Lucene search
K
IcsMost viewed

4251 matches found

ICS
ICS
added 2024/08/13 12:0 a.m.10 views

Siemens NX

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

7.8CVSS7.1AI score0.00182EPSS
Exploits0References10
ICS
ICS
added 2024/06/11 12:30 p.m.10 views

Hitachi Energy XMC20

SUMMARY Hitachi Energy is aware of a vulnerability that affects the XMC20 versions listed below. Please refer to the “Recommended Immediate Actions” for information about the remediation. 2. GENERAL MITIGATION FACTORS/WORKAROUNDS Recommended security practices and firewall configurations can...

6.9CVSS7AI score0.00498EPSS
Exploits0References9
ICS
ICS
added 2024/06/11 12:0 a.m.10 views

Schneider Electric Sage Series

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

7.1AI score
Exploits0References11
ICS
ICS
added 2021/06/08 12:0 a.m.10 views

Schneider Electric PowerLogic PM55xx and PowerLogic PM8ECC

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

6.8AI score
Exploits0References11
ICS
ICS
added 2026/06/25 6:0 a.m.9 views

Horner Automation Cscape

ADVISORY SUMMARY Successful exploitation of this vulnerability could allow a local attacker to disclose information and execute arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize network...

8.4CVSS6.1AI score0.00134EPSS
Exploits0References13
ICS
ICS
added 2026/06/25 5:0 a.m.9 views

EVoke Systems Charging Station Management System

ADVISORY SUMMARY Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. 2. RECOMMENDED PRACTICES CISA recommends users take defensive...

9.4CVSS5.9AI score0.00378EPSS
Exploits0References11
ICS
ICS
added 2026/06/10 12:30 a.m.9 views

ABB Freelance Security Lock

SUMMARY ABB is aware of a vulnerability in the product versions listed as affected in the advisory. An attacker who successfully exploited this vulnerability could cause the product to stop or make the product inaccessible. 2. FREQUENTLY ASKED QUESTIONS What causes the vulnerability? - The...

7.1CVSS5.8AI score0.00116EPSS
Exploits0References15
ICS
ICS
added 2026/06/09 12:0 a.m.9 views

Siemens WinCC Certificate Manager

SUMMARY WinCC Certificate Manager insufficiently protects key material that could allow an attacker to extract sensitive information. Siemens has released a new version for SIMATIC WinCC Unified PC Runtime V21 and recommends to update to the latest version. Siemens recommends specific...

8.2CVSS5.9AI score0.00057EPSS
Exploits0References10
ICS
ICS
added 2026/04/28 6:0 a.m.9 views

NSA GRASSMARLIN

ADVISORY SUMMARY Successful exploitation of this vulnerability could allow an attacker to disclose sensitive information. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize network exposure for all control...

5.5CVSS5.5AI score0.00197EPSS
Exploits1References13
ICS
ICS
added 2026/04/21 5:0 a.m.9 views

Hardy Barth Salia EV Charge Controller

RISK EVALUATION Successful exploitation of these vulnerabilities could crash the device being accessed; a buffer overflow condition may allow remote code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these...

6.5CVSS6.7AI score0.00269EPSS
Exploits0References11
ICS
ICS
added 2026/04/16 6:0 a.m.9 views

Delta Electronics ASDA-Soft

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. CISA reminds organizations to perform proper impact...

8.4CVSS6.5AI score0.00339EPSS
Exploits0References12
ICS
ICS
added 2026/04/02 6:0 a.m.9 views

Yokogawa CENTUM VP

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to login as the PROG user and modify permissions. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize network exposure for...

2.1CVSS5.8AI score0.00165EPSS
Exploits0References13
ICS
ICS
added 2026/03/13 12:30 a.m.9 views

ABB AWIN Gateways

SUMMARY ABB became aware of vulnerability in the products versions listed as affected in the advisory. An update is available that resolves the reported vulnerabilities. AWIN gateways are not intended to be internet-facing. An attacker who successfully exploited this vulnerability could take...

