1018 items
Unread (2155) All Dismissed
HIGH
CVE-2021-22702 (CVSS 7.5) — A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION740...
NVD CVE-2021-22702 1933d ago
HIGH
CVE-2020-27279 (CVSS 7.5) — A NULL pointer deference vulnerability has been identified in the protocol converter. An attacker co...
NVD CVE-2020-27279 1977d ago
HIGH
CVE-2020-7566 (CVSS 7.3) — A CWE-334: Small Space of Random Values vulnerability exists in Modicon M221 (all references, all ve...
NVD CVE-2020-7566 2025d ago
HIGH
CVE-2020-7565 (CVSS 7.3) — A CWE-326: Inadequate Encryption Strength vulnerability exists in Modicon M221 (all references, all ...
NVD CVE-2020-7565 2025d ago
HIGH
CVE-2020-28209 (CVSS 7) — A CWE-428 Windows Unquoted Search Path vulnerability exists in EcoStruxure Building Operation Enterp...
NVD CVE-2020-28209 2025d ago
HIGH
CVE-2020-7564 (CVSS 8.8) — A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability exis...
NVD CVE-2020-7564 2026d ago
HIGH
CVE-2020-7563 (CVSS 8.8) — A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon Quant...
NVD CVE-2020-7563 2026d ago
HIGH
CVE-2020-7562 (CVSS 8.1) — A CWE-125: Out-of-Bounds Read vulnerability exists in the Web Server on Modicon M340, Modicon Quantu...
NVD CVE-2020-7562 2026d ago
HIGH
CVE-2020-15783 (CVSS 7.5) — A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLU...
NVD CVE-2020-15783 2032d ago
HIGH
CVE-2020-7488 (CVSS 7.5) — A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists which could leak sen...
NVD CVE-2020-7488 2236d ago
HIGH
CVE-2020-11725 (CVSS 7.8) — snd_ctl_elem_add in sound/core/control.c in the Linux kernel through 5.6.3 has a count=info->owner l...
NVD CVE-2020-11725 2246d ago
HIGH
CVE-2020-7477 (CVSS 7.5) — A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethe...
NVD CVE-2020-7477 2266d ago
HIGH
CVE-2020-6988 (CVSS 7.5) — Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, ...
NVD CVE-2020-6988 2273d ago
HIGH
CVE-2020-6984 (CVSS 7.5) — Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, ...
NVD CVE-2020-6984 2273d ago
HIGH
CVE-2019-18336 (CVSS 7.5) — A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLU...
NVD CVE-2019-18336 2279d ago
HIGH
CVE-2020-6986 (CVSS 7.5) — In all versions of Omron PLC CJ Series, an attacker can send a series of specific data packets withi...
NVD CVE-2020-6986 2284d ago
HIGH
CVE-2019-6857 (CVSS 7.5) — A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580...
NVD CVE-2019-6857 2342d ago
HIGH
CVE-2019-6856 (CVSS 7.5) — A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580...
NVD CVE-2019-6856 2342d ago
HIGH
CVE-2018-7794 (CVSS 7.5) — A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580...
NVD CVE-2018-7794 2342d ago
HIGH
CVE-2019-13533 (CVSS 8.1) — In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monit...
NVD CVE-2019-13533 2364d ago
HIGH
CVE-2019-19378 (CVSS 7.8) — In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image can lead to slab-out-of-bounds...
NVD CVE-2019-19378 2381d ago
HIGH
CVE-2019-13721 (CVSS 8.8) — Use after free in PDFium in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potenti...
NVD CVE-2019-13721 2385d ago
HIGH
CVE-2019-6852 (CVSS 7.5) — A CWE-200: Information Exposure vulnerability exists in Modicon Controllers (M340 CPUs, M340 communi...
NVD CVE-2019-6852 2390d ago
HIGH
CVE-2019-18197 (CVSS 7.5) — In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circu...
NVD CVE-2019-18197 2423d ago
HIGH
CVE-2019-10996 (CVSS 7.8) — Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow mul...
NVD CVE-2019-10996 2448d ago
HIGH
CVE-2019-10984 (CVSS 7.8) — Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow mul...
NVD CVE-2019-10984 2448d ago
HIGH
CVE-2019-10978 (CVSS 7.8) — Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, allow mul...
NVD CVE-2019-10978 2448d ago
HIGH
CVE-2019-6829 (CVSS 7.5) — A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V2.90)...
NVD CVE-2019-6829 2454d ago
HIGH
CVE-2019-1010294 (CVSS 7.5) — Linaro/OP-TEE OP-TEE 3.3.0 and earlier is affected by: Rounding error. The impact is: Potentially le...
