Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firmware vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-6488
Cross-site scripting (XSS) vulnerability in the web server on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Micrologix 1400 Firmware
NA
CVE-2015-6492
Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices before B FRN 15.003 allow remote malicious users to cause a denial of service (memory corruption and device crash) via a crafted HTTP request.
Rockwellautomation Micrologix 1400 Firmware
Rockwellautomation Micrologix 1100 Firmware
4.3
CVSSv3
CVE-2021-21580
Dell EMC iDRAC8 versions before 2.80.80.80 & Dell EMC iDRAC9 versions before 5.00.00.00 contain a Content spoofing / Text injection, where a malicious URL can inject text to present a customized message on the application that can phish users into believing that the message i...
Dell Emc Idrac8 Firmware
Dell Emc Idrac9 Firmware
9.8
CVSSv3
CVE-2019-18259
In Omron PLC CJ series, all versions and Omron PLC CS series, all versions, an attacker could spoof arbitrary messages or execute commands.
Omron Plc Cj Firmware
Omron Plc Cs Firmware
NA
CVE-2015-3942
Multiple cross-site scripting (XSS) vulnerabilities in the web-server component in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Garrettcom Magnum 10k Firmware
Garrettcom Magnum 6k Firmware
NA
CVE-2015-3959
The firmware in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches has a hardcoded serial-console password for a privileged account, which might allow physically proximate malicious users to obtain access by establishing a console session to a nonstandard i...
Garrettcom Magnum 6k Firmware
Garrettcom Magnum 10k Firmware
NA
CVE-2015-3960
The firmware in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches uses hardcoded RSA private keys and certificates across different customers' installations, which makes it easier for remote malicious users to defeat cryptographic protection mechanism...
Garrettcom Magnum 6k Firmware
Garrettcom Magnum 10k Firmware
NA
CVE-2015-3961
The web-server component in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allows remote authenticated users to cause a denial of service (memory corruption and reboot) via a crafted URL.
Garrettcom Magnum 6k Firmware
Garrettcom Magnum 10k Firmware
8.1
CVSSv3
CVE-2019-13533
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Omron Plc Cj Firmware
Omron Plc Cs Firmware
NA
CVE-2015-6490
Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 devices through B FRN 15.003 allows remote malicious users to execute arbitrary code via unspecified vectors.
Rockwellautomation Micrologix 1100 Firmware
Rockwellautomation Micrologix 1400 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »