Pmc

pmc

Vendor: Pilz • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-9011 1Pilz 1Pmc Apr 14, 2025 Dec 26, 2022 N/A· v4 5.3 MEDIUM· v3 N/A· v2 In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), an attacker can identify valid usernames.
CVE-2020-12069 4Codesys FestoPilz+1 more 64750 8100 Firmware 750 8101 Firmware750 8102 Firmware+61 more May 5, 2025 Dec 26, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 In CODESYS V3 products in all versions prior V3.5.16.0 containing the CmpUserMgr, the CODESYS Control runtime system stores the online communication passwords using a weak hashing algorithm. This can be used by a local a...Show more In CODESYS V3 products in all versions prior V3.5.16.0 containing the CmpUserMgr, the CODESYS Control runtime system stores the online communication passwords using a weak hashing algorithm. This can be used by a local attacker with low privileges to gain full control of the device.Show less
CVE-2020-12067 1Pilz 1Pmc Apr 14, 2025 Dec 26, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), a user's password may be changed by an attacker without knowledge of the current password.