← Back

Unitronics

unitronics

15 CVEs • 35 products

Products (35)

Click to collapse
Toggle
Unilogic
unilogic
8 CVEs
Visilogic Oplc Ide
visilogic_oplc_ide
4 CVEs
Vision1210 Firmware
vision1210_firmware
2 CVEs
Visilogic
visilogic
2 CVEs
Vision1040 Firmware
vision1040_firmware
1 CVE
Vision700 Firmware
vision700_firmware
1 CVE
Vision570 Firmware
vision570_firmware
1 CVE
Vision560 Firmware
vision560_firmware
1 CVE
Vision430 Firmware
vision430_firmware
1 CVE
Vision350 Firmware
vision350_firmware
1 CVE
Vision130 Firmware
vision130_firmware
1 CVE
Vision230 Firmware
vision230_firmware
1 CVE
Vision280 Firmware
vision280_firmware
1 CVE
Vision290 Firmware
vision290_firmware
1 CVE
Vision530 Firmware
vision530_firmware
1 CVE
Vision120 Firmware
vision120_firmware
1 CVE
Samba 3.5 Firmware
samba_3.5_firmware
1 CVE
Samba 4.3 Firmware
samba_4.3_firmware
1 CVE
Samba 7 Firmware
samba_7_firmware
1 CVE
Vision1210
vision1210
0 CVEs
Vision1040
vision1040
0 CVEs
Vision700
vision700
0 CVEs
Vision570
vision570
0 CVEs
Vision560
vision560
0 CVEs
Vision430
vision430
0 CVEs
Vision350
vision350
0 CVEs
Vision130
vision130
0 CVEs
Vision230
vision230
0 CVEs
Vision280
vision280
0 CVEs
Vision290
vision290
0 CVEs
Vision530
vision530
0 CVEs
Vision120
vision120
0 CVEs
Samba 3.5
samba_3.5
0 CVEs
Samba 4.3
samba_4.3
0 CVEs
Samba 7
samba_7
0 CVEs

CVEs (15)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-38435
1Unitronics
1Visilogic
Jul 21, 2025
Jul 21, 2024
N/A· v4
7.5 HIGH· v3
N/A· v2
Unitronics Vision PLC – CWE-703: Improper Check or Handling of Exceptional Conditions may allow denial of service
CVE-2024-27774
1Unitronics
1Unilogic
Mar 10, 2025
Mar 18, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-259: Use of Hard-coded Password may allow disclosing Sensitive Information Embedded inside Device's Firmware
CVE-2024-27773
1Unitronics
1Unilogic
Mar 10, 2025
Mar 18, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-348: Use of Less Trusted Source may allow RCE
CVE-2024-27772
1Unitronics
1Unilogic
Mar 10, 2025
Mar 18, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-78: 'OS Command Injection' may allow RCE
CVE-2024-27771
1Unitronics
1Unilogic
Mar 10, 2025
Mar 18, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE
CVE-2024-27770
1Unitronics
1Unilogic
Mar 10, 2025
Mar 18, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-23: Relative Path Traversal
CVE-2024-27769
1Unitronics
1Unilogic
Mar 10, 2025
Mar 18, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-200: Exposure of Sensitive Information to an Unauthorized Actor may allow Taking Ownership Over Devices
CVE-2024-27768
1Unitronics
1Unilogic
Mar 10, 2025
Mar 18, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-22: 'Path Traversal' may allow RCE
CVE-2024-27767
1Unitronics
1Unilogic
Mar 10, 2025
Mar 18, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
CWE-287: Improper Authentication may allow Authentication Bypass
CVE-2023-6448
1Unitronics
17Samba 3.5 Firmware
Samba 4.3 FirmwareSamba 7 Firmware+14 more
Feb 26, 2026
Dec 5, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Unitronics VisiLogic before version 9.9.00, used in Vision and Samba PLCs and HMIs, uses a default administrative password. An unauthenticated attacker with network access can take administrative control of a vulnerable...Show more
Unitronics VisiLogic before version 9.9.00, used in Vision and Samba PLCs and HMIs, uses a default administrative password. An unauthenticated attacker with network access can take administrative control of a vulnerable system.Show less
CVE-2023-2003
1Unitronics
1Vision1210 Firmware
Jan 8, 2026
Jul 13, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Embedded malicious code vulnerability in Vision1210, in the build 5 of operating system version 4.3, which could allow a remote attacker to store base64-encoded malicious code in the device's data tables via the PCOM pro...Show more
Embedded malicious code vulnerability in Vision1210, in the build 5 of operating system version 4.3, which could allow a remote attacker to store base64-encoded malicious code in the device's data tables via the PCOM protocol, which can then be retrieved by a client and executed on the device. Show less
CVE-2016-4519
1Unitronics
1Visilogic Oplc Ide
May 6, 2026
Jun 25, 2016
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Stack-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.30 allows remote attackers to execute arbitrary code via a crafted filename field in a ZIP archive in a vlp file.
CVE-2015-7939
1Unitronics
1Visilogic Oplc Ide
May 6, 2026
Jan 9, 2016
N/A· v4
9.6 CRITICAL· v3
9.3 HIGH· v2
Heap-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.09 allows remote attackers to execute arbitrary code via a long vlp filename.
CVE-2015-7905
1Unitronics
1Visilogic Oplc Ide
May 6, 2026
Nov 13, 2015
N/A· v4
N/A· v3
7.5 HIGH· v2
Unitronics VisiLogic OPLC IDE before 9.8.02 allows remote attackers to execute unspecified code via unknown vectors.
CVE-2015-6478
1Unitronics
1Visilogic Oplc Ide
May 6, 2026
Nov 13, 2015
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict access to ActiveX controls, which allows remote attackers to have an unspecified impact via a crafted web site.