Openplcproject Openplcproject

  1. Vendors
  2. Openplcproject

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Openplcproject product.

RSS Feeds for Openplcproject security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Openplcproject products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Openplcproject Sorted by Most Security Vulnerabilities since 2018

Openplcproject Openplc V3 Firmware5 vulnerabilities

Openplcproject Openplc V34 vulnerabilities

Openplcproject Scadabr2 vulnerabilities

Openplcproject Openplc1 vulnerability

By the Year

In 2026 there have been 0 vulnerabilities in Openplcproject. Openplcproject did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2026 0 0.00
2025 0 0.00
2024 5 7.96
2023 0 0.00
2022 0 0.00
2021 3 6.53

It may take a day or so for new Openplcproject vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Openplcproject Security Vulnerabilities

CVE Date Vulnerability Products
CVE-2024-39590 Sep 18, 2024
OpenPLC Runtime EtherNet/IP PRDLR Pointer Deref DoS Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP parser functionality of OpenPLC_v3 16bf8bac1a36d95b73e7b8722d0edb8b9c5bb56a. A specially crafted EtherNet/IP request can lead to denial of service. An attacker can send a series of EtherNet/IP requests to trigger these vulnerabilities.This instance of the vulnerability occurs within the `Protected_Logical_Write_Reply` function
Openplc V3 Firmware
Openplc V3
CVE-2024-39589 Sep 18, 2024
OpenPLC EtherNet/IP parser Ptr deref ProtectedLogicalReadReply Leading to DoS Multiple invalid pointer dereference vulnerabilities exist in the OpenPLC Runtime EtherNet/IP parser functionality of OpenPLC_v3 16bf8bac1a36d95b73e7b8722d0edb8b9c5bb56a. A specially crafted EtherNet/IP request can lead to denial of service. An attacker can send a series of EtherNet/IP requests to trigger these vulnerabilities.This instance of the vulnerability occurs within the `Protected_Logical_Read_Reply` function
Openplc V3 Firmware
Openplc V3
CVE-2024-36981 Sep 18, 2024
OpenPLC Runtime EtherNet/IP OOB Read DoS Vulnerability An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser functionality of OpenPLC_v3 b4702061dc14d1024856f71b4543298d77007b88. A specially crafted network request can lead to denial of service. An attacker can send a series of EtherNet/IP requests to trigger this vulnerability.This is the final instance of the incorrect comparison.
Openplc V3 Firmware
Openplc V3
CVE-2024-36980 Sep 18, 2024
OOB Read in OpenPLC EtherNet/IP PCCC Parser Causes DoS An out-of-bounds read vulnerability exists in the OpenPLC Runtime EtherNet/IP PCCC parser functionality of OpenPLC_v3 b4702061dc14d1024856f71b4543298d77007b88. A specially crafted network request can lead to denial of service. An attacker can send a series of EtherNet/IP requests to trigger this vulnerability.This is the first instance of the incorrect comparison.
Openplc V3 Firmware
Openplc V3
CVE-2024-34026 Sep 18, 2024
OpenPLC v3 Buffer Overflow in EtherNet/IP Parser Enables RCE A stack-based buffer overflow vulnerability exists in the OpenPLC Runtime EtherNet/IP parser functionality of OpenPLC _v3 b4702061dc14d1024856f71b4543298d77007b88. A specially crafted EtherNet/IP request can lead to remote code execution. An attacker can send a series of EtherNet/IP requests to trigger this vulnerability.
Openplc V3 Firmware
CVE-2021-3351 Aug 02, 2021
OpenPLC runtime V3 through 2016-03-14 OpenPLC runtime V3 through 2016-03-14 allows stored XSS via the Device Name to the web server's Add New Device page.
Openplc
CVE-2021-26829 Jun 11, 2021
OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows stored XSS via system_settings.shtm.
Scadabr
CVE-2021-26828 Jun 11, 2021
OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows remote authenticated users to upload and execute arbitrary JSP files via view_edit.shtm.
Scadabr
Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.