Lucene search
K

1577 matches found

Circl
Circl
added 2026/04/21 10:0 a.m.4 views

CVE-2026-27843

creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 01:17:38+00:00| seen| Telegram/y1cMF7MSs4iKIz6Tjc1sXNbleG9GlRmZjivyp4DyaM6b6bo 2026-04-24 04:30:27+00:00| seen|...

9.2CVSS4.8AI score0.00518EPSS
Exploits0References5
Circl
Circl
added 2026/04/21 10:0 a.m.5 views

CVE-2026-40623

creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 01:18:04+00:00| seen| Telegram/S8ox9UMDIAxfwdU4Vdf7uPBMfOmVZYt0JmzSEaP85k3wGMs 2026-04-24 23:02:28+00:00| seen|...

8.1CVSS4.8AI score0.00324EPSS
Exploits0References2
Circl
Circl
added 2026/04/21 10:0 a.m.6 views

CVE-2026-39462

creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 01:18:04+00:00| seen| Telegram/S8ox9UMDIAxfwdU4Vdf7uPBMfOmVZYt0JmzSEaP85k3wGMs 2026-04-24 06:00:29+00:00| seen|...

9.3CVSS5.8AI score0.0038EPSS
Exploits0References5
Circl
Circl
added 2026/04/21 10:0 a.m.3 views

CVE-2026-40630

creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 00:00:41+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mk77ucziwa2c 2026-04-24 00:00:42+00:00| seen|...

9.8CVSS5.8AI score0.00712EPSS
Exploits0References6
Circl
Circl
added 2026/04/21 10:0 a.m.3 views

CVE-2026-40620

creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 01:18:04+00:00| seen| Telegram/S8ox9UMDIAxfwdU4Vdf7uPBMfOmVZYt0JmzSEaP85k3wGMs 2026-04-24 03:00:26+00:00| seen|...

9.8CVSS5.8AI score0.00546EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.10 views

Nomios GREENmod 安全漏洞

Nomios GREENmod is an industrial control system developed by the Polish company Nomios, designed for monitoring and managing energy and power infrastructure. Nomios GREENmod has a security vulnerability, which stems from incorrect configuration of the name pipe access control list, potentially...

6.9CVSS5.8AI score0.00426EPSS
Exploits0References1
Circl
Circl
added 2026/04/16 10:0 a.m.7 views

CVE-2026-31927

creationtimestamp| type| source ---|---|--- 2026-04-16 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-106-03...

4.9CVSS5.7AI score0.00354EPSS
Exploits0References1
Securelist
Securelist
added 2026/04/15 12:30 p.m.12 views

Threat landscape for industrial automation systems in Q4 2025

Statistics across all threats The percentage of ICS computers on which malicious objects were blocked has been decreasing since the beginning of 2024. In Q4 2025, it was 19.7%. Over the past three years, the percentage has decreased by 1.36 times, and by 1.25 times since Q4 2023. Percentage of IC...

5.8AI score
Exploits0
OSV
OSV
added 2026/04/15 10:10 a.m.5 views

RHSA-2026:8093 Red Hat Security Advisory: pcs security update

Bulletin has no description...

5.3CVSS5.7AI score0.00375EPSS
Exploits0References8
EUVD
EUVD
added 2026/04/09 12:31 p.m.7 views

EUVD-2026-20884

Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...

8.8CVSS6AI score0.0027EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/09 12:31 p.m.4 views

EUVD-2026-20888

Hydrosystem Control System saves sensitive information into a log file. Critically, user credentials are logged allowing the attacker to obtain further authorized access into the system. Combined with vulnerability CVE-2026-34184, these sensitive information could be accessed by an unauthorized...

8.8CVSS5.9AI score0.0027EPSS
Exploits0References3
NVD
NVD
added 2026/04/09 10:16 a.m.3 views

CVE-2026-4901

Hydrosystem Control System saves sensitive information into a log file. Critically, user credentials are logged allowing the attacker to obtain further authorized access into the system. Combined with vulnerability CVE-2026-34184, these sensitive information could be accessed by an unauthorized...

6.9CVSS0.00259EPSS
Exploits0References2
NVD
NVD
added 2026/04/09 10:16 a.m.3 views

CVE-2026-34185

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.8CVSS0.0029EPSS
Exploits0References2
NVD
NVD
added 2026/04/09 10:16 a.m.3 views

CVE-2026-34184

Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...

9.1CVSS0.0027EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/09 9:41 a.m.22 views

CVE-2026-34185 SQL Injection in Hydrosystem Control System

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.7CVSS0.0029EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/09 9:41 a.m.2 views

CVE-2026-34185 SQL Injection in Hydrosystem Control System

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.7CVSS6.1AI score0.0029EPSS
Exploits0References2
CVE
CVE
added 2026/04/09 9:41 a.m.11 views

CVE-2026-34185

CVE-2026-34185 — SQL Injection in Hydrosystem Control System Affected product: Hydrosystem Control System.Vulnerability: SQL Injection across most scripts and input parameters due to lack of protections.Impact: With authentication, an attacker can inject arbitrary SQL commands, potentially gainin...

8.8CVSS6.1AI score0.0029EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/09 9:41 a.m.3 views

CVE-2026-34185

Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...

8.7CVSS6.1AI score0.0029EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/09 9:41 a.m.27 views

CVE-2026-34184 Missing Authorization in Hydrosystem Control System

Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...

8.8CVSS0.0027EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/09 9:41 a.m.3 views

CVE-2026-34184 Missing Authorization in Hydrosystem Control System

Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...

8.8CVSS6AI score0.0027EPSS
Exploits0References2
Rows per page
Query Builder