CVE-2025-13902
- EPSS 0.23%
- Veröffentlicht 10.03.2026 17:06:00
- Zuletzt bearbeitet 23.06.2026 14:41:40
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause condition where authenticated attackers can have a victim’s browser run arbitrary JavaScript when the victim hovers over...
CVE-2024-6528
- EPSS 0.26%
- Veröffentlicht 11.07.2024 09:15:04
- Zuletzt bearbeitet 21.11.2024 09:49:48
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause a vulnerability leading to a cross-site scripting condition where attackers can have a victim’s browser run arbitrary J...
CVE-2020-28220
- EPSS 1.04%
- Veröffentlicht 11.12.2020 01:15:11
- Zuletzt bearbeitet 28.05.2026 21:16:26
A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Modicon M258 Firmware (All versions prior to V5.0.4.11) and SoMachine/SoMachine Motion software (All versions), that could cause a buffer overf...
CVE-2020-7487
- EPSS 0.68%
- Veröffentlicht 22.04.2020 19:15:11
- Zuletzt bearbeitet 21.11.2024 05:37:14
A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists which could allow the attacker to execute malicious code on the Modicon M218, M241, M251, and M258 controllers.
CVE-2020-7488
- EPSS 0.85%
- Veröffentlicht 22.04.2020 19:15:11
- Zuletzt bearbeitet 28.05.2026 21:16:27
A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists which could leak sensitive information transmitted between the software and the Modicon M218, M241, M251, and M258 controllers.
CVE-2019-6820
- EPSS 1.24%
- Veröffentlicht 22.05.2019 20:29:02
- Zuletzt bearbeitet 28.05.2026 20:16:19
A CWE-306: Missing Authentication for Critical Function vulnerability exists which could cause a modification of device IP configuration (IP address, network mask and gateway IP address) when a specific Ethernet frame is received in all versions of: ...