Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rockwellautomation vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2011-2530
Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and previous versions in Rockwell Automation RSLinx Classic prior to 2.58 allows user-assisted remote malicious users to cause a denial of service (application crash) or possibly execute arb...
Rockwellautomation Rslinx
Rockwellautomation Eds Hardware Installation Tool
4.6
CVSSv2
CVE-2020-25182
Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x searches for and loads DLLs as dynamic libraries. Uncontrolled loading of dynamic libraries could allow a local, unauthenticated malicious user to execute arbitrary code. This vulnerability only affects ISaGRAF Runtime when...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
Rockwellautomation Isagraf Runtime
2.1
CVSSv2
CVE-2020-25184
Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x stores the password in plaintext in a file that is in the same directory as the executable file. ISaGRAF Runtime reads the file and saves the data in a variable without any additional modification. A local, unauthenticated ...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
9.3
CVSSv2
CVE-2020-25176
Some commands used by the Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x eXchange Layer (IXL) protocol perform various file operations in the file system. Since the parameter pointing to the file name is not checked for reserved characters, it is possible for a remote, ...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Isagraf Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
9.3
CVSSv2
CVE-2020-25178
ISaGRAF Workbench communicates with Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x using TCP/IP. This communication protocol provides various file system operations, as well as the uploading of applications. Data is transferred over this protocol unencrypted, which coul...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Isagraf Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
4.3
CVSSv2
CVE-2020-25180
Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x includes the functionality of setting a password that is required to execute privileged commands. The password value passed to ISaGRAF Runtime is the result of encryption performed with a fixed key value using the tiny encr...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Isagraf Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
7.2
CVSSv2
CVE-2021-22665
Rockwell Automation DriveTools SP v5.13 and below and Drives AOP v4.12 and below both contain a vulnerability that a local attacker with limited privileges may be able to exploit resulting in privilege escalation and complete control of the system.
Rockwellautomation Drivetools Add-on Profiles
Rockwellautomation Drivetools Sp
6.5
CVSSv2
CVE-2015-6486
SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Rockwellautomation Micrologix 1400 Firmware
Rockwellautomation Micrologix 1100 Firmware
4.3
CVSSv2
CVE-2015-6488
Cross-site scripting (XSS) vulnerability in the web server on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Micrologix 1400 Firmware
10
CVSSv2
CVE-2015-6490
Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices through B FRN 15.003 allows remote malicious users to execute arbitrary code via unspecified vectors.
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Micrologix 1400 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »