Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rockwellautomation vulnerabilities and exploits
(subscribe to this query)
465
VMScore
CVE-2018-10619
An unquoted search path or element in RSLinx Classic Versions 3.90.01 and prior and FactoryTalk Linx Gateway Versions 3.90.00 and prior may allow an authorized, but non-privileged local user to execute arbitrary code and allow a threat actor to escalate user privileges on the aff...
Rockwellautomation Rslinx Classic
Rockwellautomation Factorytalk Linx Gateway
1 EDB exploit
828
VMScore
CVE-2020-25176
Some commands used by the Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x eXchange Layer (IXL) protocol perform various file operations in the file system. Since the parameter pointing to the file name is not checked for reserved characters, it is possible for a remote, ...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Isagraf Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
828
VMScore
CVE-2020-25178
ISaGRAF Workbench communicates with Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x using TCP/IP. This communication protocol provides various file system operations, as well as the uploading of applications. Data is transferred over this protocol unencrypted, which coul...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Isagraf Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
409
VMScore
CVE-2020-25182
Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x searches for and loads DLLs as dynamic libraries. Uncontrolled loading of dynamic libraries could allow a local, unauthenticated malicious user to execute arbitrary code. This vulnerability only affects ISaGRAF Runtime when...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
Rockwellautomation Isagraf Runtime
187
VMScore
CVE-2020-25184
Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x stores the password in plaintext in a file that is in the same directory as the executable file. ISaGRAF Runtime reads the file and saves the data in a variable without any additional modification. A local, unauthenticated ...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
383
VMScore
CVE-2020-25180
Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x includes the functionality of setting a password that is required to execute privileged commands. The password value passed to ISaGRAF Runtime is the result of encryption performed with a fixed key value using the tiny encr...
Schneider-electric Easergy T300 Firmware
Schneider-electric Easergy C5 Firmware
Schneider-electric Micom C264 Firmware
Schneider-electric Pacis Gtw Firmware 5.1
Schneider-electric Pacis Gtw Firmware 5.2
Schneider-electric Pacis Gtw Firmware 6.1
Schneider-electric Pacis Gtw Firmware 6.3
Schneider-electric Saitel Dp Firmware
Schneider-electric Epas Gtw Firmware 6.4
Schneider-electric Saitel Dr Firmware
Schneider-electric Scd2200 Firmware
Rockwellautomation Aadvance Controller
Rockwellautomation Isagraf Free Runtime
Rockwellautomation Isagraf Runtime
Rockwellautomation Micro810 Firmware -
Rockwellautomation Micro820 Firmware -
Rockwellautomation Micro830 Firmware -
Rockwellautomation Micro850 Firmware -
Rockwellautomation Micro870 Firmware -
Xylem Multismart Firmware
614
VMScore
CVE-2014-9209
Untrusted search path vulnerability in the Clean Utility application in Rockwell Automation FactoryTalk Services Platform prior to 2.71.00 and FactoryTalk View Studio 8.00.00 and previous versions allows local users to gain privileges via a Trojan horse DLL in an unspecified dire...
Rockwellautomation Factorytalk Services Platform
Rockwellautomation Factorytalk View Studio
NA
CVE-2023-29460
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow potentially resulting in ...
Rockwellautomation Arena Simulation 16.20.00
Rockwellautomation Arena Simulation 16.00.00
NA
CVE-2023-29461
An arbitrary code execution vulnerability contained in Rockwell Automation's Arena Simulation software was reported that could potentially allow a malicious user to commit unauthorized arbitrary code to the software by using a memory buffer overflow in the heap. potentially ...
Rockwellautomation Arena Simulation 16.20.00
Rockwellautomation Arena Simulation 16.00.00
NA
CVE-2023-29464
FactoryTalk Linx, in the Rockwell Automation PanelView Plus, allows an unauthenticated threat actor to read data from memory via crafted malicious packets. Sending a size larger than the buffer size results in leakage of data from memory resulting in an information disclosure. I...
Rockwellautomation Factorytalk Linx 6.30
Rockwellautomation Factorytalk Linx 6.20
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »