CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

28 matches found

NVD•added 2026/05/12 10:16 a.m.•8 views

CVE-2026-25787

Affected devices do not properly validate and sanitize Technology Object TO name rendered on the "Motion Control Diagnostics" page of the web interface. This could allow an authenticated attacker who is authorized to download a TIA project into the product, to inject malicious scripts into the...

9.3CVSS0.00057EPSS

Exploits0References1

Cvelist•added 2026/05/12 8:21 a.m.•29 views

CVE-2026-25787

9.3CVSS0.00057EPSS

Exploits0References1

Positive Technologies•added 2026/05/12 12:0 a.m.•3 views

PT-2026-39985

9.3CVSS5.9AI score0.00057EPSS

Exploits0References2

CNNVD•added 2025/08/12 12:0 a.m.•2 views

Siemens多款产品代码问题漏洞

Siemens SIMOTION SCOUT TIA and others are products of Siemens, Germany.Siemens SIMOTION SCOUT TIA is a high-end motion control system.Siemens SIMOTION SCOUT is a high-end motion control system.Siemens SINAMICS STARTER is a drive debugging tool software. A code issue vulnerability exists in severa...

6.8CVSS7.1AI score0.00016EPSS

Exploits0References1

CNNVD•added 2024/06/24 12:0 a.m.•0 views

LoLLMs Cross-Site Request Forgery Vulnerability

LoLLMs is a Web UI for a large language multimodal system by the individual developer Saifeddine ALOUI. A cross-site request forgery vulnerability exists in LoLLMs version 9.6 and prior versions, which stems from a lack of cross-site request forgery protection in the Elastic Search Service, XTTS...

4.4CVSS6.8AI score0.00033EPSS

Exploits1References3

ICS•added 2023/11/30 7:0 a.m.•21 views

Mitsubishi Electric FA Engineering Software Products

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Mitsubishi Electric Equipment : FA Engineering Software Products Vulnerability : External Control of File Name or Path 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a malicious...

7.8CVSS7.9AI score0.00091EPSS

Exploits0References10

NVD•added 2022/11/25 12:15 a.m.•19 views

CVE-2022-29830

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z, and Motion Control SettingGX Works3 related software versions from 1.000A to 1.065T allows a remote unauthenticated attacker to disclose or tamper with sensitive information. As a...

9.1CVSS0.01198EPSS

Exploits0References3

OSV•added 2022/11/25 12:15 a.m.•0 views

CVE-2022-29826

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.087R and Motion Control SettingGX Works3 related software versions from 1.000A to 1.042U allows a remote unauthenticated attacker to disclose sensitive information. As a result,...

7.5CVSS5.8AI score

Exploits0References3

NVD•added 2022/11/25 12:15 a.m.•11 views

CVE-2022-29829

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 GOT2000 versions from 1.122C to 1.290C, Motion Control SettingGX Works3 related software versions from 1.035M to 1.042U, and MT Works2 versions from 1.100E to...

7.5CVSS0.00329EPSS

Exploits0References3

OSV•added 2022/11/25 12:15 a.m.•0 views

CVE-2022-29829

7.5CVSS5.8AI score

Exploits0References3

NVD•added 2022/11/25 12:15 a.m.•12 views

CVE-2022-29826

7.5CVSS0.00134EPSS

Exploits0References3

OSV•added 2022/11/25 12:15 a.m.•0 views

CVE-2022-29830

9.1CVSS5.8AI score0.01198EPSS

Exploits0References3

Prion•added 2022/11/25 12:15 a.m.•13 views

Design/Logic Flaw

5CVSS7.8AI score0.00134EPSS

Exploits0References3Affected Software1

Prion•added 2022/11/25 12:15 a.m.•16 views

Hardcoded credentials

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Motion Control SettingGX Works3 related software versions from 1.000A and later allows a remote unauthenticated attacker to disclose or tamper with sensitive information. As a...

6.4CVSS9AI score0.01198EPSS

Exploits0References3Affected Software1

Prion•added 2022/11/25 12:15 a.m.•11 views

Hardcoded credentials

Use of Hard-coded Cryptographic Key vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.090U, GT Designer3 Version1 GOT2000 versions from 1.122C to 1.290C and Motion Control SettingGX Works3 related software versions from 1.035M to 1.042U allows a remote unauthenticated...

5CVSS7.8AI score0.00329EPSS

Exploits0References3Affected Software1

CVE•added 2022/11/24 11:23 p.m.•65 views

CVE-2022-29830

CVE-2022-29830 affects Mitsubishi Electric GX Works3 and Motion Control Setting software. The vulnerability arises from the use of a hard-coded cryptographic key, allowing a remote unauthenticated attacker to disclose or tamper with sensitive information and potentially obtain project-file detail...

9.1CVSS8.6AI score0.01198EPSS

Exploits0References3Affected Software1

Cvelist•added 2022/11/24 11:23 p.m.•15 views

CVE-2022-29830

9.1CVSS9.3AI score0.01198EPSS

Exploits0References3

CVE•added 2022/11/24 11:23 p.m.•60 views

CVE-2022-29829

CVE-2022-29829 describes a vulnerability in Mitsubishi Electric software where a hard-coded cryptographic key enables remote, unauthenticated disclosure of sensitive information (viewing/viewing or executing programs and project files). Affected products include: GX Works3 versions 1.000A–1.090U,...

7.5CVSS7.3AI score0.00329EPSS

Exploits0References3Affected Software1

Cvelist•added 2022/11/24 11:22 p.m.•13 views

CVE-2022-29826

6.8CVSS7.7AI score0.00134EPSS

Exploits0References3

CVE•added 2022/11/24 11:22 p.m.•63 views

CVE-2022-29826

CVE-2022-29826 involves a Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 (versions 1.000A–1.087R) and Motion Control Setting (GX Works3 related software) (versions 1.000A–1.042U). The root cause is cleartext storage that could allow a remote unauthentica...

7.5CVSS7.5AI score0.00134EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by