Lucene search
K

14 matches found

The Hacker News
The Hacker News
added 2026/04/08 4:23 a.m.11 views

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

Iran-affiliated cyber actors are targeting internet-facing operational technology OT devices across critical infrastructures in the U.S., including programmable logic controllers PLCs, cybersecurity and intelligence agencies warned Tuesday. "These attacks have led to diminished PLC functionality,...

6.2AI score
Exploits0
EUVD
EUVD
added 2025/12/18 9:31 p.m.3 views

EUVD-2025-204315

Advantech WebAccess/SCADA is vulnerable to absolute directory traversal, which may allow an attacker to determine the existence of arbitrary files...

5.3CVSS6.5AI score0.00558EPSS
Exploits0References4
CNVD
CNVD
added 2024/02/21 12:0 a.m.23 views

Multiple Siemens Products Null Pointer Dereference Vulnerability (CNVD-2024-09314)

SIMATIC PCS 7 is a centralized control system DCS that integrates components such as SIMATIC WinCC, SIMATIC Batch, SIMATIC Route control, OpenPCS 7, etc. SIMATIC WinCC is a Supervisory Control and Data Acquisition SCADA system.SIMATIC WinCC Runtime Professional is a visual runtime platform for...

7.1CVSS6.8AI score0.0027EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/10/10 12:0 a.m.8 views

The vulnerability of the SCADA system SCADA Data Gateway (SDG) arises from improper processing of output data for registration logs, allowing a intruder to execute arbitrary code.

The vulnerability of the SCADA system SCADA Data Gateway SDG is related to the improper processing of output data for registration logs. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the root user...

6.2CVSS5.9AI score0.01028EPSS
Exploits0References5Affected Software1
ThreatPost
ThreatPost
added 2022/04/14 3:57 p.m.69 views

Feds: APTs Have Tools That Can Take Over Critical Infrastructure

Threat actors have built and are ready to deploy tools that can take over a number of widely used industrial control system ICS devices, which spells trouble for critical infrastructure providers—particularly those in the energy sector, federal agencies have warned. In a joint advisory, the...

6.1CVSS6AI score0.01349EPSS
Exploits1References6
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/04/27 4:0 p.m.36 views

Meet critical infrastructure security compliance requirements with Microsoft 365

Critical infrastructure operators face a hostile cyber threat environment and a complex compliance landscape. Every operator of an industrial control system also operates an IT network to service its productivity needs. A supervisory control and data acquisition SCADA system operator of a power...

0.7AI score
Exploits0
CNVD
CNVD
added 2016/04/16 12:0 a.m.6 views

Ecava IntegraXor Privilege Bypass Vulnerability

Ecava IntegraXor is a set of Web-based tools for creating and running HMI interfaces for SCADA systems. Ecava IntegraXor fails to properly check for user authorization when processing user access to sensitive web pages, allowing remote attackers to exploit the vulnerability to bypass security...

6.5CVSS6.8AI score0.01169EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2014/12/30 2:20 p.m.12 views

Majority of 4G USB Modems, SIM Cards Exploitable

Researchers say 4G USB modems contain exploitable vulnerabilities through which attackers could, and researchers have, managed to gain full control of the machines to which the devices are connected. Researchers from Positive Technologies presented a briefing detailing how to compromise USB modem...

8.4AI score
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2013/04/23 12:0 a.m.1 views

7T Interactive Graphical SCADA RMS Reports Buffer Overflow

7-Technologies' IGSS is a Supervisory Control and Data Acquisition SCADA system used for monitoring and controlling industrial processes. Multiple buffer overflow vulnerabilities have been reported in 7T Interactive Graphical SCADA System IGSS. The vulnerability is due to boundary errors in the...

8AI score
Exploits0
Saint
Saint
added 2013/02/11 12:0 a.m.36 views

Schneider Electric Interactive Graphical SCADA System Data Collector Overflow

Added: 02/11/2013 CVE: CVE-2013-0657 BID: 57449 OSVDB: 89324 Background Schneider Electric Interactive Graphical SCADA System IGSS is a supervisory control and data acquisition SCADA system designed to monitor and control industrial processes. The Data Collector DC.exe component listens on port...

10CVSS7.5AI score0.21262EPSS
Exploits8
The Hacker News
The Hacker News
added 2011/12/15 8:37 p.m.3 views

Key infrastructure systems of 3 US cities Under Attack By Hackers

Key infrastructure systems of 3 US cities Under Attack By Hackers BBC News Reported that the Federal Bureau of Investigation FBI announced recently that key infrastructure systems of three US cities had been accessed by hackers. Such systems commonly known as Supervisory Control and Data...

7.5AI score
Exploits0
Saint
Saint
added 2011/06/03 12:0 a.m.39 views

7T Interactive Graphical SCADA System dc.exe Directory Traversal

Added: 06/03/2011 CVE: CVE-2011-1566 BID: 46936 OSVDB: 72349 Background 7-Technologies Interactive Graphical SCADA System IGSS is a Supervisory Control and Data Acquisition SCADA solution used mainly in Denmark and the US. Problem An input validation error in the Data Collector service dc.exe whe...

10CVSS6.8AI score0.66982EPSS
Exploits11
ThreatPost
ThreatPost
added 2011/03/22 5:3 p.m.17 views

Dozens of SCADA Exploits, Proof-of-concept Code Published

Exploits for scores of vulnerabilities in supervisory control and data acquisition software SCADA were made public on Monday, according to a report by The Register. 34 holes were published on Seclists.org’s Bugtraq mailing list for programs by Siemens, Iconics, 7-Technologies, Datac and Control...

1.8AI score
Exploits0References6
The Hacker News
The Hacker News
added 2010/12/08 3:51 p.m.10 views

Stuxnet Virus Could Threaten U.S. Infrastructure, Warns DHS Official

The computer virus Stuxnet, which some experts believe was created specifically to target Iran's nuclear facilities, could also threaten U.S. infrastructure, according to a senior Department of Homeland Security official. "That virus focused on specific software implementations, and those softwar...

6.8AI score
Exploits0
Rows per page
Query Builder