based GUI of the 1st Gen Pelco Sarix Enhanced Camera that could allow a remote attacker to execute arbitrary commands. |
|
15689 |
CVE-2018-7825 |
77 |
|
Exec Code |
2019-05-22 |
2019-05-28 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
|
A Command Injection vulnerability exists in the web-based GUI of the 1st Gen PelcoSarix Enhanced Camera that could allow a remote attacker to execute arbitrary commands. |
|
15690 |
CVE-2018-7824 |
400 |
|
|
2019-05-22 |
2019-10-09 |
6.8 |
None |
Remote |
Low |
Single system |
None |
Complete |
None |
|
An Externally Controlled Reference to a Resource (CWE-610) vulnerability exists in Schneider Electric Modbus Serial Driver (For 64-bit Windows OS:V3.17 IE 37 and prior , For 32-bit Windows OS:V2.17 IE 27 and prior, and as part of the Driver Suite version:V14.12 and prior) which could allow write access to system files available only to users with SYSTEM privilege or other important user files. |
|
15691 |
CVE-2018-7823 |
20 |
|
|
2019-05-22 |
2019-05-23 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to firmware V1.10.0.0) which could cause remote launch of SoMachine Basic when sending crafted ethernet message. |
|
15692 |
CVE-2018-7821 |
399 |
|
|
2019-05-22 |
2019-05-23 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
An Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all references, all versions prior to firmware V1.10.0.0) which could cause cycle time impact when flooding the M221 ethernet interface while the Ethernet/IP adapter is activated. |
|
15693 |
CVE-2018-7820 |
522 |
|
|
2019-09-17 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
A Credentials Management CWE-255 vulnerability exists in the APC UPS Network Management Card 2 AOS v6.5.6, which could cause Remote Monitoring Credentials to be viewed in plaintext when Remote Monitoring is enabled, and then disabled. |
|
15694 |
CVE-2018-7817 |
416 |
|
Exec Code |
2019-02-06 |
2019-10-09 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
A Use After Free (CWE-416) vulnerability exists in Zelio Soft 2 v5.1 and prior versions which could cause remote code execution when opening a specially crafted Zelio Soft project file. |
|
15695 |
CVE-2018-7816 |
264 |
|
|
2019-05-22 |
2019-05-28 |
5.5 |
None |
Remote |
Low |
Single system |
None |
Partial |
Partial |
|
A Permissions, Privileges, and Access Control vulnerability exists in the web-based GUI of the 1st Gen Pelco Sarix Enhanced Camera that could allow a remote attacker to delete an arbitrary file. |
|
15696 |
CVE-2018-7812 |
200 |
|
+Info |
2018-12-17 |
2018-12-28 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
An Information Exposure through Discrepancy vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 where the web server sends different responses in a way that exposes security-relevant information about the state of the product, such as whether a particular operation was successful or not. |
|
15697 |
CVE-2018-7811 |
640 |
|
|
2018-11-30 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 which could allow an unauthenticated remote user to access the change password function of the web server |
|
15698 |
CVE-2018-7810 |
79 |
|
XSS |
2018-11-30 |
2018-12-28 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 allowing an attacker to craft a URL containing JavaScript that will be executed within the user's browser, potentially impacting the machine the browser is running on. |
|
15699 |
CVE-2018-7809 |
640 |
|
|
2018-11-30 |
2018-12-28 |
6.4 |
None |
Remote |
Low |
Not required |
None |
Partial |
Partial |
|
An Unverified Password Change vulnerability exists in the embedded web servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 which could allow an unauthenticated remote user to access the password delete function of the web server. |
|
15700 |
CVE-2018-7807 |
22 |
|
Dir. Trav. |
2018-11-30 |
2018-12-28 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
|
Data Center Expert, versions 7.5.0 and earlier, allows for the upload of a zip file from its user interface to the server. A carefully crafted, malicious file could be mistakenly uploaded by an authenticated user via this feature which could contain path traversal file names. As such, it could allow for the arbitrary upload of files contained with the zip onto the server file system outside of the intended directory. This is leveraging the more commonly known ZipSlip vulnerability within Java code. |
