SCADA Family for Tenable.ot

IDNameSeverity
500433Beckhoff Ipc Improper Input Validation
medium
500432Siemens Sicam Protection Mechanism Failure
high
500431Siemens Digsi Incorrect Default Permissions
high
500430Siemens Sicam Missing Authentication for Critical Function
critical
500429Mitsubishielectric Q03udecpu Unspecified Vulnerability
critical
500428Emerson Deltav Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
high
500427Rockwellautomation Factorytalk Use of Password Hash With Insufficient Computational Effort
critical
500426Schneider-electric Modicon Inadequate Encryption Strength
high
500425Siemens Sicam Out-of-bounds Read
high
500424Siemens Simatic Improper Restriction of Operations within the Bounds of a Memory Buffer
high
500423Siemens Sicam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
critical
500422Schneider-electric Modicon Out-of-bounds Write
high
500421Emerson Deltav Unspecified Vulnerability
high
500420Rockwellautomation Rslinx Improper Restriction of Operations within the Bounds of a Memory Buffer
medium
500419Rockwellautomation Rslinx Improper Input Validation
critical
500418Rockwellautomation Factorytalk Improper Handling of Exceptional Conditions
high
500417Rockwellautomation Flex Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
high
500416Rockwellautomation Factorytalk Allocation of Resources Without Limits or Throttling
medium
500415Siemens Sicam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
medium
500414Siemens Sicam Missing Encryption of Sensitive Data
high
500413Emerson Deltav Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
medium
500412Emerson Rx3i Improper Input Validation
high
500411Emerson Deltav Improper Input Validation
high
500410Rockwellautomation Rslinx Improper Input Validation
high
500409Siemens Sicam Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
critical
500408Softwaretoolbox Top Out-of-bounds Write
critical
500407Siemens Nucleus Improper Input Validation
high
500406Abb Base Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
low
500405Se Ecostruxure Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
critical
500404Abb Base Incorrect Permission Assignment for Critical Resource
high
500403Saia_burgess_controls Pcd1.m0xx0 Unspecified Vulnerability
critical
500402Emerson Deltav Unspecified Vulnerability
medium
500401Johnsoncontrols Metasys Use of Hard-coded Credentials
critical
500400Se Ecostruxure Cleartext Transmission of Sensitive Information
high
500399Siemens Sicam Authentication Bypass by Capture-replay
high
500398Schneider-electric Unity Write-what-where Condition
high
500397Emerson Deltav Improper Restriction of Operations within the Bounds of a Memory Buffer
high
500396Schneider-electric Modicon Out-of-bounds Write
high
500395Mitsubishielectric Melsec Uncontrolled Resource Consumption
high
500394Rockwellautomation Factorytalk Improper Input Validation
high
500393Emerson Deltav Unspecified Vulnerability
medium
500392Rockwellautomation Factorytalk Unspecified Vulnerability
high
500391Saia_burgess_controls Pcd Exposure of Sensitive Information to an Unauthorized Actor
medium
500390Johnsoncontrols Metasys Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
high
500389Schneider-electric Modicon Missing Encryption of Sensitive Data
medium
500388Schneider-electric Somachine Improper Restriction of Operations within the Bounds of a Memory Buffer
medium
500387Siemens Simatic Uncontrolled Resource Consumption
high
500386Yokogawa Centum Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
critical
500385Siemens Simatic Insufficiently Protected Credentials
medium
500384Johnsoncontrols Metasys Use of Hard-coded Credentials
critical