Triangle Research International Nano-10 PLC devices with firmware before r81 use an incorrect algorithm for bounds checking of data in Modbus/TCP packets, which allows remote attackers to cause a denial of service .

The vulnerability is due to insufficient boundary checking of coil number in Modbus packets. A remote attacker can take advantage of this vulnerability to crash the PLC.

A stack buffer overflow exists in Advantech's WebAccess SCADA software. This is due to insufficient input validation on the AccessCode2 parameter of the webvact.ocx ActiveX control, a part of the WebAccess Client.

WellinTech KingView is prone to multiple insecure-method vulnerabilities because it fails to properly sanitize user-supplied input. 

Threat Encyclopedia

1059102

ICS Tri PLC Nano 10 PLC Denial of Service (CVE-2013-2784)

High

2025/05/07

1232077

ICS RIO 47100 PLC Denial of Service (CVE-2013-0699)

High

2025/05/07

1059583

ICS Advantech WebAccess SCADA webvact.ocx AccessCode/AccessCode2 Buffer Overflow -1 (CVE-2014-0767)

High

2025/05/07

1059745

ICS KingView ActiveX Control File Execution -2 (CVE-2013-6128)

Medium

2025/05/07