34 matches found
CVE-2026-8108
creationtimestamp| type| source ---|---|--- 2026-05-12 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-132-01 2026-05-13 02:05:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlp7pio24l2c 2026-05-13 03:03:45+00:00| seen|...
CVE-2026-1241
creationtimestamp| type| source ---|---|--- 2026-02-26 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-02 2026-02-26 20:53:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfs3bb2wv72e...
CVE-2025-58083
General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to remotely reset the device...
CVE-2025-58083
General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to remotely reset the device...
CVE-2025-59780
General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to send GET requests to obtain sensitive device information...
CVE-2025-55034
General Industrial Controls Lynx+ Gateway is vulnerable to a weak password requirement vulnerability, which may allow an attacker to execute a brute-force attack resulting in unauthorized access and login...
General Industrial Controls Lynx+ Gateway 安全漏洞
General Industrial Controls Lynx+ Gateway is an industrial automation gateway from General Industrial Controls India. A security vulnerability exists in the General Industrial Controls Lynx+ Gateway that originates from a clear text transmission and could lead to an attacker observing network...
General Industrial Controls Lynx+ Gateway 访问控制错误漏洞
General Industrial Controls Lynx+ Gateway is an industrial automation gateway from General Industrial Controls India. An access control error vulnerability exists in the General Industrial Controls Lynx+ Gateway that stems from a lack of critical authentication on the embedded web server, which...
General Industrial Controls Lynx+ Gateway 安全漏洞
General Industrial Controls Lynx+ Gateway is an industrial automation gateway from General Industrial Controls India. A security vulnerability exists in the General Industrial Controls Lynx+ Gateway that stems from weak password requirements and could lead to brute force breaking attacks and...
CVE-2025-62765 General Industrial Controls Lynx+ Gateway Cleartext Transmission of Sensitive Information
General Industrial Controls Lynx+ Gateway is vulnerable to a cleartext transmission vulnerability that could allow an attacker to observe network traffic to obtain sensitive information, including plaintext credentials...
CVE-2025-62765 General Industrial Controls Lynx+ Gateway Cleartext Transmission of Sensitive Information
General Industrial Controls Lynx+ Gateway is vulnerable to a cleartext transmission vulnerability that could allow an attacker to observe network traffic to obtain sensitive information, including plaintext credentials...
EUVD-2025-197667
General Industrial Controls Lynx+ Gateway is vulnerable to a cleartext transmission vulnerability that could allow an attacker to observe network traffic to obtain sensitive information, including plaintext credentials...
EUVD-2025-197669
General Industrial Controls Lynx+ Gateway is missing critical authentication in the embedded web server which could allow an attacker to remotely reset the device...
CVE-2025-58083
CVE-2025-58083 affects General Industrial Controls Lynx+ Gateway. The embedded web server lacks critical authentication, enabling remote attackers to reset the device. This is supported by multiple advisories (CISA ICSA-25-317-08, EUVD/EU ENISA, Red Hat/RH CVE pages) describing missing authentica...
CVE-2025-55034 General Industrial Controls Lynx+ Gateway Weak Password Requirements
General Industrial Controls Lynx+ Gateway is vulnerable to a weak password requirement vulnerability, which may allow an attacker to execute a brute-force attack resulting in unauthorized access and login...
CVE-2025-55034 General Industrial Controls Lynx+ Gateway Weak Password Requirements
General Industrial Controls Lynx+ Gateway is vulnerable to a weak password requirement vulnerability, which may allow an attacker to execute a brute-force attack resulting in unauthorized access and login...
PT-2025-47027
Name of the Vulnerable Software and Affected Versions General Industrial Controls Lynx+ Gateway affected versions not specified Description The Lynx+ Gateway embedded web server lacks essential authentication. This allows an attacker to send GET requests and potentially obtain sensitive device...
PT-2025-47025
Name of the Vulnerable Software and Affected Versions General Industrial Controls Lynx+ Gateway affected versions not specified Description The Lynx+ Gateway is susceptible to a weak password requirement, potentially enabling an attacker to perform a brute-force attack. Successful exploitation...
General Industrial Controls Lynx+ Gateway
RISK EVALUATION Successful exploitation of these vulnerabilities could result in obtaining sensitive device information, unauthorized access, or create a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...
Malicious Package
Overview Sharp7Extend is a malicious package. This package contains malicious code that injects time-delayed destructive payloads into database operations and target industrial control systems. Published under the NuGet alias shanhai666 together with 8 other malicious packages between 2023 and...