Vulnerabilities in Schneider Electric industrial solutions

15 January 2019

Critical and severe vulnerabilities have been identified in GP-Pro EX programming environment, Zelio Soft software and IIoT Monitor platform
Critical vulnerabilities in Siemens SINUMERIK controllers

14 December 2018

Exploitation of vulnerabilities in Siemens SINUMERIK controllers cold allow remote code execution, privilege escalation and device denial-of-service conditions
Web vulnerabilities in Siemens SIMATIC operator panels

16 November 2018

The most serious of the vulnerabilities could allow arbitrary files to be downloaded from the device
Vulnerabilities in Siemens industrial products

16 November 2018

The most dangerous of the vulnerabilities affect the SIMATIC S7-400 CPU family and the SIMATIC IT Production Suite software package. The vulnerabilities have been fixed for most of the affected products
Critical vulnerabilities in CirCarLife electric vehicle chargers

08 November 2018

Successful exploitation of these vulnerabilities could allow a remote attacker to retrieve credentials to bypass authentication, and to access critical information
Critical vulnerabilities in AVEVA industrial software

07 November 2018

The vulnerabilities affect InduSoft Web Studio and InTouch Edge HMI and could allow remote execution of arbitrary code
Multiple vulnerabilities in Advantech WebAccess

29 October 2018

Vulnerabilities identified in Advantech WebAccess include buffer overflow, path traversal, improper privilege management, etc.
Siemens fixes new vulnerabilities in its products

12 October 2018

Vulnerable products include ROX II operating system, SIMATIC S7-1200 CPU family, SCALANCE W1750D access point and some SIMATIC PLCs
Multiple vulnerabilities in Wecon PI Studio

10 October 2018

Wecon PI Studio HMI solutions are affected by multiple vulnerabilities that could allow remote code execution and disclosure of sensitive information, including in the context of an administrator
Critical vulnerabilities in Entes EMG 12 converters

05 October 2018

Vulnerabilities in the web interface of EMG12 Ethernet Modbus Gateway devices could allow unauthorized access to the devices and the ability to change device configuration