Lucene search
K

341 matches found

ICS
ICS
added 2026/03/26 6:0 a.m.9 views

OC Messaging and Custom Messaging Gateway

RISK EVALUATION Successful exploitation of this vulnerability could allow an authenticated low-privileged user to gain access to SMS messages outside of their authorized tenant scope via a crafted company or tenant identifier parameter. 2. RECOMMENDED PRACTICES CISA recommends users take...

8.1CVSS5.8AI score0.00261EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2026/03/24 6:22 p.m.4 views

CVE-2026-33554

A flaw was found in FreeIPMI. The ipmi-oem program is used to send Intelligent Platform Management Interface IPMI OEM commands for specific hardware vendors to retrieve specific information from the hardware. A malicious server can reply with crafted response messages and cause buffer overflows...

8.8CVSS6AI score0.00403EPSS
Exploits0References7
NVD
NVD
added 2026/03/19 10:16 p.m.3 views

CVE-2026-32038

OpenClaw before 2026.2.24 contains a sandbox network isolation bypass vulnerability that allows trusted operators to join another container's network namespace. Attackers can configure the docker.network parameter with container: values to reach services in target container namespaces and bypass...

9.8CVSS0.00265EPSS
Exploits0References2
CVE
CVE
added 2026/03/19 10:7 p.m.13 views

CVE-2026-32038

OpenClaw before 2026.2.24 contains a sandbox network isolation bypass allowing a trusted operator to join another container’s network namespace by configuring the docker.network parameter with container: values. This enables access to services in the target container namespaces and bypasses netwo...

9.8CVSS5.8AI score0.00265EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/03/19 10:7 p.m.3 views

EUVD-2026-13324

OpenClaw before 2026.2.24 contains a sandbox network isolation bypass vulnerability that allows trusted operators to join another container's network namespace. Attackers can configure the docker.network parameter with container: values to reach services in target container namespaces and bypass...

9.8CVSS5.8AI score0.00265EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/19 10:7 p.m.4 views

CVE-2026-32038 OpenClaw - Sandbox Network Isolation Bypass via docker.network=container Parameter

OpenClaw before 2026.2.24 contains a sandbox network isolation bypass vulnerability that allows trusted operators to join another container's network namespace. Attackers can configure the docker.network parameter with container: values to reach services in target container namespaces and bypass...

9.8CVSS5.8AI score0.00265EPSS
Exploits0References2
ICS
ICS
added 2026/03/12 6:0 a.m.6 views

Trane Tracer SC, Tracer SC+, and Tracer Concierge

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information, execute arbitrary commands, or perform a denial-of-service on the product. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

5.9AI score
Exploits0References13
ICS
ICS
added 2026/03/10 7:0 a.m.5 views

Schneider Electric EcoStruxure Data Center Expert

GENERAL SECURITY RECOMMENDATIONS Schneider Electric strongly recommends the following industry cybersecurity best practices: Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized...

7.5CVSS6.5AI score0.00679EPSS
Exploits0References11
ICS
ICS
added 2026/03/10 7:0 a.m.6 views

Schneider Electric EcoStruxure Automation Expert

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

8.2CVSS6.2AI score0.00227EPSS
Exploits0References11
ICS
ICS
added 2026/03/10 7:0 a.m.5 views

Schneider Electric Modicon M241, M251, and M262

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

6.9CVSS5.9AI score0.00455EPSS
Exploits0References11
ICS
ICS
added 2026/03/10 6:0 a.m.9 views

Honeywell IQ4 Series BMS Controller (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthorized attacker to access controller management settings, control components, disclose information, or cause a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to...

10CVSS5.8AI score0.05585EPSS
Exploits1References13
Talos Blog
Talos Blog
added 2026/03/05 7:0 p.m.10 views

Patch, track, repeat: The 2025 CVE retrospective

Welcome to this week's edition of the Threat Source newsletter. It's time to look back at a year that pushed the vulnerability landscape to new heights. I'll admit this retrospective is arriving a bit later than planned. With 48,196 CVEs in 2025 a stunning 132 vulnerabilities per day, the analysi...

7.8CVSS6AI score0.01068EPSS
Exploits3
ICS
ICS
added 2026/03/05 7:0 a.m.13 views

Delta Electronics CNCSoft-G2

RISK EVALUATION Successful exploitation of this vulnerability could result in an attacker achieving remote code execution on the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize network...

7.8CVSS6.5AI score0.00351EPSS
Exploits0References13
EUVD
EUVD
added 2026/03/04 6:31 p.m.6 views

EUVD-2026-9415

A technique has been identified that adapts a known port-stealing method to Wi-Fi environments that use multiple BSSIDs. By leveraging the relationship between BSSIDs and their associated virtual ports, an attacker could potentially bypass inter-BSSID isolation controls. Successful exploitation m...

5.4CVSS5.8AI score0.00259EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/04 4:10 p.m.37 views

CVE-2026-23809 MAC Address Spoofing leads to Inter-BSSID Isolation Bypass Resulting in Traffic Redirection

A technique has been identified that adapts a known port-stealing method to Wi-Fi environments that use multiple BSSIDs. By leveraging the relationship between BSSIDs and their associated virtual ports, an attacker could potentially bypass inter-BSSID isolation controls. Successful exploitation m...

5.4CVSS0.00259EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/03/04 12:0 a.m.2 views

Impact of 5G SA Logical Vulnerabilities on UAV Communications: Threat Models and Testbed Evaluation

This paper examines how logical vulnerabilities in 5G Standalone networks affect UAV command and control communication. The study looks at three attacker positions in the architecture: a malicious user equipment UE connected to the same logical network as the UAV, an attacker with access to the 5...

5.8AI score
Exploits0
ICS
ICS
added 2026/03/03 6:0 a.m.7 views

Everon OCPP Backends

RISK EVALUATION Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. 2. RECOMMENDED PRACTICES CISA recommends users take defensive...

6AI score
Exploits0References11
ICS
ICS
added 2026/02/26 7:0 a.m.8 views

CloudCharge cloudcharge.se

RISK EVALUATION Successful exploitation of these vulnerabilities could allow attackers to impersonate charging stations, hijack sessions, suppress or misroute legitimate traffic to cause large-scale denial of service, and manipulate data sent to the backend. 2. RECOMMENDED PRACTICES CISA...

5.9AI score
Exploits0References11
ICS
ICS
added 2026/02/26 7:0 a.m.3 views

Pelco, Inc. Sarix Pro 3 Series IP Cameras

RISK EVALUATION Successful exploitation of this vulnerability could allow attackers to gain unauthorized access to sensitive device data, bypass surveillance controls, and expose facilities to privacy breaches, operational risks, and regulatory compliance issues. 2. RECOMMENDED PRACTICES CISA...

8.7CVSS5.5AI score0.00348EPSS
Exploits0References11
ICS
ICS
added 2026/02/24 7:0 a.m.7 views

InSAT MasterSCADA BUK-TS

RISK EVALUATION Successful exploitation of these vulnerabilities may allow remote code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize network exposure for all control system...

9.8CVSS6.3AI score0.00538EPSS
Exploits0References11
Rows per page
Query Builder