CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2878 matches found

ICS•added 2025/10/14 7:0 a.m.•7 views

Schneider Electric EcoStruxure

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

6.4AI score

Exploits0References11

Positive Technologies•added 2025/10/14 12:0 a.m.•4 views

PT-2025-41982

An authenticated command injection vulnerability exists in the command line interface binary of AOS-10 GW and AOS-8 Controllers/Mobility Conductor operating system. Exploitation of this vulnerability requires physical access to the hardware controllers. A successful attack could allow an...

6.2CVSS7.7AI score0.00687EPSS

Exploits0References2

Snyk•added 2025/10/08 7:41 p.m.•2 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization. An attacker can gain unauthorized access to restricted organization or application editing interfaces by manipulating URLs after authentication. Remediation Upgrade github.com/casdoor/casdoor/controllers to...

8.6CVSS7AI score0.00599EPSS

Exploits0References2

Packet Storm News•added 2025/10/08 12:0 a.m.•5 views

A Multi-Layered Embedded Intrusion Detection Framework for Programmable Logic Controllers

Industrial control system ICS operations use trusted endpoints like human machine interfaces HMIs and workstations to relay commands to programmable logic controllers PLCs. Because most PLCs lack layered defenses, compromise of a trusted endpoint can drive unsafe actuator commands and risk...

7AI score

Exploits0