471
|
4.4 |
MEDIUM
Local
|
codesys
|
oscat_basic_library
|
Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service.
Update
|
CWE-125
Out-of-bounds Read
|
CVE-2024-6876
|
2024-10-1 16:15 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
472
|
7.3 |
HIGH
Local
|
beckhoff
|
twincat\/bsd mdp_package
|
The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local
attacker to induce a Denial-of-Service (DoS) condition on the daemon and execute code in
the context of user “roo…
Update
|
NVD-CWE-Other
|
CVE-2024-41176
|
2024-10-1 16:15 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
473
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP …
Update
|
NVD-CWE-noinfo
|
CVE-2024-43393
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
474
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP …
Update
|
NVD-CWE-noinfo
|
CVE-2024-43392
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
475
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SR…
Update
|
NVD-CWE-noinfo
|
CVE-2024-43391
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
476
|
6.5 |
MEDIUM
Network
|
phoenixcontact
|
axc_f_1152_firmware axc_f_2152_firmware axc_f_3152_firmware bpc_9102s_firmware epc_1502_firmware epc_1522_firmware plcnext_engineer rfc_4072r_firmware rfc_4072s_firmware
|
A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connecte…
Update
|
CWE-494
Download of Code Without Integrity Check
|
CVE-2023-46144
|
2024-10-1 16:15 |
2023-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
477
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.
Update
|
NVD-CWE-noinfo
|
CVE-2024-43390
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
478
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.
Update
|
NVD-CWE-noinfo
|
CVE-2024-43389
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
479
|
0.0 |
NONE
Physics
|
-
|
-
|
This CVE has been rejected.
New
|
-
|
CVE-2024-8421
|
2024-10-1 15:15 |
2024-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
480
|
- |
|
-
|
-
|
The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain product versions, an authenticated user may cause a server crash while modifying `userPassword` using malf…
Update
|
-
|
CVE-2024-8445
|
2024-10-1 15:15 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|