Lucene search
+L

126 matches found

ics
ics
added 2024/12/10 12:0 a.m.36 views

Siemens Engineering Platforms

SUMMARY Affected products contain a local arbitrary code execution vulnerability that could allow an attacker to perform actions against the operation system of that environment. Siemens is preparing fix versions and recommends countermeasures for products where fixes are not, or not yet...

7.3CVSS7.8AI score0.00179EPSS
Exploits0References10
ics
ics
added 2024/12/10 12:0 a.m.12 views

Schneider Electric PowerChute Serial Shutdown

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

6.3CVSS6.8AI score0.00978EPSS
Exploits0References11
ics
ics
added 2024/12/10 12:0 a.m.6 views

Siemens SENTRON Powercenter 1000

SUMMARY SENTRON Powercenter devices are affected by a denial of service vulnerability that can be triggered during BLE Bluetooth Low Energy pairing. Siemens is preparing fix versions and recommends specific countermeasures for products where fixes are not, or not yet available. 2. GENERAL...

6.5CVSS6.7AI score0.00189EPSS
Exploits0References10
cvelist
cvelist
added 2024/12/09 4:31 a.m.25 views

CVE-2024-12357 SourceCodester Best House Rental Management System index.php file inclusion

A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack may be launched remotely. The...

6.9CVSS0.00424EPSS
Exploits0References5
ics
ics
added 2024/11/14 7:0 a.m.12 views

Rockwell Automation Verve Reporting (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could lead to arbitrary code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control system...

9.1CVSS8.1AI score0.01648EPSS
Exploits0References10
ics
ics
added 2024/11/12 7:0 a.m.22 views

Hitachi Energy TRO600

RISK EVALUATION Command injection vulnerability in the Edge Computing UI for the TRO600 series radios that allows for the execution of arbitrary system commands. If exploited, an attacker with write access to the web UI can execute commands on the device with root privileges, far more extensive...

7.2CVSS7.7AI score0.01561EPSS
Exploits0References10
ics
ics
added 2024/11/12 12:0 a.m.24 views

Siemens Solid Edge

SUMMARY Solid Edge is affected by multiple file parsing vulnerabilities that could be triggered when the application reads specially crafted files in various formats such as PAR or PSM format, and by a DLL hijacking vulnerability. This could allow an attacker to crash the application or execute...

7.8CVSS7.6AI score0.0019EPSS
Exploits0References10
ics
ics
added 2024/11/12 12:0 a.m.18 views

Schneider Electric EcoStruxure IT Gateway

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

10CVSS6.7AI score0.00624EPSS
Exploits0References11
ics
ics
added 2024/11/12 12:0 a.m.11 views

Schneider Electric Modicon M340, MC80, and Momentum Unity M1E & EcoStruxure (Update A)

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

7.7CVSS7.2AI score0.00483EPSS
Exploits0References11
ics
ics
added 2024/10/08 4:0 a.m.9 views

Schneider Electric EcoStruxure Power Monitoring Expert (PME) (Update B)

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

7.3CVSS6.9AI score0.00342EPSS
Exploits0References11
ics
ics
added 2024/10/08 12:0 a.m.8 views

Schneider Electric EVlink Home Smart and Schneider Charge

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

8.5CVSS6.8AI score0.00113EPSS
Exploits0References11
ics
ics
added 2024/10/08 12:0 a.m.7 views

Schneider Electric Data Center Expert

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

7.3AI score
Exploits0References11
ics
ics
added 2024/09/10 12:0 a.m.16 views

Schneider Electric EcoStruxure

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

5.4CVSS6.6AI score0.00287EPSS
Exploits0References11
ics
ics
added 2024/09/09 7:0 a.m.6 views

FESTO Didactic CP, MPS 200, and MPS 400 Firmware

GENERAL RECOMMENDATIONS As part of a security strategy, Festo recommends the following general defense measures to reduce the risk of exploits: - Use controllers and devices only in a protected environment to minimize network exposure and ensure that they are not accessible from outside. - Use...

9.8CVSS9.9AI score0.05184EPSS
Exploits0References12
ics
ics
added 2024/07/09 12:0 a.m.17 views

Schneider Electric FoxRTU Station

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

7.8CVSS7.5AI score0.00281EPSS
Exploits0References11
ics
ics
added 2024/07/09 12:0 a.m.11 views

Schneider Electric Wiser Home Controller WHC-5918A

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

9.8CVSS6.7AI score0.00426EPSS
Exploits0References11
ics
ics
added 2024/07/09 12:0 a.m.22 views

Schneider Electric EcoStruxure Foxboro DCS Core Control Services

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

6.8AI score
Exploits0References11
ics
ics
added 2024/07/03 12:30 a.m.19 views

ABB ASPECT System

SUMMARY ABB became aware of vulnerabilities in the product versions listed as affected in the advisory. ASPECT devices are not intended to be internet-facing. A product advisory issued in June 2023 informed cus-tomers of this parameter. An attacker can successfully exploit these vulnerabilities...

7.9AI score
Exploits0References10
ics
ics
added 2024/04/30 12:30 p.m.11 views

Hitachi Energy SDM600

SUMMARY Hitachi Energy is aware of multiple vulnerabilities that affect the SDM600 versions listed below. An attacker who managed to be authenticated to SDM600 and successfully exploit these vulnerabilities could elevate privileges and gain unauthorized access to the system. SDM600 version 1.3.4...

8AI score
Exploits0References9
ics
ics
added 2024/04/30 12:0 a.m.9 views

Hitachi Energy RTU500 Series Product (Update B)

SUMMARY Hitachi Energy is aware of the vulnerability CVE-2024-2617 in the RTU500 Web server component, that affects the RTU500 versions that are listed below. An attacker successfully exploiting this vulnerability could bypass secure update. Please refer to the Recommended Immediate Actions for...

7.2CVSS6.2AI score0.00666EPSS
Exploits0References9
Rows per page
Query Builder