Lucene search
K

139 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:33 p.m.4 views

CVE-2021-20028

Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access SRA products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier...

9.8CVSS8.1AI score0.30084EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:42 p.m.7 views

CVE-2021-31589

A cross-site scripting XSS vulnerability has been reported and confirmed for BeyondTrust Secure Remote Access Base Software version 6.0.1 and older, which allows the injection of unauthenticated, specially-crafted web requests without proper sanitization...

6.1CVSS6.1AI score0.28207EPSS
Exploits3References1
ICS
ICS
added 2025/05/15 6:0 a.m.11 views

ECOVACS DEEBOT Vacuum and Base Station (Update A)

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to send malicious updates to the devices or execute code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as:...

7AI score
Exploits0References10
ICS
ICS
added 2025/05/13 4:0 a.m.12 views

Schneider Electric PrismaSeT Active - Wireless Panel Server

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

9.8CVSS7.8AI score0.00333EPSS
Exploits0References11
ICS
ICS
added 2025/05/13 4:0 a.m.11 views

Schneider Electric Modicon Controllers (Update B)

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

8.7CVSS6.5AI score0.00345EPSS
Exploits0References11
ICS
ICS
added 2025/05/13 4:0 a.m.12 views

Schneider Electric Galaxy VS, Galaxy VL, Galaxy VXL (Update A)

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

10CVSS9AI score0.97859EPSS
Exploits36References12
ICS
ICS
added 2025/05/13 12:0 a.m.9 views

Siemens SCALANCE LPE9403

SUMMARY SCALANCE LPE9403 is affected by multiple vulnerabilities which lead to a compromise in availability, integrity and confidentiality. Siemens is preparing fix versions and recommends specific countermeasures for products where fixes are not, or not yet available. 2. GENERAL RECOMMENDATIONS...

8.8AI score
Exploits0References10
ICS
ICS
added 2025/05/13 12:0 a.m.12 views

Siemens Teamcenter Visualization

SUMMARY Siemens Teamcenter Visualization contains a out-of-bound read vulnerability that could be triggered when the application reads files in WRL format. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to crash or potentially...

7.8CVSS7.4AI score0.00152EPSS
Exploits0References10
ICS
ICS
added 2025/05/06 6:0 a.m.10 views

Optigo Networks ONS NC600

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to establish an authenticated connection with the hard-coded credentials and perform OS command executions. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

9.3CVSS6.9AI score0.00608EPSS
Exploits0References10
ICS
ICS
added 2025/04/29 12:30 p.m.14 views

Hitachi Energy Asset Suite

SUMMARY Hitachi Energy is aware multiple vulnerabilities that affects the Asset Suite product versions listed below. If these vulnerabilities are successfully exploited by an attacker, it could have an impact on the confidentiality, integrity, or availability of the product. Please refer to the...

8.6AI score
Exploits0References9
ICS
ICS
added 2025/04/29 6:0 a.m.13 views

Delta Electronics ISPSoft

RISK EVALUATION Successful exploitation of these vulnerabilities could result in an attacker executing arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize network exposure for all...

8.2AI score
Exploits0References10
ICS
ICS
added 2025/04/08 12:0 a.m.15 views

Siemens SENTRON 7KT PAC1260 Data Manager

SUMMARY SENTRON 7KT PAC1260 Data Manager is affected by multiple vulnerabilities as listed below. Software fixes can no longer be provided for The SENTRON 7KT PAC1260 Data Manager. This advisory documents the known open vulnerabilities. To fix the vulnerabilities, Siemens recommends to replace...

8.7AI score
Exploits0References10
ICS
ICS
added 2025/03/13 12:0 a.m.7 views

Siemens Simcenter Femap

SUMMARY Siemens Simcenter Femap is affected by memory corruption vulnerability that could be triggered when the application reads files in .NEU format. If a user is tricked to open a malicious file with the affected application, an attacker could leverage the vulnerability to leak information or...

7.8CVSS8AI score0.00187EPSS
Exploits0References10
ICS
ICS
added 2025/03/11 6:0 a.m.28 views

Optigo Networks Visual BACnet Capture Tool / Optigo Visual Networks Capture Tool

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to bypass authentication, gain control over the products, or impersonate the web applications. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

8.7CVSS7.4AI score0.00362EPSS
Exploits0References10
ICS
ICS
added 2025/03/11 4:0 a.m.8 views

Schneider Electric EcoStruxure Power Automation System

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

9.8CVSS7.5AI score0.00497EPSS
Exploits0References11
ICS
ICS
added 2025/03/11 4:0 a.m.12 views

Schneider Electric EcoStruxure Panel Server

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

6CVSS6.9AI score0.00156EPSS
Exploits0References11
ICS
ICS
added 2025/02/18 7:0 a.m.10 views

Elseta Vinci Protocol Analyzer

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to escalate privileges and perform code execution on the affected system. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such...

9.9CVSS10AI score0.01325EPSS
Exploits0References10
ICS
ICS
added 2025/02/13 7:0 a.m.12 views

mySCADA myPRO Manager

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary OS commands, upload files, and obtain sensitive information without providing associated credentials. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize...

9.8CVSS8.4AI score0.01731EPSS
Exploits0References10
ICS
ICS
added 2025/02/11 12:0 a.m.13 views

Siemens Teamcenter

SUMMARY The SSO login service in Teamcenter contains an open redirect vulnerability that could allow an attacker to redirect the legitimate user to an attacker-chosen URL to steal valid session data. Siemens has released a new version for Teamcenter and recommends to update to the latest...

7.4CVSS7.6AI score0.0054EPSS
Exploits0References10
ICS
ICS
added 2025/02/11 12:0 a.m.6 views

Siemens SIMATIC

SUMMARY The webserver of several SIMATIC products is affected by a user enumeration vulnerability that could allow an unauthenticated remote attacker to identify valid usernames. Siemens has released new versions for several affected products and recommends to update to the latest versions...

6.9CVSS7.2AI score0.00486EPSS
Exploits0References10
Rows per page
Query Builder