CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/04/08 1:23 p.m.•5 views

CVE-2025-14816 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64

Cvelist•added 2026/04/08 1:23 p.m.•17 views

CVE-2025-14816 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64

9.3CVSS0.00101EPSS

ATTACKERKB•added 2026/04/08 1:23 p.m.•4 views

CVE-2025-14816

Exploits0References4Affected Software6

CVE•added 2026/04/08 1:23 p.m.•6 views

CVE-2025-14816

The connected PT-2026-30802 advisory confirms CVE-2025-14816 as a local vulnerability affecting Mitsubishi Electric GENESIS64, ICONICS Suite/MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64 (and related Iconics Digital Solutions variants). The root cause is cleartext storage/display ...

Cvelist•added 2026/04/08 1:15 p.m.•17 views

CVE-2025-14815 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric MobileHMI versions 10.97.3 and prior, Mitsubishi Electric Hyper Historian versions 10.97.3 and...

9.3CVSS0.00101EPSS

CNNVD•added 2026/04/08 12:0 a.m.•7 views

Mitsubishi Electric多款产品安全漏洞

Mitsubishi Electric GENESIS64 and other products are developed by Mitsubishi Electric Corporation of Japan. Mitsubishi Electric GENESIS64 is a SCADA suite. Mitsubishi Electric ICONICS Suite is a monitoring system for digital factories and intelligent buildings. Mitsubishi Electric MobileHMI is a...

Tenable Nessus•added 2026/04/08 12:0 a.m.•0 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006676)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006676 advisory. In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Don't dereference ACPI root object handle Since the commit referenced in the...

5.5CVSS6.4AI score0.00182EPSS

Exploits0References4

Positive Technologies•added 2026/04/07 12:0 a.m.•6 views

PT-2026-30801

9.3CVSS7.3AI score0.00101EPSS

Exploits0References7

OSV•added 2026/04/01 3:14 p.m.•3 views

JLSEC-2026-20

Hyperium Hyper before 0.14.19 does not allow for customization of the maxheaderlistsize method in the H2 third-party software, allowing attackers to perform HTTP2 attacks...

7.5CVSS5.9AI score0.01076EPSS

Exploits1References6

Veeam•added 2026/04/01 12:0 a.m.•9 views

How to Configure krb5.conf for Cross-Domain Hyper-V Cluster Management

Purpose This article documents how to configure the /etc/krb5.conf file on the Veeam Software Appliance VSA to enable Kerberos authentication when managing a Microsoft Hyper-V cluster whose nodes belong to a different Active Directory domain than the backup server. As noted in the VBR 13 User Gui...

5.9AI score

Exploits0Affected Software1

Japan Vulnerability Notes•added 2026/03/31 6:53 a.m.•6 views

Security information for Hitachi Disk Array Systems

Overview CVE-2026-20846 | GDI+ Denial of Service Vulnerability CVE-2026-21222 | Windows Kernel Information Disclosure Vulnerability CVE-2026-21231 | Windows Kernel Elevation of Privilege Vulnerability CVE-2026-21234 | Windows Connected Devices Platform Service Elevation of Privilege Vulnerability...

8.8CVSS6.8AI score0.25835EPSS

Exploits9References25

RedhatCVE•added 2026/03/26 3:13 p.m.•1 views

CVE-2025-59388

A use of hard-coded password vulnerability has been reported to affect Hyper Data Protector. The remote attackers can then exploit the vulnerability to gain unauthorized access. We have already fixed the vulnerability in the following version: Hyper Data Protector 2.3.1.455 and later...

9.8CVSS6.6AI score0.00474EPSS

RedhatCVE•added 2026/03/26 3:4 p.m.•3 views

CVE-2026-25170

Use after free in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7CVSS5.8AI score0.00293EPSS

Zero Day Initiative•added 2026/03/16 12:0 a.m.•2 views

(Pwn2Own) QNAP TS-453E Hyper Data Protector Plugin query_original_file_size SQL Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of QNAP TS-453E. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8CVSS6.2AI score0.00594EPSS

Zero Day Initiative•added 2026/03/16 12:0 a.m.•5 views

(Pwn2Own) QNAP TS-453E Hyper Data Protector Plugin Hard-Coded Credentials Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of QNAP TS-453E devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of Bareos by the Hyper Data Protector Plugin. The issue...

6.3CVSS5.9AI score0.00474EPSS

NVD•added 2026/03/12 2:15 a.m.•0 views

CVE-2025-59388

9.8CVSS0.00474EPSS

Cvelist•added 2026/03/12 1:41 a.m.•20 views

CVE-2025-59388 Hyper Data Protector

8.7CVSS0.00474EPSS

Vulnrichment•added 2026/03/12 1:41 a.m.•1 views

CVE-2025-59388 Hyper Data Protector

8.7CVSS5.8AI score0.00474EPSS