Filtered by vendor Pilz Subscriptions
Filtered by product Pmc Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-12069 4 Codesys, Festo, Pilz and 1 more 114 Control For Beaglebone, Control For Empc-a\/imx6, Control For Iot2000 and 111 more 2024-11-21 7.8 High
In CODESYS V3 products in all versions prior V3.5.16.0 containing the CmpUserMgr, the CODESYS Control runtime system stores the online communication passwords using a weak hashing algorithm. This can be used by a local attacker with low privileges to gain full control of the device.
CVE-2020-12067 1 Pilz 1 Pmc 2024-11-21 7.5 High
In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), a user's password may be changed by an attacker without knowledge of the current password.
CVE-2019-9011 1 Pilz 1 Pmc 2024-11-21 5.3 Medium
In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), an attacker can identify valid usernames.