Yenting Lee

**Name of the Vulnerable Software and Affected Versions** FANUC ROBOGUIDE-HandlingPRO versions 9 Rev.ZD and prior **Description** The issue allows an attacker to remotely read files on the system running the affected software due to a path traversal. **Recommendations** For FANUC ROBOGUIDE-HandlingPRO versions 9 Rev.ZD and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HIWIN Robot System Software version 3.3.21.9869 **Description** The issue arises from the software's failure to properly address the terminated command source. This allows an attacker to craft code that can disconnect the HIWIN Robot System Software (HRSS) and the controller, resulting in a denial-of-service condition. **Recommendations** For HIWIN Robot System Software version 3.3.21.9869, consider temporarily restricting access to the command source to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOYOPUC-PC10 Series (affected versions not specified) TOYOPUC-Plus Series (affected versions not specified) TOYOPUC-PC3J/PC2J Series (affected versions not specified) TOYOPUC-Nano Series (affected versions not specified) **Description** The affected products may not be able to properly process an ICMP flood, which may allow an attacker to deny Ethernet communications between affected devices. **Recommendations** For TOYOPUC-PC10 Series, consider implementing network traffic filtering to minimize the risk of ICMP flood attacks until a patch is available. For TOYOPUC-Plus Series, restrict access to the Ethernet network to minimize the risk of exploitation. For TOYOPUC-PC3J/PC2J Series, consider disabling ICMP protocol support as a temporary workaround until a patch is available. For TOYOPUC-Nano Series, avoid using the affected devices in networks that are exposed to potential ICMP flood attacks until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.