Lucene search
K

1669 matches found

Fedora
Fedora
added 2026/04/25 1:55 a.m.10 views

[SECURITY] Fedora 44 Update: qt6-qtserialbus-6.10.3-1.fc44

Qt Serial Bus API provides classes and functions to access the various industrial serial buses and protocols, such as CAN, ModBus, and others...

5.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/14 7:22 p.m.8 views

CVE-2026-4436

A low-privileged remote attacker can send Modbus packets to manipulate register values that are inputs to the odorant injection logic such that too much or too little odorant is injected into a gas line...

8.6CVSS5.8AI score0.00448EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/09 9:31 p.m.3 views

EUVD-2026-21066

A low-privileged remote attacker can send Modbus packets to manipulate register values that are inputs to the odorant injection logic such that too much or too little odorant is injected into a gas line...

8.6CVSS6AI score0.00448EPSS
Exploits0References4
NVD
NVD
added 2026/04/09 8:16 p.m.7 views

CVE-2026-4436

A low-privileged remote attacker can send Modbus packets to manipulate register values that are inputs to the odorant injection logic such that too much or too little odorant is injected into a gas line...

8.6CVSS0.00448EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/09 8:4 p.m.21 views

CVE-2026-4436 GPL Odorizers GPL750 Missing Authentication for Critical Function

A low-privileged remote attacker can send Modbus packets to manipulate register values that are inputs to the odorant injection logic such that too much or too little odorant is injected into a gas line...

8.6CVSS0.00448EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/09 8:4 p.m.3 views

CVE-2026-4436 GPL Odorizers GPL750 Missing Authentication for Critical Function

A low-privileged remote attacker can send Modbus packets to manipulate register values that are inputs to the odorant injection logic such that too much or too little odorant is injected into a gas line...

8.6CVSS5.8AI score0.00448EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/09 8:4 p.m.3 views

CVE-2026-4436

A low-privileged remote attacker can send Modbus packets to manipulate register values that are inputs to the odorant injection logic such that too much or too little odorant is injected into a gas line...

8.6CVSS6AI score0.00448EPSS
Exploits0References4Affected Software4
CVE
CVE
added 2026/04/09 8:4 p.m.10 views

CVE-2026-4436

CVE-2026-4436 affects GPL Odorizers GPL750 (odorizer devices). A low-privileged remote attacker can send Modbus packets to manipulate registers that feed the odorant injection logic, potentially causing over- or under-injection of odorant into a gas line. Several sources (NVD/NIST, Red Hat, ENISA...

8.6CVSS6AI score0.00448EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.8 views

GPL Odorizers GPL 访问控制错误漏洞

GPL Odorizers GPL is a series of gas odorization devices and gas processing control systems developed by the American company GPL. GPL Odorizers GPL has a access control vulnerability; this vulnerability allows low-privilege remote attackers to send Modbus data packets to manipulate register...

8.6CVSS5.8AI score0.00448EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/09 12:0 a.m.4 views

PT-2026-31719

Name of the Vulnerable Software and Affected Versions versions not specified Description A remote attacker with low privileges can manipulate Modbus register values used in odorant injection logic, potentially causing over or under-injection of odorant into a gas line. Attackers have exploited th...

8.6CVSS5.8AI score0.00448EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/03/10 8:26 a.m.6 views

CVE-2025-41709

An unauthenticated remote attacker can perform a command injection via Modbus-TCP or Modbus-RTU to gain read and write access on the affected device...

9.8CVSS5.9AI score0.02153EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/10 8:26 a.m.31 views

CVE-2025-41709 Command injection in power analyzer via Modbus-TCP and Modbus-RTU

An unauthenticated remote attacker can perform a command injection via Modbus-TCP or Modbus-RTU to gain read and write access on the affected device...

9.8CVSS0.02153EPSS
Exploits0References4
CVE
CVE
added 2026/03/10 8:26 a.m.15 views

CVE-2025-41709

CVE-2025-41709 describes an unauthenticated command injection using Modbus-TCP/Modbus-RTU that grants read/write access on the affected device. Multiple sources (NVD, Red Hat, CVE listing, and vulnerability feeds) concur that the issue is remotely exploitable over network with a high severity (CV...

9.8CVSS5.9AI score0.02153EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/10 8:26 a.m.6 views

CVE-2025-41709 Command injection in power analyzer via Modbus-TCP and Modbus-RTU

An unauthenticated remote attacker can perform a command injection via Modbus-TCP or Modbus-RTU to gain read and write access on the affected device...

9.8CVSS5.9AI score0.02153EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.5 views

Janitza UMG 96RM-E 24V和Janitza UMG 96RM-E 230V 操作系统命令注入漏洞

Both Janitza UMG 96RM-E 24V and Janitza UMG 96RM-E 230V are multi-functional power quality analyzers produced by the German company Janitza. Both models have vulnerabilities related to operating system command injection. These vulnerabilities arise from defects in the power analyzer’s processing ...

9.8CVSS5.9AI score0.02153EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/28 1:55 a.m.4 views

CVE-2026-25105

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into parameters of the Modbus command tool in the debug route...

8.8CVSS6.6AI score0.01897EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/27 3:30 a.m.5 views

EUVD-2026-8977

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into parameters of the Modbus command tool in the debug route...

8.8CVSS6.4AI score0.01897EPSS
Exploits0References4
OSV
OSV
added 2026/02/27 2:16 a.m.4 views

CVE-2026-25105

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into parameters of the Modbus command tool in the debug route...

8.8CVSS6.4AI score0.01897EPSS
Exploits0References3
NVD
NVD
added 2026/02/27 2:16 a.m.5 views

CVE-2026-25105

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by injecting malicious input into parameters of the Modbus command tool in the debug route...

8.8CVSS0.01897EPSS
Exploits0References3
CVE
CVE
added 2026/02/27 12:52 a.m.17 views

CVE-2026-25105

XWEB Pro is affected by an OS command injection vulnerability (CVE-2026-25105) in versions prior to 1.12.1. The flaw allows an authenticated attacker to achieve remote code execution by injecting malicious input into the Modbus command tool parameters in the debug route. Multiple sources (Red Hat...

8.8CVSS6.3AI score0.01897EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder