CVE-2020-25184

<= 2.7.1

Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x stores the password in plaintext in a file that is in the same directory

7.8HIGH

CVE-2020-25182

<= 2.7.1

Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x searches for and loads DLLs as dynamic libraries. Uncontrolled loading of

6.7MEDIUM

CVE-2020-25180

<= 2.7.1

Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x includes the functionality of setting a password that is required to exec

5.3MEDIUM

CVE-2020-25178

<= 2.7.1

ISaGRAF Workbench communicates with Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x using TCP/IP. This communication prot

7.5HIGH

CVE-2020-25176

<= 2.7.1

Some commands used by the Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x eXchange Layer (IXL) protocol perform various f

9.1CRITICAL

CVE-2021-22771

<= 2.7.1

A CWE-1236: Improper Neutralization of Formula Elements in a CSV File vulnerability exists in Easergy T300 with firmware V2.7.1 an

7.3HIGH

CVE-2021-22770

<= 2.7.1

A CWE-200: Information Exposure vulnerability exists in Easergy T300 with firmware V2.7.1 and older that exposes sensitive informa

6.5MEDIUM

CVE-2021-22769

<= 2.7.1

A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Easergy T300 with firmware V2.7.1 and older

4.3MEDIUM

CVE-2020-28218

<= 2.7

A CWE-1021: Improper Restriction of Rendered UI Layers or Frames vulnerability exists in Easergy T300 (firmware 2.7 and older), th

6.5MEDIUM

CVE-2020-28217

<= 2.7

A CWE-311: Missing Encryption of Sensitive Data vulnerability exists in Easergy T300 (firmware 2.7 and older), that would allow an

7.5HIGH

CVE-2020-28216

<= 2.7

A CWE-311: Missing Encryption of Sensitive Data vulnerability exists in Easergy T300 (firmware 2.7 and older), that would allow an

7.5HIGH

CVE-2020-28215

<= 2.7

A CWE-862: Missing Authorization vulnerability exists in Easergy T300 (firmware 2.7 and older), that could cause a wide range of p

9.8CRITICAL

CVE-2020-7561

<= 2.7

A CWE-306: Missing Authentication for Critical Function vulnerability exists in Easergy T300 (with firmware 2.7 and older) that co

9.8CRITICAL

CVE-2020-7513

<= 1.5.2

A CWE-312: Cleartext Storage of Sensitive Information vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) whic

7.5HIGH

CVE-2020-7512

<= 1.5.2

A CWE-1103: Use of Platform-Dependent Third Party Components with vulnerabilities vulnerability exists in Easergy T300 (Firmware v

9.8CRITICAL

CVE-2020-7511

<= 1.5.2

A CWE-327: Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older

7.5HIGH

CVE-2020-7510

<= 1.5.2

A CWE-200: Information Exposure vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow attacker

7.5HIGH

CVE-2020-7509

<= 1.5.2

A CWE-269: Improper privilege management (write) vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which cou

7.2HIGH

CVE-2020-7508

<= 1.5.2

A CWE-307 Improper Restriction of Excessive Authentication Attempts vulnerability exists in Easergy T300 (Firmware version 1.5.2 a

9.8CRITICAL

CVE-2020-7507

<= 1.5.2

A CWE-400: Uncontrolled Resource Consumption vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could a

7.5HIGH

CVE-2020-7506

<= 1.5.2

A CWE-200: Information Exposure vulnerability exists in Easergy T300, Firmware V1.5.2 and prior, which could allow an attacker to

7.5HIGH

CVE-2020-7505

<= 1.5.2

A CWE-494 Download of Code Without Integrity Check vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which c

7.2HIGH

CVE-2020-7504

<= 1.5.2

A CWE-20: Improper Input Validation vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow an a

5.3MEDIUM

CVE-2020-7503

<= 1.5.2

A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could a

8.8HIGH