5.8AI score
Exploits0References12
ICS
ICS
added 2026/03/12 12:30 a.m.9 views

ABB AC500 V3 Stack Buffer Overflow in Cryptographic Message Syntax

SUMMARY ABB became aware of vulnerability in the products versions listed as affected in the advisory. An update is available that resolves publicly reported vulnerability. An attacker who successfully exploited these vulnerabilities could cause a crash, denial-of-service DoS, or potentially...

9.8CVSS6.7AI score0.47621EPSS
Exploits7References11
ICS
ICS
added 2026/03/10 6:0 a.m.9 views

Honeywell IQ4 Series BMS Controller (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthorized attacker to access controller management settings, control components, disclose information, or cause a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to...

10CVSS5.8AI score0.05585EPSS
Exploits1References13
ICS
ICS
added 2026/03/10 12:0 a.m.9 views

Siemens Heliox EV Chargers

SUMMARY Heliox EV Chargers listed below contain improper access control vulnerability that could allow an attacker to reach unauthorized services via the charging cable. Siemens has released new versions for the affected products and recommends to update to the latest versions. 2. GENERAL...

2.6CVSS6.1AI score0.00141EPSS
Exploits0References10
ICS
ICS
added 2026/03/03 6:0 a.m.9 views

Everon OCPP Backends

RISK EVALUATION Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. 2. RECOMMENDED PRACTICES CISA recommends users take defensive...

6AI score
Exploits0References11
ICS
ICS
added 2026/02/26 7:0 a.m.9 views

CloudCharge cloudcharge.se

RISK EVALUATION Successful exploitation of these vulnerabilities could allow attackers to impersonate charging stations, hijack sessions, suppress or misroute legitimate traffic to cause large-scale denial of service, and manipulate data sent to the backend. 2. RECOMMENDED PRACTICES CISA...

5.9AI score
Exploits0References11
ICS
ICS
added 2026/02/26 7:0 a.m.9 views

Chargemap chargemap.com

RISK EVALUATION Successful exploitation of these vulnerabilities could enable attackers to gain unauthorized administrative control over vulnerable charging stations or disrupt charging services through denial-of-service attacks. 2. RECOMMENDED PRACTICES CISA recommends users take defensive...

5.9AI score
Exploits0References11
ICS
ICS
added 2026/02/24 7:0 a.m.9 views

InSAT MasterSCADA BUK-TS

RISK EVALUATION Successful exploitation of these vulnerabilities may allow remote code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize network exposure for all control system...

9.8CVSS6.3AI score0.00538EPSS
Exploits0References11
ICS
ICS
added 2026/02/24 12:0 a.m.9 views

Hitachi Energy Relion REB500 Product

SUMMARY Hitachi Energy is aware of vulnerabilities that affect the Relion REB500 product versions listed in this document. Authenticated users with certain roles can exploit the vulnerabilities to access and modify the directory contents they are not authorized to do so. Please refer to the...

6AI score
Exploits0References9
ICS
ICS
added 2026/02/19 7:0 a.m.9 views

Valmet DNA Engineering Web Tools

RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated attacker to manipulate the web maintenance services URL to achieve arbitrary file read access. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation...

9.2CVSS5.9AI score0.00505EPSS
Exploits0References13
ICS
ICS
added 2026/02/10 7:0 a.m.9 views

AVEVA PI Data Archive

RISK EVALUATION Successful exploitation of this vulnerability could result in a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control...

8.7CVSS5.7AI score0.00284EPSS
Exploits0References11
ICS
ICS
added 2026/02/10 12:0 a.m.9 views

Siemens NX

SUMMARY Siemens NX is affected by multiple file parsing vulnerabilities that could be triggered when the application reads files in CGM format. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to crash or potentially lead to...

7.8CVSS6.6AI score0.00134EPSS
Exploits0References10
ICS
ICS
added 2026/02/10 12:0 a.m.9 views

Siemens Simcenter Femap and Nastran

SUMMARY Siemens Simcenter Femap and Nastran is affected by multiple file parsing vulnerabilities that could be triggered when the application reads files in NDB and XDB formats. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to...

