CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1488 matches found

ICS•added 2026/01/22 7:0 a.m.•5 views

Johnson Controls Inc. iSTAR Configuration Utility (ICU) tool

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a failure within the operating system of the machine hosting the ICU tool. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this...

7.1CVSS5.7AI score0.0039EPSS

Exploits0References13

ICS•added 2026/01/22 7:0 a.m.•5 views

Weintek cMT X Series HMI EasyWeb Service

RISK EVALUATION Successful exploitation of these vulnerabilities could allow a low-level user to alter privileges and gain full control to the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as:...

5.7AI score

Exploits0References13

Circl•added 2026/01/19 7:26 p.m.•7 views

CVE-2025-11043

creationtimestamp| type| source ---|---|--- 2026-01-19 19:26:52+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/control-systems-abb-security-advisory-av26-039 2026-05-05 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-125-04...

9.1CVSS5.3AI score0.00206EPSS

Exploits0References2

Circl•added 2026/01/19 7:26 p.m.•4 views

CVE-2025-11044

8.9CVSS5.3AI score0.00313EPSS

Exploits0References2

Packet Storm News•added 2026/01/13 12:0 a.m.•4 views

Baiting AI: Deceptive Adversary against AI-Protected Industrial Infrastructures

This paper explores a new cyber-attack vector targeting Industrial Control Systems ICS, particularly focusing on water treatment facilities. Developing a new multi-agent Deep Reinforcement Learning DRL approach, adversaries craft stealthy, strategically timed, wear-out attacks designed to subtly...

7AI score

Exploits0

Circl•added 2026/01/07 6:6 p.m.•4 views

CVE-2025-4675

creationtimestamp| type| source ---|---|--- 2026-01-07 18:06:41+00:00| seen| Telegram/z4Hdig2Y-CzYhBdtVlGTwJ9KW9iSWl3bFYnRlWuZ8V2CdM 2026-01-08 19:06:02+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/control-systems-abb-security-advisory-av26-011 2026-05-12 10:00:00+00:00| seen|...

7.1CVSS5.8AI score0.00182EPSS

Exploits0References2

CISA•added 2025/12/30 12:0 p.m.•5 views

CISA Releases Two Industrial Control Systems Advisories

CISA released two Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-364-01: WHILL C2 Wheelchairs ICSA-25-345-03: AzeoTech DAQFactory Update A CISA encourages users and...

6.6AI score

Exploits0References2

ICS•added 2025/12/30 7:0 a.m.•4 views

WHILL Model C2 Electric Wheelchairs and Model F Power Chairs (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker within Bluetooth range to take control over the product. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize...

9.8CVSS6AI score0.05494EPSS

Exploits0References14

RedhatCVE•added 2025/12/27 4:33 a.m.•5 views

CVE-2025-52599

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered Inadequate of permission management for camera guest account. The manufacturer has released patch firmware for the flaw, please refer to the...

6.5CVSS6.8AI score0.00212EPSS

Exploits0References1

RedhatCVE•added 2025/12/27 4:33 a.m.•10 views

CVE-2025-52601

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. T...

7.8CVSS6.8AI score0.00091EPSS

Exploits0References1

RedhatCVE•added 2025/12/27 4:33 a.m.•3 views

CVE-2025-52598

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has found a flaw that camera's client service does not perform certificate validation. The manufacturer has released patch firmware for the flaw, please refer to the...

6.3CVSS6.8AI score0.00173EPSS

Exploits0References1

NVD•added 2025/12/26 5:16 a.m.•4 views

CVE-2025-8075

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered that validation of incoming XML format request messages is inadequate. This vulnerability could allow an attacker to XSS on the user's browser. The...

5.8CVSS0.00181EPSS

Exploits0References1

OSV•added 2025/12/26 5:16 a.m.•5 views

CVE-2025-52599

6.5CVSS5.8AI score0.00212EPSS

Exploits0References1

OSV•added 2025/12/26 5:16 a.m.•2 views

CVE-2025-52601

7.8CVSS5.8AI score0.00091EPSS

Exploits0References1

NVD•added 2025/12/26 5:16 a.m.•6 views

CVE-2025-52601

7.8CVSS0.00091EPSS

Exploits0References1

NVD•added 2025/12/26 5:16 a.m.•5 views

CVE-2025-52598

6.3CVSS0.00173EPSS

Exploits0References1

EUVD•added 2025/12/26 4:31 a.m.•3 views

EUVD-2025-205418

5.8CVSS5.6AI score0.00181EPSS

Exploits0References2

Vulnrichment•added 2025/12/26 4:31 a.m.•2 views

CVE-2025-8075 Improper Input Validation

5.8CVSS6AI score0.00181EPSS

Exploits0References1

CVE•added 2025/12/26 4:31 a.m.•15 views

CVE-2025-8075

CVE-2025-8075 (Hanwha Vision cameras) : Nozomi Networks Labs reports that validation of incoming XML format requests is insufficient, enabling cross-site scripting (XSS) in the user’s browser. Tenable/Red Hat/NVD records reflect this vulnerability as affecting Hanwha Vision camera platforms; a ma...

5.8CVSS5.6AI score0.00181EPSS

Exploits0References1Affected Software1

EUVD•added 2025/12/26 4:29 a.m.•2 views

EUVD-2025-205419

6.3CVSS6AI score0.00091EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by