Hitachi Energy Lumada APM

1. EXECUTIVE SUMMARY CVSS v3 5.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: Lumada APM Vulnerability: Improper Access Control 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain unauthorized access to any...

Johnson Controls Metasys

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Johnson Controls Equipment: Metasys ADS/ADX/OAS Servers Vulnerability: Insufficiently Protected Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could result in exposed credentials in plain text...

RONDS Equipment Predictive Maintenance Solution

1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: RONDS Equipment: Equipment Predictive Maintenance EPM Vulnerabilities: Exposure of Sensitive Information to an Unauthorized Actor, Path Traversal 2. RISK EVALUATION Successful exploitation of these...

CISA Releases Three Industrial Systems Control Advisories

CISA released three Industrial Control Systems ICS advisories on January 5, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...

CVE-2020-12069

creationtimestamp| type| source ---|---|--- 2022-12-26 22:40:55+00:00| seen| https://t.me/cibsecurity/55365 2025-04-14 16:53:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11651 2026-03-17 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-076-01...

CISA Releases Four Industrial Control Systems Advisories

CISA released four Industrial Control Systems ICS advisories on December 22, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for...

Omron CX-Programmer

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Omron Equipment: CX-Programmer Vulnerability: Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of this vulnerability could allow arbitrary code execution or loss of sensitive information if a user opens a...

Rockwell Automation GuardLogix and ControlLogix controllers

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: GuardLogix, ControlLogix, Compact Logix, and Compact GaurdLogix controllers Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this...

Samba Issues Security Updates to Patch Multiple High-Severity Vulnerabilities

Samba has released software updates to remediate multiple vulnerabilities that, if successfully exploited, could allow an attacker to take control of affected systems. The high-severity flaws, tracked as CVE-2022-38023, CVE-2022-37966, CVE-2022-37967, and CVE-2022-45141, have been patched in...

CISA Consolidates Twitter Accounts

CISA has consolidated its social media presence on Twitter. Three accounts — @ICSCERT, @Cyber, and @CISAInfraSec — are no longer active. Additionally, the @USCERTgov Twitter account is now renamed @CISACyber. The following current active Twitter accounts will include posts on content previously...

CISA Releases Three Industrial Control Systems Advisories

CISA has released three 3 Industrial Control Systems ICS advisories on December 13, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories...

Siemens部分产品 加密问题漏洞

Siemens RUGGEDCOM and Siemens SCALANCE are both products of Siemens, Germany.Siemens RUGGEDCOM is a communications device that provides fast and reliable communications for the power, transportation, oil and gas and other industries. Siemens RUGGEDCOM is a communications device that provides fast...

CISA Releases Three Industrial Control Advisories

CISA has released three 3 Industrial Control Systems ICS advisories on 08 December 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories f...

CISA Releases Three Industrial Control Systems Advisories

CISA has released three 3 Industrial Control Systems ICS advisories on December 1, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories f...

CVE-2022-45868

creationtimestamp| type| source ---|---|--- 2022-11-24 00:14:04+00:00| seen| https://t.me/cibsecurity/53459 2025-09-18 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-261-04...

CISA Releases Two Industrial Control Systems Advisories

CISA has released two 2 Industrial Control Systems ICS advisories on November 17, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for...

CISA Releases Twenty Industrial Control Systems Advisories

CISA has released twenty 20 Industrial Control Systems ICS advisories on November 10, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisorie...

Siemens SIPLUS TIM 1531 IRC 安全漏洞

The TIM 1531 IRC is a communication module for SIMATIC S7-1500, S7-400, S7-300. The Siemens TIM 1531 IRC suffers from a number type miscommunication vulnerability that can be exploited by an attacker to cause a denial of service condition on an affected device...

CISA Releases One Industrial Control Systems Advisory

CISA released one Industrial Control Systems ICS advisory on November 1, 2022. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisory for technical...

CVE-2022-41974

creationtimestamp| type| source ---|---|--- 2022-10-26 04:06:43+00:00| seen| https://t.me/ctinow/71207 2022-10-27 06:24:09+00:00| seen| https://t.me/proxybar/1110 2022-10-28 17:12:13+00:00| published-proof-of-concept| https://t.me/crackcodes/1302 2022-11-06 00:36:05+00:00|...