6.5AI score
Exploits0References10
ICS
ICS
added 2026/01/29 7:0 a.m.9 views

KiloView Encoder Series (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated attacker to create or delete administrator accounts, granting full administrative control. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

9.8CVSS5.6AI score0.00495EPSS
Exploits0References13
ICS
ICS
added 2026/01/22 7:0 a.m.9 views

Delta Electronics DIAView

RISK EVALUATION Successful exploitation of this vulnerability could enable an attacker to execute arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. CISA reminds organizations to perform proper impact...

9.8CVSS6.2AI score0.01356EPSS
Exploits0References10
ICS
ICS
added 2026/01/19 12:30 a.m.9 views

ABB B&R Automation Runtime

SUMMARY ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that resolves a vulnerability. An attacker who successfully exploited this vulnerability could cause the product to stop. 2. FREQUENTLY ASKED QUESTIONS What causes the...

8.9CVSS5.8AI score0.00313EPSS
Exploits0References10
ICS
ICS
added 2026/01/13 8:0 a.m.9 views

Schneider Electric EcoStruxure Process Expert (Update A)

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

7CVSS5.8AI score0.00103EPSS
Exploits0References11
ICS
ICS
added 2026/01/13 7:0 a.m.9 views

YoSmart YoLink Smart Hub

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to remotely control other users' smart home devices, intercept sensitive data, and hijack sessions. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation...

6.9AI score
Exploits0References13
ICS
ICS
added 2026/01/06 7:0 a.m.9 views

Columbia Weather Systems MicroServer

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to redirect the SSH connection to an attacker controlled device, gain admin access to the web portal, and gain limited shell access. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to...

8.8CVSS6.6AI score0.00241EPSS
Exploits0References11
ICS
ICS
added 2025/12/18 7:0 a.m.9 views

Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics Products

RISK EVALUATION Successful exploitation of this vulnerability could result in denial-of-service DoS, information tampering, and information disclosure. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:...

8.2CVSS7.7AI score0.00492EPSS
Exploits0References13
ICS
ICS
added 2025/12/11 7:0 a.m.9 views

OpenPLC_V3 (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could result in the alteration of PLC settings or the upload of malicious programs. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize...

9.8CVSS5.7AI score0.0045EPSS
Exploits0References11
ICS
ICS
added 2025/12/09 6:0 a.m.9 views

Multiple India-based CCTV Cameras (Update A)**

RISK EVALUATION Successful exploitation of this vulnerability could result in information disclosure including capture of camera account credentials. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:...

9.4CVSS7.6AI score0.00778EPSS
Exploits0References11
ICS
ICS
added 2025/12/09 12:0 a.m.9 views

Siemens SINEMA Remote Connect Server

SUMMARY SINEMA Remote Connect Server Before V3.2 SP4 is affected by multiple vulnerabilities. Siemens has released a new version for SINEMA Remote Connect Server and recommends to update to the latest version. 2. GENERAL RECOMMENDATIONS As a general security measure, Siemens strongly recommends...

6.8AI score
Exploits0References10
ICS
ICS
added 2025/12/04 7:0 a.m.9 views

Johnson Controls OpenBlue Mobile Web Application for OpenBlue Workplace

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain unauthorized access to sensitive information. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network...

9CVSS6.9AI score0.00281EPSS
Exploits0References11
ICS
ICS
added 2025/11/11 12:0 a.m.9 views

Siemens COMOS

SUMMARY COMOS is affected by two vulnerabilities that could allow an attacker to execute arbitrary code or lead to data infiltration. Siemens has released a new version for COMOS and recommends to update to the latest version. 2. GENERAL RECOMMENDATIONS As a general security measure, Siemens...

8.4AI score
Exploits0References10
ICS
ICS
added 2025/11/11 12:0 a.m.9 views

Siemens Solid Edge

SUMMARY Solid Edge is affected by improper certificate validation while connecting to License Service endpoint. This could allow an unauthenticated remote attacker to perform man in the middle attacks. Siemens has released a new version for Solid Edge SE2025 and recommends to update to the...

