CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

299 matches found

Packet Storm News•added 2026/05/16 12:0 a.m.•4 views

Filter-Then-Verify: A Multiphase GNN and ModernBERT Framework for Social Engineering Detection in Email Networks

Social engineering attacks exploit human trust rather than software vulnerabilities, making them difficult to detect using conventional filters. We propose a two-stage filter-then-verify framework combining inductive Graph Neural Networks GNNs for structural anomaly detection with a co-attention...

5.8AI score

Exploits0

CNNVD•added 2026/03/12 12:0 a.m.•4 views

Inductive Automation Ignition 代码问题漏洞

Inductive Automation Ignition is an integrated software platform developed by Inductive Automation in the United States, designed for SCADA systems. This platform supports SCADA Supervisory Control and Data Acquisition and HMI Human Machine Interface applications. Inductive Automation Ignition ha...

6.3CVSS5.9AI score0.00009EPSS

Exploits0References3

Positive Technologies•added 2026/03/12 12:0 a.m.•1 views

PT-2026-25038

Name of the Vulnerable Software and Affected Versions Inductive Automation Ignition affected versions not specified Description An Ignition user importing a specially crafted external file can lead to the execution of embedded malicious code during deserialization. This can occur intentionally or...

6.3CVSS6AI score0.00009EPSS

Exploits0References8

Packet Storm News•added 2026/03/09 12:0 a.m.•1 views

SCAFFOLD-CEGIS: Preventing Latent Security Degradation in LLM-Driven Iterative Code Refinement

The application of large language models to code generation has evolved from one-shot generation to iterative refinement, yet the evolution of security throughout iteration remains insufficiently understood. Through comparative experiments on three mainstream LLMs, this paper reveals the iterativ...

5.9AI score

Exploits0

Schneier on Security•added 2026/01/12 12:2 p.m.•2 views

Corrupting LLMs Through Weird Generalizations

Fascinating research: Weird Generalization and Inductive Backdoors: New Ways to Corrupt LLMs. Abstract LLMs are useful because they generalize so well. But can you have too much of a good thing? We show that a small amount of finetuning in narrow contexts can dramatically shift behavior outside...

6.8AI score

Exploits0

RedhatCVE•added 2026/01/09 8:40 a.m.•8 views

CVE-2022-35869

This vulnerability allows remote attackers to bypass authentication on affected installations of Inductive Automation Ignition 8.1.15 b2022030114. Authentication is not required to exploit this vulnerability. The specific flaw exists within com.inductiveautomation.ignition.gateway.web.pages. The...

9.8CVSS6.8AI score0.02561EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:39 a.m.•3 views

CVE-2022-35871

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition 8.1.15 b2022030114. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authenticateAdSso method. The issue results from th...

8.1CVSS7.6AI score0.41981EPSS

Exploits0References1

CVE•added 2025/12/18 8:24 p.m.•3 views

CVE-2025-13911

CVE-2025-13911 affects Inductive Automation Ignition SCADA, where Python scripting is used for automation. The root cause is insufficient controls on which Python libraries can be imported/executed within the scripting environment, paired with an Ignition service account that has system-level Win...

7.3CVSS6.8AI score0.00015EPSS

Exploits0References3

Cvelist•added 2025/12/18 8:24 p.m.•17 views

CVE-2025-13911 Inductive Automation Ignition Execution with Unnecessary Privileges

The vulnerability affects Ignition SCADA applications where Python scripting is utilized for automation purposes. The vulnerability arises from the absence of proper security controls that restrict which Python libraries can be imported and executed within the scripting environment. The core issu...

7.3CVSS0.00015EPSS

Exploits0References3

CISA•added 2025/12/18 12:0 p.m.•7 views

CISA Releases Nine Industrial Control Systems Advisories

CISA released nine Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-352-01 Inductive Automation Ignition ICSA-25-352-02 Schneider Electric EcoStruxure Foxboro DCS Advisor...

6.6AI score

Exploits0References9

ICS•added 2025/12/18 7:0 a.m.•3 views

Inductive Automation Ignition

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to be granted direct SYSTEM-level code execution on the host operating system running the Ignition Gateway service on Windows systems. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to...

7.3CVSS7AI score0.00015EPSS

Exploits0References13

CNNVD•added 2025/12/18 12:0 a.m.•1 views

Inductive Automation Ignition 安全漏洞

Inductive Automation Ignition is an integrated software platform for SCADA systems from Inductive Automation, USA. The platform supports SCADA Data Acquisition and Monitoring Systems, HMI Human Machine Interface and more. A security vulnerability exists in Inductive Automation Ignition that stems...

7.3CVSS6.5AI score0.00015EPSS

Exploits0References3