Lucene search
K

1310 matches found

NVD
NVD
added 5 days ago6 views

CVE-2026-54800

A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V26.20, SICORE Base system All versions V26.20.0. The affected application ships with a default configuration that disables all OPC UA security mechanisms. This could allow an attacker to gain unauthorized...

6.3CVSS0.00146EPSS
Exploits0References1
Cvelist
Cvelist
added 5 days ago38 views

CVE-2026-54800

A vulnerability has been identified in CPCI85 Central Processing/Communication All versions V26.20, SICORE Base system All versions V26.20.0. The affected application ships with a default configuration that disables all OPC UA security mechanisms. This could allow an attacker to gain unauthorized...

6.3CVSS0.00146EPSS
Exploits0References1
CVE
CVE
added 5 days ago10 views

CVE-2026-54800

CVE-2026-54800 affects CPCI85 Central Processing/Communication and SICORE Base system (all versions < V26.20 /

6.3CVSS5.9AI score0.00146EPSS
Exploits0References1
CVE
CVE
added 2026/06/09 8:39 a.m.25 views

CVE-2026-6899

CVE-2026-6899 affects the CycloneCrypto wrapper in the S2OPC library. The check for certificate revocation only reviews the first matching CRL and ignores other valid CRLs for the same CA, potentially allowing a revoked certificate to establish a connection between an OPC UA client and server. No...

5.6CVSS5.5AI score0.00108EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.18 views

S2OPC OPC UA Toolkit 安全漏洞

S2OPC OPC UA Toolkit is an open-source development toolkit for OPC UA communication, developed by Systerel. The S2OPC OPC UA Toolkit contains a security vulnerability. This vulnerability stems from the CycloneCrypto encryption wrapper, where certificate revocation checks only consider the first...

5.6CVSS5.3AI score0.00108EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:41 p.m.9 views

CVE-2025-11482

An Allocation of Resources Without Limits or Throttling vulnerability in the OPC-UA Server used in PPT30 Operating System versions before 1.8.0 may be used by an unauthenticated network-based attacker to permanently prevent legitimate users from interacting with the service...

8.7CVSS5.4AI score0.00322EPSS
Exploits0References1
NVD
NVD
added 2026/05/26 2:16 p.m.16 views

CVE-2025-11482

An Allocation of Resources Without Limits or Throttling vulnerability in the OPC-UA Server used in PPT30 Operating System versions before 1.8.0 may be used by an unauthenticated network-based attacker to permanently prevent legitimate users from interacting with the service...

8.7CVSS0.00322EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/26 11:43 a.m.8 views

CVE-2025-11482

An Allocation of Resources Without Limits or Throttling vulnerability in the OPC-UA Server used in PPT30 Operating System versions before 1.8.0 may be used by an unauthenticated network-based attacker to permanently prevent legitimate users from interacting with the service...

8.7CVSS5.8AI score0.00322EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/26 11:43 a.m.8 views

CVE-2025-11482 Allocation of Resources Without Limits or Throttling in the OPC-UA Server

An Allocation of Resources Without Limits or Throttling vulnerability in the OPC-UA Server used in PPT30 Operating System versions before 1.8.0 may be used by an unauthenticated network-based attacker to permanently prevent legitimate users from interacting with the service...

8.7CVSS5.8AI score0.00322EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/26 11:43 a.m.10 views

EUVD-2025-209928

An Allocation of Resources Without Limits or Throttling vulnerability in the OPC-UA Server used in PPT30 Operating System versions before 1.8.0 may be used by an unauthenticated network-based attacker to permanently prevent legitimate users from interacting with the service...

8.7CVSS5.8AI score0.00322EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/26 11:43 a.m.43 views

CVE-2025-11482 Allocation of Resources Without Limits or Throttling in the OPC-UA Server

An Allocation of Resources Without Limits or Throttling vulnerability in the OPC-UA Server used in PPT30 Operating System versions before 1.8.0 may be used by an unauthenticated network-based attacker to permanently prevent legitimate users from interacting with the service...

8.7CVSS0.00322EPSS
Exploits0References1
ICS
ICS
added 2026/05/26 12:30 a.m.12 views

B&R PPT30 Operating System

SUMMARY B&R is aware of a vulnerability in the product versions listed as affected in the advisory. An attacker who successfully exploits this vulnerability could make the OPC-UA server of the product inaccessible. 2. FREQUENTLY ASKED QUESTIONS What causes the vulnerability? - The vulnerability...

8.7CVSS5.7AI score0.00322EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/05/01 12:0 a.m.6 views

Wireshark 2.4.x < 2.4.10 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.4.10. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.10 advisory. - In Wireshark 2.6.0 to 2.6.3 and 2.4.0 to 2.4.9, the MS-WSP protocol dissector could crash. This was...

7.5CVSS5.9AI score0.11591EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2026/04/29 8:40 a.m.127 views

Exploit for Uncontrolled Resource Consumption in Opcfoundation Ua-.Netstandard

OPC UA Authentication Challenge Gateway CDDC 2026 | Modular...

7.5CVSS7.2AI score0.0106EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/03/27 2:25 p.m.7 views

CVE-2021-27434

Products with Unified Automation .NET based OPC UA Client/Server SDK Bundle: Versions V3.0.7 and prior .NET 4.5, 4.0, and 3.5 Framework versions only are vulnerable to an uncontrolled recursion, which may allow an attacker to trigger a stack overflow...

7.5CVSS6.8AI score0.01741EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/02/24 12:0 a.m.15 views

ICSSPulse: A Modular LLM-Assisted Platform for Industrial Control System Penetration Testing

It is well established that industrial control systems comprise the operational backbone of modern critical infrastructures, yet their increasing connectivity exposes them to cyber threats that are difficult to study and remedy safely under real-time operational conditions. In this paper, we...

6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/19 7:21 p.m.7 views

CVE-2025-60035

A vulnerability has been identified in the OPC.Testclient utility, which is included in Rexroth IndraWorks. All versions prior to 15V24 are affected. This flaw allows an attacker to execute arbitrary code on the user's system by parsing a manipulated file containing malicious serialized data...

8.8CVSS6.4AI score0.00369EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/18 2:1 p.m.3 views

CVE-2025-60035

A vulnerability has been identified in the OPC.Testclient utility, which is included in Rexroth IndraWorks. All versions prior to 15V24 are affected. This flaw allows an attacker to execute arbitrary code on the user's system by parsing a manipulated file containing malicious serialized data...

7.8CVSS6.4AI score0.00369EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/18 2:1 p.m.29 views

CVE-2025-60035

A vulnerability has been identified in the OPC.Testclient utility, which is included in Rexroth IndraWorks. All versions prior to 15V24 are affected. This flaw allows an attacker to execute arbitrary code on the user's system by parsing a manipulated file containing malicious serialized data...

7.8CVSS0.00369EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.7 views

PT-2026-20411

Name of the Vulnerable Software and Affected Versions Rexroth IndraWorks OPC.Testclient versions prior to 15V24 Description A flaw exists in the OPC.Testclient utility, included within Rexroth IndraWorks, that allows an attacker to execute arbitrary code on a user’s system. This is achieved by...

7.8CVSS6.2AI score0.00369EPSS
Exploits0References4
Rows per page
Query Builder