19 matches found
CVE-2019-14201
creationtimestamp| type| source ---|---|--- 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-16...
CVE-2026-35064
creationtimestamp| type| source ---|---|--- 2026-04-21 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-12 2026-04-24 01:17:38+00:00| seen| Telegram/y1cMF7MSs4iKIz6Tjc1sXNbleG9GlRmZjivyp4DyaM6b6bo 2026-04-25 00:00:37+00:00| seen|...
Advantech WebAccess/SCADA SQL注入漏洞
Advantech WebAccess/SCADA is a set of SCADA software based on browser architecture from Advantech, China. The software supports dynamic graphical display and real-time data control, and provides remote control and management of automation equipment. An SQL injection vulnerability exists in...
Siemens TeleControl Server Basic SQL注入漏洞
Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from an SQL injection vulnerability that originates from an internal method UpdateConnectionVariablesWithImport, which can be exploited by an attacker to bypass...
WAGO Security Breach
WAGO is a 750-88x series programmable logic controller from WAGO, Germany. The device is designed for use in industrial environments as an electronic system for the operation of digital algorithms. A security vulnerability exists in WAGO. An attacker could use this vulnerability to access an...
Hitachi Energy RTU500 输入验证错误漏洞
Hitachi Energy RTU500 is a series of industrial control components from Hitachi, Ltd Hitachi, Japan. A security vulnerability exists in the Hitachi Energy RTU500 Series that stems from a lack of input data validation, resulting in a buffer overflow vulnerability in the HCI IEC 60870-5-104 functio...
Siemens Tecnomatix Plant Simulation 安全漏洞
Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens, Germany, that uses discrete-event simulation to analyze and optimize throughput and thereby improve manufacturing system performance. A type confusion vulnerability exists in Siemens Tecnomatix Plant Simulation, whi...
OMRON Corporation 缓冲区错误漏洞
OMRON Corporation is an industrial control product. A security vulnerability exists in OMRON Corporation, no information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...
Interactive Graphical SCADA System Data Server 安全漏洞
Schneider Electric Interactive Graphical SCADA System IGSS is a SCADA Data Acquisition and Supervisory System system for monitoring and controlling industrial processes from Schneider Electric, France. An initialization error vulnerability exists in the Schneider Electric Interactive Graphical...
B&r Automation APROL SQL Injection Vulnerability
B&r Automation APROL is a Linux-based process control system for industrial control applications from B&r Automation Australia. A SQL injection vulnerability exists in versions prior to B&R Industrial Automation APROL R4.2 V7.08, which makes EnMon PHP scripts susceptible to SQL injection attacks...
Denial of Service Vulnerability in Mitsubishi Electric Corporation GX Works2 (CNVD-2020-49074 )
GX Work2 is a PLC programming software developed by Mitsubishi Electric Automation Co., Ltd. for PLC design, debugging, maintenance and other work, which is widely used in electric power, machinery manufacturing, iron and steel, petroleum, chemical and other industrial control fields. A denial of...
ABB System 800xA Base License Issue Vulnerability
ABB System 800xA Base is a distributed control system from ABB Switzerland for the industrial control industry. An authorization issue vulnerability exists in ABB System 800xA Base. An attacker could use this vulnerability to read and modify registry settings related to control system...
Unauthorized Access Vulnerability in MCGS Touchscreen TPC1061Ti
MCGS touch screen TPC1061Ti is an industrial HMI developed by Shenzhen Kunlun Tongshi Technology Co., Ltd, which is widely used in industrial control field. MCGS Touch Panel TPC1061Ti has an unauthorized access vulnerability that can be exploited by attackers to gain unauthorized access and perfo...
Schneider Electric Modicon M340 PLC Module Denial of Service Vulnerability
Schneider Electric M340 PLC is a modular general-purpose controller from Schneider for the manufacturing industry. It is widely used in tobacco, petrochemical, water and other important industrial control sites. A denial of service vulnerability exists in the Schneider Electric M340 PLC CPU. The...
SIMATICS7-1200 and SIMATICS7-1500CPU families privilege access vulnerability
The Simatic S7-1200 CPU and Simatic S7-1500 CPU families are used for discrete and continuous control in industrial environments, such as manufacturing, food and beverage, and the chemical industry. A man-in-the-middle attack vulnerability exists in the SIMATICS7-1200 and SIMATICS7-1500 CPU...
CVE-2018-12130
creationtimestamp| type| source ---|---|--- 2019-05-15 07:31:51+00:00| exploited| https://t.me/antichat/4926 2019-05-15 09:46:28+00:00| seen| https://t.me/cybershit/488 2019-05-16 01:06:01+00:00| seen| https://t.me/QubesOS/339 2026-01-20 11:00:00+00:00| seen|...
Honeywell XL Web II Controller plaintext stored password vulnerability (CNVD-2017-00914)
Honeywell XL Web Controller is a web-based SCADA system. A plaintext stored password vulnerability exists in Honeywell XL Web II Controller, which can be exploited by an attacker to obtain a user's password...
Meteocontrol WEB'log Information Disclosure Vulnerability (CNVD-2016-03190)
Meteocontrol WEB'log is a web-based SCADA system that provides energy and power configuration management functions using different connected devices. Several Meteocontrol WEB'log products store information in clear text, allowing remote attackers to exploit vulnerabilities to obtain sensitive...
Ecava IntegraXor HMI Privilege Bypass Vulnerability
Ecava IntegraXor is a set of Web-based tools for creating and running HMI interfaces for SCADA systems. The Ecava IntegraXor HMI fails to properly process specific elements of input, allowing remote attackers to exploit the vulnerability to bypass security restrictions...