CVE-2026-33892

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

CVE-2026-33892

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

CVE-2026-33892

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

EUVD-2026-22242

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

CVE-2026-33892

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

CVE-2026-33892

Summary: CVE-2026-33892 affects Industrial Edge Management Pro (V1.7.6–V1.15.16), Industrial Edge Management Pro V2 (V2.0.0–V2.1.0), and Industrial Edge Management Virtual (V2.2.0–V2.7.9). The vulnerability arises from improper enforcement of user authentication on remote connections to devices, ...

CVE-2026-33892

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

PT-2026-32610

A vulnerability has been identified in Industrial Edge Management Pro V1 All versions = V1.7.6 = V2.0.0 = V2.2.0 V2.8.0. Affected management systems do not properly enforce user authentication on remote connections to devices. This could facilitate an unauthenticated remote attacker to circumvent...

EUVD-2021-23758

Malware in sbrugna...

EUVD-2024-41277

Malicious code in bioql PyPI...

EUVD-2022-43463

Malicious code in bioql PyPI...

EUVD-2024-41279

Malicious code in bioql PyPI...

Siemens Industrial Edge Management

SUMMARY Industrial Edge Management is affected by a vulnerability that could allow a remote attacker to cause a denial of service condition. Siemens recommends specific countermeasures for products where fixes are not, or not yet available. 2. GENERAL RECOMMENDATIONS As a general security...

CVE-2024-45385

A vulnerability has been identified in Industrial Edge Management OS IEM-OS All versions. Affected components are vulnerable to reflected cross-site scripting XSS attacks. This could allow an attacker to extract sensitive information by tricking users into accessing a malicious link...

CVE-2022-40147

A vulnerability has been identified in Industrial Edge Management All versions V1.5.1. The affected software does not properly validate the server certificate when initiating a TLS connection. This could allow an attacker to spoof a trusted entity by interfering in the communication path between...

CVE-2021-37184

A vulnerability has been identified in Industrial Edge Management All versions V1.3. An unauthenticated attacker could change the the password of any user in the system under certain circumstances. With this an attacker could impersonate any valid user on an affected system...

The vulnerability of Siemens Industrial Edge Management’s centralized control platform for industrial peripheral applications and devices lies in the lack of protective measures for the website structure. This allows attackers to carry out cross-site scripting attacks.

The vulnerability of the platform for centralized management of industrial peripheral applications and Siemens Industrial Edge Management devices is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site...

CVE-2024-45032

A vulnerability has been identified in Industrial Edge Management Pro All versions V1.9.5, Industrial Edge Management Virtual All versions V2.3.1-1. Affected components do not properly validate the device tokens. This could allow an unauthenticated remote attacker to impersonate other devices...

CVE-2024-45385

A vulnerability has been identified in Industrial Edge Management OS IEM-OS All versions. Affected components are vulnerable to reflected cross-site scripting XSS attacks. This could allow an attacker to extract sensitive information by tricking users into accessing a malicious link...

CVE-2024-45385

A vulnerability has been identified in Industrial Edge Management OS IEM-OS All versions. Affected components are vulnerable to reflected cross-site scripting XSS attacks. This could allow an attacker to extract sensitive information by tricking users into accessing a malicious link...