1221
|
4.4 |
MEDIUM
Local
|
codesys
|
oscat_basic_library
|
Out-of-Bounds read vulnerability in OSCAT Basic Library allows an local, unprivileged attacker to access limited internal data of the PLC which may lead to a crash of the affected service.
|
CWE-125
Out-of-bounds Read
|
CVE-2024-6876
|
2024-10-1 16:15 |
2024-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1222
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP …
|
NVD-CWE-noinfo
|
CVE-2024-43393
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1223
|
7.3 |
HIGH
Local
|
beckhoff
|
twincat\/bsd mdp_package
|
The MPD package included in TwinCAT/BSD allows an authenticated, low-privileged local
attacker to induce a Denial-of-Service (DoS) condition on the daemon and execute code in
the context of user “roo…
|
NVD-CWE-Other
|
CVE-2024-41176
|
2024-10-1 16:15 |
2024-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1224
|
6.5 |
MEDIUM
Network
|
phoenixcontact
|
axc_f_1152_firmware axc_f_2152_firmware axc_f_3152_firmware bpc_9102s_firmware epc_1502_firmware epc_1522_firmware plcnext_engineer rfc_4072r_firmware rfc_4072s_firmware
|
A download of code without integrity check vulnerability in PLCnext products allows an remote attacker with low privileges to compromise integrity on the affected engineering station and the connecte…
|
CWE-494
Download of Code Without Integrity Check
|
CVE-2023-46144
|
2024-10-1 16:15 |
2023-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1225
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_INCOMING.FROM_IP …
|
NVD-CWE-noinfo
|
CVE-2024-43392
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1226
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet filter, packet forwarding, network access control or NAT through the FW_PORTFORWARDING.SR…
|
NVD-CWE-noinfo
|
CVE-2024-43391
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1227
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the firewall services, including packet forwarding or NAT through the FW_NAT.IN_IP environment variable which can lead to a DoS.
|
NVD-CWE-noinfo
|
CVE-2024-43390
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1228
|
8.1 |
HIGH
Network
|
phoenixcontact
|
tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mguard_rs2000_4g_vzw_vpn_firmware tc_mgua…
|
A low privileged remote attacker can perform configuration changes of the ospf service through OSPF_INTERFACE.SIMPLE_KEY, OSPF_INTERFACE.DIGEST_KEY environment variables which can lead to a DoS.
|
NVD-CWE-noinfo
|
CVE-2024-43389
|
2024-10-1 16:15 |
2024-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1229
|
- |
|
-
|
-
|
The fix for CVE-2024-2199 in 389-ds-base was insufficient to cover all scenarios. In certain product versions, an authenticated user may cause a server crash while modifying `userPassword` using malf…
|
-
|
CVE-2024-8445
|
2024-10-1 15:15 |
2024-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1230
|
- |
|
-
|
-
|
A flaw was found in the QEMU NBD Server. This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server …
|
-
|
CVE-2024-7409
|
2024-10-1 14:15 |
2024-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|