CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

38 matches found

Tenable Nessus•added 2026/03/31 12:0 a.m.•2 views

Delta Electronics COMMGR Stack-based Buffer Overflow (CVE-2026-3630)

Binary data deltaelectronicscommgrcve-2026-3630.nbin...

9.8CVSS5.8AI score0.00027EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 11:29 a.m.•5 views

CVE-2021-27480

Delta Industrial Automation COMMGR Versions 1.12 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute remote code...

9.8CVSS7.4AI score0.0049EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-14234

Malware in sbrugna...

9.8CVSS9.4AI score0.0049EPSS

Exploits0References2

Zero Day Initiative•added 2025/09/18 12:0 a.m.•1 views

Delta Electronics COMMGR Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics COMMGR. An attacker must first obtain the ability to compromise a PLC in order to exploit this vulnerability. The specific flaw exists within the handling of packets received from a...

8.8CVSS7.4AI score0.00089EPSS

Exploits0References1

CISA•added 2025/09/04 12:0 p.m.•2 views

CISA Releases Five Industrial Control Systems Advisories

CISA released five Industrial Control Systems ICS advisories on September 4, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-247-01 Honeywell OneWireless Wireless Device Manager WDM ICSA-25-217-01 Mitsubishi...

6.8AI score

Exploits0References5

RedhatCVE•added 2025/08/30 6:17 p.m.•0 views

CVE-2025-53419

Delta Electronics COMMGR has Code Injection vulnerability...

7.8CVSS7.3AI score0.00028EPSS

Exploits0References1

ICS•added 2025/08/28 6:0 a.m.•2 views

Delta Electronics COMMGR

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code. 2. RECOMMENDED PRACTICES CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures. CISA also provides a section for...

8.6CVSS7.9AI score0.00089EPSS

Exploits0References10

NVD•added 2025/08/26 7:15 a.m.•1 views

CVE-2025-53418

Delta Electronics COMMGR has Stack-based Buffer Overflow vulnerability...

8.6CVSS0.00089EPSS

Exploits0References1

Vulnrichment•added 2025/08/26 6:54 a.m.•1 views

CVE-2025-53418 COMMGR Stack-based Buffer Overflow Vulnerability

Delta Electronics COMMGR has Stack-based Buffer Overflow vulnerability...

8.6CVSS7.2AI score0.00089EPSS

Exploits0References1

CVE•added 2025/08/26 6:54 a.m.•11 views

CVE-2025-53418

Delta Electronics COMMGR is affected (versions 2.9.0 and prior) by a Stack-based Buffer Overflow vulnerability, with a related Code Injection flaw, exploitable via crafted .isp files. The issue originates from improper boundary handling and could allow arbitrary code execution. Public details in ...

8.6CVSS6.7AI score0.00089EPSS

Exploits0References1

CNNVD•added 2025/08/26 12:0 a.m.•1 views

Delta Electronics COMMGR 安全漏洞

Delta Electronics COMMGR is a communication management software from Delta Electronics China. A code injection vulnerability exists in Delta Electronics COMMGR, which can be exploited by an attacker to execute arbitrary code on the system...

7.8CVSS8AI score0.00028EPSS

Exploits0References2

CNNVD•added 2025/08/26 12:0 a.m.•0 views

Delta Electronics COMMGR 安全漏洞

Delta Electronics COMMGR is a communication management software from Delta Electronics China. Delta Electronics COMMGR suffers from a command injection vulnerability due to improper boundary checking when creating specially designed .isp files, no details of the vulnerability are available at thi...

8.6CVSS7.5AI score0.00089EPSS

Exploits0References2

Zero Day Initiative•added 2025/06/17 12:0 a.m.•1 views

Delta Electronics COMMGR Insufficient Randomization Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Delta Electronics COMMGR. Authentication is not required to exploit this vulnerability. The specific flaw exists within the PLC simulator service, which listens on TCP port 8895 by default. By...

9.8CVSS9.6AI score0.00435EPSS

Exploits0References1

CNVD•added 2025/04/22 12:0 a.m.•0 views

Delta Electronics COMMGR Code Execution Vulnerability

Delta Electronics COMMGR is a communication management software from Delta Electronics China. A code execution vulnerability exists in Delta Electronics COMMGR that stems from insufficient randomness in session ID generation, which can be exploited by an attacker to brute-force break the session ...

9.8CVSS7.1AI score0.00435EPSS

Exploits0References1

RedhatCVE•added 2025/04/18 3:58 a.m.•17 views

CVE-2025-3495

Delta Electronics COMMGR v1 and v2 uses insufficiently randomized values to generate session IDs CWE-338. An attacker could easily brute force a session ID and load and execute arbitrary code...

9.8CVSS7.4AI score0.00435EPSS

Exploits0References4

Vulnrichment•added 2025/04/16 3:10 a.m.•3 views

CVE-2025-3495 COMMGR - Insufficient Randomization Authentication Bypass

Delta Electronics COMMGR v1 and v2 uses insufficiently randomized values to generate session IDs CWE-338. An attacker could easily brute force a session ID and load and execute arbitrary code...

9.8CVSS9.8AI score0.00435EPSS

Exploits0References2

CVE•added 2025/04/16 3:10 a.m.•42 views

CVE-2025-3495

CVE-2025-3495 affects Delta Electronics COMMGR v1 and v2. The root cause is insufficiently randomized session IDs (CWE-338) in COMMGR, allowing brute-force traversal to load and execute arbitrary code. Several connected sources corroborate this issue, including CVE entries and PT Security notes r...

9.8CVSS9.7AI score0.00435EPSS

Exploits0References2

CISA•added 2025/04/15 12:0 p.m.•3 views

CISA Releases Nine Industrial Control Systems Advisories

CISA released nine Industrial Control Systems ICS advisories on April 15, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-105-01 Siemens Mendix Runtime ICSA-25-105-02 Siemens Industrial Edge Device Kit...

7AI score

Exploits0References9

Positive Technologies•added 2025/04/15 12:0 a.m.•1 views

PT-2025-16552 · Delta Electronics · Commgr

Name of the Vulnerable Software and Affected Versions: Delta Electronics COMMGR versions 1 through 2 Description: The issue is related to insufficiently randomized values used to generate session IDs, which could allow an attacker to brute force a session ID and potentially load and execute...

10CVSS7AI score0.00435EPSS

Exploits0References12

NVD•added 2021/04/27 12:15 p.m.•11 views

CVE-2021-27480

Delta Industrial Automation COMMGR Versions 1.12 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute remote code...

9.8CVSS0.0049EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by