Vulnerabilities > Triplc > Nano 10 PLC Firmware > r80
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-10-29 | CVE-2013-5741 | Improper Input Validation vulnerability in Triplc Nano-10 PLC and Nano-10 PLC Firmware Triangle Research International (aka Tri) Nano-10 PLC devices with firmware r81 and earlier do not properly handle large length values in MODBUS data, which allows remote attackers to cause a denial of service (transition to the interrupt state) via a crafted packet to TCP port 502. | 7.8 |
2013-07-10 | CVE-2013-2784 | Cryptographic Issues vulnerability in Triplc Nano-10 PLC and Nano-10 PLC Firmware Triangle Research International (aka Tri) Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbus/TCP packets, which allows remote attackers to cause a denial of service (networking outage) via a crafted packet to TCP port 502. | 7.8 |