Tag

Plc

3 briefs RSS

Siemens SIMATIC S7 PLCs Web Server Vulnerabilities Allow Cross-Site Scripting

A remote, authenticated attacker can exploit multiple vulnerabilities in Siemens SIMATIC S7 PLCs Web Server to perform cross-site scripting attacks, potentially leading to information disclosure or further unauthorized actions.

SIMATIC S7 PLCs Web Server xss web-application plc

2r 1t May 12, 2026

critical advisory

Qualcomm PLC FW Buffer Overflow via Incorrect Authorization (CVE-2026-25293)

2 rules 2 TTPs 1 CVE

CVE-2026-25293 is a critical buffer overflow vulnerability in Qualcomm PLC FW due to incorrect authorization, potentially allowing unauthorized access and control over programmable logic controllers.

PLC FW plc buffer-overflow industrial-control-systems cve-2026-25293

2r 2t 1c May 4, 2026

high advisory

Schneider Electric Modicon PLC Denial-of-Service Vulnerability

2 rules 1 TTP 2 IOCs

Team82 disclosed vulnerabilities in Schneider Electric Modicon Controllers M241, M251, and M262 PLC lines, which can allow an attacker to cause a denial-of-service condition and affect controller availability.

plc denial-of-service industrial-control-system modicon

2r 1t 2i Mar 23, 2026