Method include receiving banner information from one or more queries of a network connecting a set of devices, wherein the banner information of one or more of the devices includes common vulnerability and exposure identifiers (CVEs) and the banner information of one or more of the devices does not include a CVE, identifying the devices based on the banner information including classifying devices without known CVEs by a device type, determining vulnerability scores for the devices with known CVEs based on retrieved CVE information, and determining vulnerability scores for the devices without CVEs based on a series of exploitability and impact parameter estimates associated with the device type classifications. Some methods include estimating a cyberattack vulnerability risk for the devices using the determined vulnerability scores.

A PLC system includes a displacement sensor, drives, and a PLC. The PLC system obtains line measurement data including a plurality of pieces of measurement information (1D information) from the displacement sensor and a plurality of pieces of positional information from the drives that are read in accordance with a measurement range and a measurement interval (measurement recording position) defined by the PLC for measuring an object A, and generates 2D shape data.