📦 Sge Plc1000 Firmware

A heap-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 allows remote code execution by sending an excessively large 'meter' parameter. This affects industrial control systems usi...

A stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 allows remote code execution by sending an excessively large 'meter' parameter. This affects industrial control systems ru...

This CVE describes a critical stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 devices. An attacker can inject arbitrary shell commands through the password change function,...

A stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 allows remote code execution by sending an overly long 'meter' parameter. This affects industrial control systems using th...

A stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2 allows remote attackers to execute arbitrary code by sending specially crafted username input. This affects industr...

This CVE describes a critical stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 devices. An attacker can exploit this by sending excessively large input to the 'meter' parame...

A stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2 allows remote attackers to execute arbitrary code via the 'SetLan' function in the management web interface. This a...

This CVE describes a critical stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 devices. An attacker can exploit this by sending an excessively large 'meter' parameter to exe...

A stack-based buffer overflow vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v0.9.2 allows remote attackers to execute arbitrary code through memory corruption in the TACACSPLUS implementation. This ...

CVE-2021-33841 is a critical OS command injection vulnerability in the SGE-PLC1000 device's firmware, allowing remote attackers to execute arbitrary commands with root privileges. It affects users of ...

An out-of-bounds read vulnerability in Circutor SGE-PLC1000/SGE-PLC50 allows attackers to read memory beyond intended boundaries by providing a large parameter to the 'DownloadFile' function. This aff...

This CVE describes a command injection vulnerability in Circutor SGE-PLC1000/SGE-PLC50 devices that allows attackers to execute arbitrary commands on the operating system. The vulnerability exists in ...

This vulnerability allows attackers with local access to extract a hardcoded cryptographic key from Circutor SGE-PLC1000/SGE-PLC50 devices. Using this key, they can create valid firmware update packag...