Huawei EulerOS: Security Advisory for git (EulerOS-SA-2023-1009)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Emerson DeltaV Distributed Control System Insufficient Verification of Data Authenticity (CVE-2022-30260)

Emerson DeltaV Distributed Control System DCS has insufficient verification of firmware integrity an inadequate checksum approach, and no signature. This affects versions before 14.3 of DeltaV M-series, DeltaV S-series, DeltaV P-series, DeltaV SIS, and DeltaV CIOC/EIOC/WIOC IO cards. This plugin...

CVE-2020-12067

creationtimestamp| type| source ---|---|--- 2022-12-26 22:41:03+00:00| seen| https://t.me/cibsecurity/55369 2025-04-14 16:53:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11650 2026-03-17 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01...

CVE-2022-30260

Emerson DeltaV Distributed Control System DCS has insufficient verification of firmware integrity an inadequate checksum approach, and no signature. This affects versions before 14.3 of DeltaV M-series, DeltaV S-series, DeltaV P-series, DeltaV SIS, and DeltaV CIOC/EIOC/WIOC IO cards...

Siemens Simcenter STAR-CCM+

​​As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services ...

Amazon Linux 2022 : git (ALAS2022-2022-236)

The version of git installed on the remote host is prior to 2.37.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-236 advisory. - Git for Windows is a fork of Git containing Windows-specific patches. This vulnerability affects users working on...

The vulnerability of the software package for creating the CX-Position position control system, which is part of the Omron CX-One software suite, allows a perpetrator to execute arbitrary code.

The vulnerability of the software package for creating the CX-Position position control system, which is part of the Omron CX-One software suite, relates to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created file...

Advantech iView

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity/public exploits are available Vendor: Advantech Equipment: iView Vulnerability: SQL Injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to acquire credentials. 3...

CVE-2022-4048

creationtimestamp| type| source ---|---|--- 2022-12-01 09:11:42+00:00| seen| https://t.me/truesecator/3768 2022-12-01 20:15:38+00:00| seen| https://t.me/icscert/664 2023-05-15 14:29:50+00:00| seen| https://t.me/cibsecurity/64102 2025-01-23 20:03:42+00:00| published-proof-of-concept|...

SUSE SLES12 Security Update : git (SUSE-SU-2022:4271-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4271-1 advisory. - Git is an open source, scalable, distributed revision control system. Versions prior to 2.30.6, 2.31.5, 2.32.4, 2.33.5, 2.34.5,...

GE CIMPLICITY HMI/SCADA Software 安全漏洞

GE CIMPLICITY HMI/SCADA Software is an automated industrial platform from General Electric GE. It provides true client-server visualization and control from a single machine to plant locations around the world, helping to manage operations and improve decision making. A buffer overflow...

Red Lion Crimson

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Red Lion Controls Equipment: Crimson Vulnerability: Path Traversal 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to obtain user credential hashes. 3...

[SECURITY] Fedora 37 Update: git-2.38.1-1.fc37

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The git rpm installs common set of tools which are usually using with small amount of dependencies. To install all git packages,...

CISA Warns of Critical Vulnerabilities in 3 Industrial Control System Software

The U.S. Cybersecurity and Infrastructure Security Agency CISA has published three Industrial Control Systems ICS advisories about multiple vulnerabilities in software from ETIC Telecom, Nokia, and Delta Industrial Automation. Prominent among them is a set of three flaws affecting ETIC Telecom's...

Weak Password Vulnerability in Tianqing Application Delivery Control System of Qixing Information Technology Group Co.

Tianqing Application Delivery Control System is equipped with virtualized cloud computing center traffic management solution. A weak password vulnerability exists in the Tianqing Application Delivery Control System of Qixing Information Technology Group Corporation, which can be exploited by...

Haas Automation Controller 安全漏洞

Haas Automation Controller is an industrial control system from Haas Automation, USA. A security vulnerability exists in Haas Automation Controller version 100.20.000.1110, which stems from the fact that communication traffic for the Ethernet Q Command Service is transmitted in clear text, which...

Securing IoT devices against attacks that target critical infrastructure

South Staffordshire PLC, a company that supplies water to over one million customers in the United Kingdom, notified its customers in August of being a target of a criminal cyberattack. This incident highlights the sophisticated threats that critical industries face today. According to South...

Securing IoT devices against attacks that target critical infrastructure

South Staffordshire PLC, a company that supplies water to over one million customers in the United Kingdom, notified its customers in August of being a target of a criminal cyberattack. This incident highlights the sophisticated threats that critical industries face today. According to South...

Cross-site scripting vulnerability in Import Files function of multiple Siemens products

Siemens Desigo PX is a building automation control system from Siemens, a German company. A cross-site scripting vulnerability exists in several Siemens products. The vulnerability stems from an incorrect neutralization of input during web page generation in the Import Files function of the...

Cross-site Request Forgery Vulnerability in Import Files Function of Multiple Siemens Products

Siemens Desigo PX is a building automation control system from Siemens, a German company. A cross-site request forgery vulnerability exists in several Siemens products, stemming from a lack of validation of anti-CSRF tokens or other source checks in the Import Files feature of the "Operation" Web...