Responsible Disclosure

RD No. CVE Number/ Case number Date OEM Product Vulnerability Status
Research Advisory - Vulnerable Disclosure 16 CVE-2020-7536 Schneider Electric Modicon M340 CPUs SNMP Service on Modicon M340 and associated Communication Modules Confirmed
Research Advisory - Vulnerable Disclosure 15 15.1 - 000160 - CVE-2020-7802 , 15.2 - 000161 - CVE-2020-7801 SSS(Synergy Systems & Solutions) 15.1 - RTU 15.2 - RTU 15.2 Default Permission, 15.2 Unauthorized Actor Confirmed
Research Advisory - Vulnerable Disclosure 14 14.1 - 000150 - CVE-2020-7800 , 14.2 - 000151 - CVE-2019-16879 SSS(Synergy Systems & Solutions) 14.1- RTU 14.2 - RTU 14.1 Improper check for unusual, 14.2 No authentication of function Confirmed
Research Advisory - Vulnerable Disclosure 13 13.1 - 000140 - CVE-2019-20046 , 13.2 - 000141 - CVE-2019-20045 SSS(Synergy Systems & Solutions) 13.1- RTU 13.2 - RTU 13.1 - Improper authentication, 13.2 - Improper input validation Confirmed
Research Advisory - Vulnerable Disclosure 12 0001655 Schneider Electric PLC Undisclosed Confirmed
Research Advisory - Vulnerable Disclosure 11 Rockwell Automation PLC 1. XSS 2. RFI Under Investigation