SCADA Family for Nessus

ID	Name	Severity
97436	Modicon Modbus/TCP UnityPro Programming Function Code Access	medium
97327	Ecava IntegraXor 5.0.413.0 getdata Requests Handling Multiple SQLi	critical
96876	Advantech WebAccess SQLi	critical
96875	Advantech WebAccess Authentication Bypass	critical
95716	Siemens SIMATIC WinCC (TIA Portal) < 14 Unquoted Service Path Local Privilege Escalation (SSA-701708)	medium
95715	Siemens SIMATIC STEP 7 (TIA Portal) < 14 Unquoted Service Path Local Privilege Escalation (SSA-701708)	medium
95714	Siemens SINEMA Server < 13 SP2 Unquoted Service Path Local Privilege Escalation (SSA-701708)	medium
95713	Siemens SINEMA Server Installed	info
94329	OMRON FINS UDP Protocol Detection	info
94328	OMRON FINS TCP Protocol Detection	info
91626	Panasonic FPWIN Pro 5.x < 7.130 Multiple Vulnerabilities	medium
91625	Panasonic Control FPWIN Pro Detection	info
91624	Cogent DataHub < 6.4.7 Incoming DDE Connection Handling Remote DoS	medium
91623	Cogent DataHub < 6.4.5Beta OPC Connection Failure DoS	medium
91622	Cogent DataHub < 6.4.3 OPC Client Reconnection Saturation Remote DoS	medium
91385	MicroLogix 1400 PLC Web Server Request Handling RCE	critical
91384	MicroLogix 1400 PLC Web Server Multiple Vulnerabilities	high
91346	EtherNet/IP CIP EDS Metadata	info
91345	Allen-Bradley MicroLogix 1400 Multiple Vulnerabilities	critical
91284	Moxa NPort Serial-to-Ethernet Server Multiple Vulnerabilities	critical
91283	Moxa NPort Serial-to-Ethernet Server Detection	info
90600	Rockwell Automation MicroLogix 1400 PLC Web Server Detection	info
90599	Rockwell Automation MicroLogix 1400 PLC Default Credentials	critical
90003	PACTware Unsupported Version Detection	critical
90002	PACTware 4.1 SP3 (4.1.0.42) File Processing Error Handling DoS	medium
90001	PACTware Detection	info
89111	Advantech WebAccess < 8.1-2015.12.30 Multiple Vulnerabilities	high
89032	7-Technologies / Schneider-Electric IGSS ODBC Version Identification	info
89031	7-Technologies IGSS < 10.0.0 ODBC Buffer Overflow RCE	critical
89030	7-Technologies IGSS < 9.0.0.11143 ODBC Invalid Structure RCE	critical
89029	7-Technologies / Schneider-Electric IGSS ODBC Service Detection	info
88839	Advantech WebAccess openWidget Script Path Traversal Remote File Disclosure	high
88417	iniNet SpiderControl SCADA Web Server Detection	info
88416	iniNet SpiderControl SCADA Web Server 2.02 Local Privilege Escalation	high
88415	iniNet SpiderControl SCADA Editor 6.30.01 Local Privilege Escalation	high
88414	iniNet SpiderControl PLC Editor Simatic 6.30.04 Local Privilege Escalation	high
88413	iniNet SpiderControl PLC Editor Beckhoff 6.30.04 Local Privilege Escalation	high
88412	iniNet SpiderControl SCADA Editor Detection	info
88411	iniNet SpiderControl PLC Editor Simatic Detection	info
88410	iniNet SpiderControl PLC Editor Beckhoff Detection	info
87891	Janitza Multiple UMG Devices Remote Debug Interface RCE	high
87208	7-Technologies / Schneider-Electric IGSS Data Collector Detection	info
87126	Emerson SM-Ethernet Web Interface Detection	info
87125	Emerson SM-Ethernet Web Interface Default Credentials	high
87124	Emerson SM-Ethernet FTP Server Default Credentials	critical
86899	Advantech WebAccess < 8.0.2015.08.16 Unspecified DLL String Handling Arbitrary Code Execution	medium
86573	3S CODESYS Runtime Toolkit < 2.4.7.48 PLCWinNT DoS	medium
86572	3S CODESYS Runtime Toolkit < 2.4.7.48 PLCWinNT DoS (credentialed check)	medium
85842	Siemens SIMATIC S7-1200 PLC < 4.1.3 XSRF	high
85692	Advantech WebAccess < 7.0-2011.12.20 Multiple Vulnerabilities	high

Detections

Analytics

SCADA Family for Nessus

medium

critical

critical

critical

medium

medium

medium

info

info

info

medium

info

medium

medium

medium

critical

high

info

critical

critical

info

info

critical

critical

medium

info

high

info

critical

critical

info

high

info

high

high

high

high

info

info

info

high

info

info

high

critical

medium

medium

medium

high

high