8.7CVSS6.9AI score0.00207EPSS
Exploits0References10
ICS
ICS
added 2025/10/31 5:2 p.m.9 views

Restaurant Brands International assistant platform multiple vulnerabilities

RISK EVALUATION Restaurant Brands International assistant platform is used to manage restaurants owned by RBI. Multiple vulnerabilities were found in the assistant platform. The most severe vulnerabilities chained together could allow a remote, unauthenticated attacker to create an account and...

8.6CVSS7.1AI score0.00454EPSS
Exploits1References1
ICS
ICS
added 2025/10/23 6:0 a.m.9 views

NIHON KOHDEN Central Monitor CNS-6201

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: When remote access is...

8.7CVSS6.8AI score0.00439EPSS
Exploits0References10
ICS
ICS
added 2025/10/23 6:0 a.m.9 views

AutomationDirect Productivity Suite

RISK EVALUATION Successful exploitation of these vulnerabilities could enable an attacker to execute arbitrary code, disclose information, gain full-control access to projects, or obtain read and write access to files. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to...

7.9AI score
Exploits0References13
ICS
ICS
added 2025/10/14 12:0 a.m.9 views

Siemens Solid Edge

SUMMARY Solid Edge is affected by multiple file parsing vulnerabilities that could be triggered when the application reads specially crafted PRT files format. This could allow an attacker to crash the application or execute arbitrary code. Siemens has released new versions for the affected...

7.4AI score
Exploits0References10
ICS
ICS
added 2025/10/07 12:30 a.m.9 views

ABB B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)

SUMMARY An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as affected in this advisory. An attacker who successfully exploited this vulnerability could cause the product to stop. 2. MITIGATING FACTORS Deactivate the...

10CVSS5.8AI score0.0026EPSS
Exploits0References10
ICS
ICS
added 2025/09/30 6:0 a.m.9 views

OpenPLC_V3

RISK EVALUATION Successful exploitation of this vulnerability could cause a denial of service, making the PLC runtime process crash. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network...

7.1CVSS7.3AI score0.00199EPSS
Exploits0References11
ICS
ICS
added 2025/09/29 12:0 a.m.9 views

Medical Informatics Engineering Enterprise Health multiple vulnerabilities

RISK EVALUATION Medical Informatics Engineering Enterprise Health is an OEHR Occupational Electronic Health Record platform. Enterprise Health contains multiple vulnerabilities that could allow an attacker to inject executable content, obtain session tokens, and upload arbitrary files. 2...

7.2AI score
Exploits0References1
ICS
ICS
added 2025/09/09 6:0 a.m.9 views

Rockwell Automation FactoryTalk Optix

RISK EVALUATION Successful exploitation of this vulnerability could result in an attacker achieving remote code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all...

8.8CVSS7.5AI score0.00519EPSS
Exploits0References10
ICS
ICS
added 2025/08/28 6:0 a.m.9 views

Mitsubishi Electric MELSEC iQ-F Series CPU Module

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to read or write the device values of the product. In addition, the attacker may be able to stop the operation of the programs. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize...

7.3CVSS6.8AI score0.00428EPSS
Exploits0References10
ICS
ICS
added 2025/08/12 6:0 a.m.9 views

Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose information and execute arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize...

7.9AI score
Exploits0References10
ICS
ICS
added 2025/08/12 4:0 a.m.9 views

Schneider Electric EcoStruxure Power Monitoring Expert

RISK EVALUATION Successful exploitation of these vulnerabilities could allow a remote attacker to read arbitrary files from the target machine, or to access internal services directly. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

8.1AI score
Exploits0References11
ICS
ICS
added 2025/08/12 12:30 a.m.9 views

ABB Ability Zenon Remote Transport Vulnerability (Update A)

SUMMARY ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. The vulnerability enables unauthorized access to the Reboot OS function within the Remote Transport Service, allowing an attacker to trigger a system reboot without the required authentication...

8.7CVSS5.8AI score0.00347EPSS
Exploits0References10
Total number of security vulnerabilities4251