Severity Medium Analysis Summary A Cross-Site Request Forgery in phpMyAdmin, that allows an attacker to trigger a CSRF attack against a phpMyAdmin user deleting any server […]

Severity Medium Analysis Summary The integrated web server of the affected devices could allow remote attackers to obtain web configuration data in JSON format for IP […]

Severity High Analysis Summary CVE-2019-13918 The web interface has no means to prevent password guessing attacks. This vulnerability could be exploited by an attacker with network […]

Severity High Analysis Summary CVE-2019-13558 An exploit executed over the network may cause improper control of generation of code, which may allow remote code execution, data […]

Severity High Analysis Summary The vulnerability is due to insufficient processing logic for crafted IPv6 packets that are sent to an affected device. An attacker could […]

Severity Medium Analysis Summary The SIMATIC WinCC DataMonitor web application of the affected products allows an authenticated user with network access to the WinCC DataMonitor application […]

Severity High Analysis Summary An attacker could exploit this vulnerability in a third-party component to remotely execute code on the client computer with the same permissions […]

Severity Medium Analysis Summary An attacker sending a specially crafted UDP packet to the device may affect the UDP communication, causing a denial-of-service condition. Impact Denial […]

Severity Medium Analysis summary An attacker sending a malicious link to an unsuspecting user may be able to execute a cross-site scripting attack, which may allow […]