CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/06/16 1:50 p.m.•26 views

CVE-2025-13036 Rockwell Automation FactoryTalk Historian Site Edition - Authentication Bypass

An authentication bypass security issue exists within FactoryTalk Historian Site Edition. By continually sending requests to the login endpoint, an attacker may obtain a valid authentication token...

9.2CVSS0.0029EPSS

CVE•added 2026/06/16 1:50 p.m.•39 views

CVE-2025-13036

CVE-2025-13036 affects Rockwell Automation’s FactoryTalk Historian Site Edition . Description and connected sources confirm an authentication bypass vulnerability: by repeatedly hitting the login endpoint, an attacker could obtain a valid authentication token. The CVSS metrics indicate a network-...

9.2CVSS5.3AI score0.0029EPSS

Positive Technologies•added 2026/06/16 12:0 a.m.•13 views

PT-2026-49705

Name of the Vulnerable Software and Affected Versions FactoryTalk Historian Site Edition affected versions not specified Description An authentication bypass issue exists where an attacker can obtain a valid authentication token by continually sending requests to the login endpoint. Recommendatio...

9.2CVSS5.9AI score0.0029EPSS

Exploits0References5

RedhatCVE•added 2026/06/05 7:41 p.m.•8 views

CVE-2025-14816

Cleartext Storage of Sensitive Information in GUI vulnerability in Mitsubishi Electric GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric MobileHMI versions 10.97.3 and prior, Mitsubishi Electric Hyper Historian versions 10.97.3...

9.3CVSS5.6AI score0.00101EPSS

RedhatCVE•added 2026/06/05 7:41 p.m.•11 views

CVE-2025-14815

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GENESIS64 versions 10.97.3 and prior, Mitsubishi Electric ICONICS Suite versions 10.97.3 and prior, Mitsubishi Electric MobileHMI versions 10.97.3 and prior, Mitsubishi Electric Hyper Historian versions 10.97.3 and...

9.3CVSS5.6AI score0.00101EPSS

EUVD•added 2026/04/08 3:31 p.m.•6 views

EUVD-2025-209296

EUVD•added 2026/04/08 3:31 p.m.•6 views

Exploits0References4

EUVD-2025-209294

NVD•added 2026/04/08 2:16 p.m.•6 views

Exploits0References4

CVE-2025-14816

9.3CVSS0.00101EPSS

Cvelist•added 2026/04/08 1:23 p.m.•17 views

CVE-2025-14816 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64

9.3CVSS0.00101EPSS

CVE•added 2026/04/08 1:23 p.m.•8 views

CVE-2025-14816

The connected PT-2026-30802 advisory confirms CVE-2025-14816 as a local vulnerability affecting Mitsubishi Electric GENESIS64, ICONICS Suite/MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64 (and related Iconics Digital Solutions variants). The root cause is cleartext storage/display ...

Vulnrichment•added 2026/04/08 1:23 p.m.•7 views

CVE-2025-14816 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64

ATTACKERKB•added 2026/04/08 1:23 p.m.•4 views

CVE-2025-14816

Exploits0References4Affected Software6

Cvelist•added 2026/04/08 1:15 p.m.•17 views

CVE-2025-14815 Information Disclosure, Tampering, and Denial-of-Service Vulnerabilities in GENESIS64, ICONICS Suite, MobileHMI, Hyper Historian, AnalytiX, GENESIS, and MC Works64

9.3CVSS0.00101EPSS

CNNVD•added 2026/04/08 12:0 a.m.•8 views

Mitsubishi Electric多款产品安全漏洞

Mitsubishi Electric GENESIS64 and other products are developed by Mitsubishi Electric Corporation of Japan. Mitsubishi Electric GENESIS64 is a SCADA suite. Mitsubishi Electric ICONICS Suite is a monitoring system for digital factories and intelligent buildings. Mitsubishi Electric MobileHMI is a...

Positive Technologies•added 2026/04/07 12:0 a.m.•8 views

PT-2026-30801

9.3CVSS7.3AI score0.00101EPSS

Exploits0References7

RedhatCVE•added 2026/01/17 12:23 a.m.•3 views

CVE-2025-61943

The vulnerability, if exploited, could allow an authenticated miscreant Process Optimization Standard User to tamper with queries in Captive Historian and achieve code execution under SQL Server administrative privileges, potentially resulting in complete compromise of the SQL Server...

9.3CVSS8AI score0.00328EPSS