1577 matches found
CVE-2026-27843
creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 01:17:38+00:00| seen| Telegram/y1cMF7MSs4iKIz6Tjc1sXNbleG9GlRmZjivyp4DyaM6b6bo 2026-04-24 04:30:27+00:00| seen|...
CVE-2026-40623
creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 01:18:04+00:00| seen| Telegram/S8ox9UMDIAxfwdU4Vdf7uPBMfOmVZYt0JmzSEaP85k3wGMs 2026-04-24 23:02:28+00:00| seen|...
CVE-2026-39462
creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 01:18:04+00:00| seen| Telegram/S8ox9UMDIAxfwdU4Vdf7uPBMfOmVZYt0JmzSEaP85k3wGMs 2026-04-24 06:00:29+00:00| seen|...
CVE-2026-40630
creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 00:00:41+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mk77ucziwa2c 2026-04-24 00:00:42+00:00| seen|...
CVE-2026-40620
creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 01:18:04+00:00| seen| Telegram/S8ox9UMDIAxfwdU4Vdf7uPBMfOmVZYt0JmzSEaP85k3wGMs 2026-04-24 03:00:26+00:00| seen|...
Nomios GREENmod 安全漏洞
Nomios GREENmod is an industrial control system developed by the Polish company Nomios, designed for monitoring and managing energy and power infrastructure. Nomios GREENmod has a security vulnerability, which stems from incorrect configuration of the name pipe access control list, potentially...
CVE-2026-31927
creationtimestamp| type| source ---|---|--- 2026-04-16 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-106-03...
Threat landscape for industrial automation systems in Q4 2025
Statistics across all threats The percentage of ICS computers on which malicious objects were blocked has been decreasing since the beginning of 2024. In Q4 2025, it was 19.7%. Over the past three years, the percentage has decreased by 1.36 times, and by 1.25 times since Q4 2023. Percentage of IC...
RHSA-2026:8093 Red Hat Security Advisory: pcs security update
Bulletin has no description...
EUVD-2026-20884
Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...
EUVD-2026-20888
Hydrosystem Control System saves sensitive information into a log file. Critically, user credentials are logged allowing the attacker to obtain further authorized access into the system. Combined with vulnerability CVE-2026-34184, these sensitive information could be accessed by an unauthorized...
CVE-2026-4901
Hydrosystem Control System saves sensitive information into a log file. Critically, user credentials are logged allowing the attacker to obtain further authorized access into the system. Combined with vulnerability CVE-2026-34184, these sensitive information could be accessed by an unauthorized...
CVE-2026-34185
Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...
CVE-2026-34184
Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...
CVE-2026-34185 SQL Injection in Hydrosystem Control System
Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...
CVE-2026-34185 SQL Injection in Hydrosystem Control System
Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...
CVE-2026-34185
CVE-2026-34185 — SQL Injection in Hydrosystem Control System Affected product: Hydrosystem Control System.Vulnerability: SQL Injection across most scripts and input parameters due to lack of protections.Impact: With authentication, an attacker can inject arbitrary SQL commands, potentially gainin...
CVE-2026-34185
Hydrosystem Control System is vulnerable to SQL Injection across most scripts and input parameters. Because no protections are in place, an authenticated attacker can inject arbitrary SQL commands, potentially gaining full control over the database.This issue was fixed in Hydrosystem Control Syst...
CVE-2026-34184 Missing Authorization in Hydrosystem Control System
Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...
CVE-2026-34184 Missing Authorization in Hydrosystem Control System
Hydrosystem Control System does not enforce authorization for some directories. This allows an unauthorized attacker to read all files in these directories and even execute some of them. Critically the attacker could run PHP scripts directly on the connected database.This issue was fixed...