Lucene search
K

3452 matches found

OSV
OSV
added 2025/11/30 3:32 p.m.11 views

CVE-2025-13791 Scada-LTS Project Import ZIPProjectManager.java Common.getHomeDir path traversal

A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is...

5.3CVSS6.4AI score0.00414EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/11/30 3:32 p.m.6 views

CVE-2025-13791 Scada-LTS Project Import ZIPProjectManager.java Common.getHomeDir path traversal

A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is...

6.5CVSS6.4AI score0.00414EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/11/30 3:32 p.m.15 views

CVE-2025-13791 Scada-LTS Project Import ZIPProjectManager.java Common.getHomeDir path traversal

A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is...

6.5CVSS0.00414EPSS
Exploits1References5
CVE
CVE
added 2025/11/30 3:32 p.m.11 views

CVE-2025-13791

The CVE-2025-13791 issue affects Scada-LTS up to version 2.7.8.1, specifically the Common.getHomeDir function in br/org/scadabr/vo/exporter/ZIPProjectManager.java of the Project Import component. The vulnerability enables path traversal, with the attack potentially executable remotely. Public exp...

6.5CVSS6.4AI score0.00414EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2025/11/30 3:30 p.m.6 views

EUVD-2025-199934

A vulnerability was determined in Scada-LTS up to 2.7.8.1. This impacts an unknown function. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure...

5.3CVSS6AI score0.00225EPSS
Exploits1References6
NVD
NVD
added 2025/11/30 3:15 p.m.7 views

CVE-2025-13790

A vulnerability was determined in Scada-LTS up to 2.7.8.1. This impacts an unknown function. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure...

8.8CVSS0.00225EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/30 2:32 p.m.4 views

CVE-2025-13790 Scada-LTS cross-site request forgery

A vulnerability was determined in Scada-LTS up to 2.7.8.1. This impacts an unknown function. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure...

5.3CVSS6.2AI score0.00225EPSS
Exploits1References5
CVE
CVE
added 2025/11/30 2:32 p.m.13 views

CVE-2025-13790

CVE-2025-13790 affects Scada-LTS up to version 2.7.8.1. The vulnerability is described as a cross-site request forgery arising from an unknown function, with remote initiation possible. Public disclosures and a proof-of-concept exploit are indicated in the sources. Red Hat, EUVD, NVD, and OSV ref...

8.8CVSS4.8AI score0.00225EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/11/30 2:32 p.m.14 views

CVE-2025-13790 Scada-LTS cross-site request forgery

A vulnerability was determined in Scada-LTS up to 2.7.8.1. This impacts an unknown function. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure...

5.3CVSS0.00225EPSS
Exploits1References5
OSV
OSV
added 2025/11/30 2:32 p.m.6 views

CVE-2025-13790 Scada-LTS cross-site request forgery

A vulnerability was determined in Scada-LTS up to 2.7.8.1. This impacts an unknown function. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure...

5.3CVSS5.9AI score0.00225EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/11/30 12:0 a.m.5 views

Scada-LTS 路径遍历漏洞

Scada-LTS is an open source, web-based, multi-platform solution from Scada-LTS Open Source. A path traversal vulnerability exists in Scada-LTS version 2.7.8.1 and earlier, which stems from a path traversal issue in the Common.getHomeDir function in the file...

6.5CVSS6.5AI score0.00414EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/11/30 12:0 a.m.6 views

Scada-LTS 安全漏洞

Scada-LTS is an open source, web-based, multi-platform solution from Scada-LTS Open Source. A security vulnerability exists in Scada-LTS version 2.7.8.1 and earlier, which stems from unknown functionality that is susceptible to cross-site request forgery attacks...

8.8CVSS4.9AI score0.00225EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/11/30 12:0 a.m.6 views

PT-2025-48394

A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is...

6.5CVSS6.7AI score0.00414EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/11/30 12:0 a.m.10 views

PT-2025-48393

A vulnerability was determined in Scada-LTS up to 2.7.8.1. This impacts an unknown function. This manipulation causes cross-site request forgery. The attack may be initiated remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure...

5.3CVSS6.5AI score0.00225EPSS
Exploits1References6
CISA
CISA
added 2025/11/18 12:0 p.m.15 views

CISA Releases Six Industrial Control Systems Advisories

CISA released six Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-322-01 Schneider Electric EcoStruxure Machine SCADA Expert & Pro-face BLUE Open Studio ICSA-25-322-02 Shel...

6.6AI score
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/11/12 12:0 a.m.3 views

CVE-2025-63927

A heap-use-after-free vulnerability exists in airpig2011 IEC104 thru Commit be6d841 2019-07-08. During multi-threaded client execution, the function Iec10xScheduled can access memory that has already been freed, potentially causing program crashes or undefined behavior. This may be exploited to...

6.5AI score0.0019EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-16080

Malware in sbrugna...

8.6CVSS8.8AI score0.01928EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-27166

Malware in sbrugna...

9.8CVSS9.4AI score0.14501EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-10700

Malware in sbrugna...

9.8CVSS9.3AI score0.02462EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-15481

Malware in sbrugna...

7.8CVSS7.6AI score0.00456EPSS
Exploits1References2
Rows per page
Query Builder