NVD CVE-2019-1010294 2518d ago
HIGH
CVE-2017-14853 (CVSS 8.6) — The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions prior to 2017-09...
NVD CVE-2017-14853 2560d ago
HIGH
CVE-2017-14852 (CVSS 8.6) — An insecure communication was found between a user and the Orpak SiteOmat management console for all...
NVD CVE-2017-14852 2560d ago
HIGH
CVE-2019-6820 (CVSS 8.2) — A CWE-306: Missing Authentication for Critical Function vulnerability exists which could cause a mod...
NVD CVE-2019-6820 2572d ago
HIGH
CVE-2019-6819 (CVSS 7.5) — A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists which could cau...
NVD CVE-2019-6819 2572d ago
HIGH
CVE-2018-7852 (CVSS 7.5) — A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340...
NVD CVE-2018-7852 2572d ago
HIGH
CVE-2018-7821 (CVSS 7.5) — An Environment (CWE-2) vulnerability exists in SoMachine Basic, all versions, and Modicon M221(all r...
NVD CVE-2018-7821 2572d ago
HIGH
CVE-2019-11687 (CVSS 7.8) — An issue was discovered in the DICOM Part 10 File Format in the NEMA DICOM Standard 1995 through 201...
NVD CVE-2019-11687 2592d ago
HIGH
CVE-2019-10953 (CVSS 7.5) — ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple v...
NVD CVE-2019-10953 2607d ago
HIGH
CVE-2019-6575 (CVSS 7.5) — A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open...
NVD CVE-2019-6575 2607d ago
HIGH
CVE-2018-16561 (CVSS 7.5) — A vulnerability has been identified in SIMATIC S7-300 CPUs (All versions < V3.X.16). The affected CP...
NVD CVE-2018-16561 2607d ago
HIGH
CVE-2017-15031 (CVSS 7.5) — In all versions of ARM Trusted Firmware up to and including v1.4, not initializing or saving/restori...
NVD CVE-2017-15031 2727d ago
HIGH
CVE-2018-17924 (CVSS 8.6) — Rockwell Automation MicroLogix 1400 Controllers and 1756 ControlLogix Communications Modules An unau...
NVD CVE-2018-17924 2738d ago
HIGH
CVE-2018-6439 (CVSS 7.8) — A Vulnerability in the configdownload command of Brocade Fabric OS command line interface (CLI) vers...
NVD CVE-2018-6439 2742d ago
HIGH
CVE-2018-7798 (CVSS 8.2) — A Insufficient Verification of Data Authenticity (CWE-345) vulnerability exists in the Modicon M221,...
NVD CVE-2018-7798 2773d ago
HIGH
CVE-2018-7792 (CVSS 7.5) — A Permissions, Privileges, and Access Control vulnerability exists in Schneider Electric's Modicon M...
NVD CVE-2018-7792 2838d ago
HIGH
CVE-2018-7789 (CVSS 7.5) — An Improper Check for Unusual or Exceptional Conditions vulnerability exists in Schneider Electric's...
NVD CVE-2018-7789 2838d ago
HIGH
CVE-2018-12594 (CVSS 7.5) — Reliable Controls MACH-ProWebCom 7.80 devices allow remote attackers to obtain sensitive information...
NVD CVE-2018-12594 2908d ago
HIGH
CVE-2018-9989 (CVSS 7.5) — ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in ssl_parse_serve...
NVD CVE-2018-9989 2979d ago
HIGH
CVE-2018-9988 (CVSS 7.5) — ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in ssl_parse_serve...
NVD CVE-2018-9988 2979d ago
HIGH
CVE-2017-12626 (CVSS 7.5) — Apache POI in versions prior to release 3.17 are vulnerable to Denial of Service Attacks: 1) Infinit...
NVD CVE-2017-12626 3050d ago
HIGH
CVE-2017-16715 (CVSS 8.6) — An Information Exposure issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4,...
NVD CVE-2017-16715 3124d ago
HIGH NVD Fri, 19 Feb 2021 16:15:13 UTC
CVE-2021-22702 (CVSS 7.5) — A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION740...
https://nvd.nist.gov/vuln/detail/CVE-2021-22702
TL;DR
A CWE-319: Cleartext transmission of sensitive information vulnerability exists in PowerLogic ION7400, ION7650, ION7700/73xx, ION83xx/84xx/85xx/8600, ION8650, ION8800, ION9000 and PM800 (see notification for affected versions), that could cause disclosure of user credentials when a malicious actor intercepts Telnet network traffic between a user and the device.
CVE-2021-22702
Read full story ↗