Lucene search
K
IcsMost viewed

4251 matches found

ICS
ICS
added 2025/06/24 6:0 a.m.7 views

Parsons AccuWeather widget

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to insert a malicious link that users might access through the RSS feed. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such...

8.8CVSS6.8AI score0.00346EPSS
Exploits0References10
ICS
ICS
added 2025/06/24 6:0 a.m.7 views

Delta Electronics CNCSoft

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to execute code within the context of the current process. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. CISA reminds...

7.3CVSS7.4AI score0.00202EPSS
Exploits0References10
ICS
ICS
added 2025/06/24 6:0 a.m.7 views

Kaleris Navis N4 Terminal Operating System

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to remotely exploit the operating system, achieve remote code execution, or extract sensitive information. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

8.6AI score
Exploits0References10
ICS
ICS
added 2025/06/10 4:0 a.m.7 views

Schneider Electric Modicon Controllers (Update A)

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

6.1AI score
Exploits0References11
ICS
ICS
added 2025/06/10 4:0 a.m.7 views

Schneider Electric EVLink WallBox (Update A)

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Passwords should include upper case, lower case, number and special characters, a length of 20 characters is ideal. A default Admin password must be changed immediately when first received...

6.9AI score
Exploits0References11
ICS
ICS
added 2025/06/05 6:0 a.m.7 views

CyberData 011209 SIP Emergency Intercom

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information, cause a denial-of-service condition, or achieve code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation...

8.1AI score
Exploits0References10
ICS
ICS
added 2025/05/20 4:0 a.m.7 views

Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update F)

RISK EVALUATION Successful exploitation of this vulnerability could result in information tampering on the target workstation. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for...

6.5CVSS7.4AI score0.0018EPSS
Exploits0References9
ICS
ICS
added 2025/05/13 12:0 a.m.7 views

Siemens SIRIUS

SUMMARY SIRIUS 3SK2 Safety Relays and 3RK3 Modular Safety Systems only provide weak password obfuscation. An attacker with access to the PROFINET or serial interface of the device could eavesdrop or read the stored password from the device and de-obfuscate it. The safety passwords work as...

7.1AI score
Exploits0References10
ICS
ICS
added 2025/05/13 12:0 a.m.7 views

Siemens SiPass Integrated

SUMMARY SiPass integrated versions before V2.95.3.18 contain an out of bounds read vulnerability that could allow an unauthenticated remote attacker to create a denial of service condition. Siemens has released a new version for SiPass integrated and recommends to update to the latest version...

8.7CVSS7.8AI score0.00577EPSS
Exploits0References10
ICS
ICS
added 2025/04/08 12:0 a.m.7 views

Siemens SIDIS Prime

SUMMARY SIDIS Prime before V4.0.700 is affected by multiple vulnerabilities in the components OpenSSL, SQLite, Boost C++ Libraries and several Microsoft components as described below. Siemens has released a new version of SIDIS Prime and recommends to update to the latest version. 2. GENERAL...

5.3CVSS9.1AI score0.02577EPSS
Exploits0References10
ICS
ICS
added 2025/03/13 12:0 a.m.7 views

Siemens Simcenter Femap

SUMMARY Siemens Simcenter Femap is affected by memory corruption vulnerability that could be triggered when the application reads files in .NEU format. If a user is tricked to open a malicious file with the affected application, an attacker could leverage the vulnerability to leak information or...

7.8CVSS8AI score0.00187EPSS
Exploits0References10
ICS
ICS
added 2025/03/11 12:30 a.m.7 views

ABB RMC-100

SUMMARY An update is available that resolves a vulnerability in the product versions listed as affected in this advisory. An attacker who successfully exploited this vulnerability could cause the web UI to stop. 2. WORKAROUNDS The vulnerability is only present when the REST interface is enabled...

7.5CVSS6.8AI score0.14663EPSS
Exploits2References10
ICS
ICS
added 2025/03/11 12:0 a.m.7 views

Siemens SCALANCE M-800 and SC-600 Families

SUMMARY SCALANCE M-800 and SC-600 families are affected by improper input validation in the OpenVPN authentication. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends specific...

6.3CVSS6.5AI score0.00258EPSS
Exploits0References10
ICS
ICS
added 2025/03/11 12:0 a.m.7 views

Siemens SINEMA Remote Connect Server

SUMMARY SINEMA Remote Connect Server before V3.2 SP3 is affected by multiple vulnerabilities. Siemens has released a new version for SINEMA Remote Connect Server and recommends to update to the latest version. 2. GENERAL RECOMMENDATIONS As a general security measure, Siemens strongly recommends...

9.5AI score
Exploits0References10
ICS
ICS
added 2025/02/25 7:0 a.m.7 views

Rockwell Automation PowerFlex 755

RISK EVALUATION Successful exploitation of this vulnerability could result in exposure of sensitive data. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control system...

8.7CVSS6.9AI score0.00265EPSS
Exploits0References10
ICS
ICS
added 2025/02/11 6:0 a.m.7 views

Schneider Electric Enerlin’X IFE and eIFE

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

7AI score
Exploits0References11
ICS
ICS
added 2025/02/11 12:0 a.m.7 views

Siemens Questa and ModelSim

SUMMARY Questa and ModelSim incl. OEM Editions are affected by a vulnerability that could allow a local attacker to inject arbitrary code and escalate privileges. Siemens has released new versions for the affected products and recommends to update to the latest versions. 2. GENERAL...

7.8CVSS7.3AI score0.00152EPSS
Exploits0References10
ICS
ICS
added 2025/02/04 7:0 a.m.7 views

Elber Communications Equipment

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker unauthorized administrative access to the affected device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this these vulnerabilities, such as:...

7.6AI score
Exploits0References10
ICS
ICS
added 2025/02/04 7:0 a.m.7 views

Western Telematic Inc NPS Series, DSM Series, CPM Series

RISK EVALUATION Successful exploitation of this vulnerability could allow an authenticated attacker to gain privileged access to files on the device's filesystem. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability,...

6.5CVSS7AI score0.00408EPSS
Exploits0References10
ICS
ICS
added 2025/01/30 7:0 a.m.7 views

Rockwell Automation KEPServer

RISK EVALUATION Successful exploitation of this vulnerability could cause the device to crash. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control system devices...

7.5CVSS7.6AI score0.0077EPSS
Exploits0References10
ICS
ICS
added 2025/01/23 12:0 a.m.7 views

Fedora Repository fedoraIntCallUser default credentials and insecure archive extraction

RISK EVALUATION Fedora Repository 3.8 includes default user credentials and allows path traversal when extracting uploaded archive files. An attacker can exploit these vulnerabilities to read sensitive data and execute arbitrary commands with the privileges of the Java web application server...

8.8CVSS7.6AI score0.00711EPSS
Exploits0References1
ICS
ICS
added 2025/01/14 12:0 a.m.7 views

Schneider Electric Modicon M340 and BMXNOE0100/0110, BMXNOR0200H (Update B)

RISK EVALUATION Successful exploitation of this vulnerability could cause information disclosure of a restricted web page, modification of a web page and a denial of service when specific web pages are modified and restricted functions are invoked. 2. RECOMMENDED PRACTICES CISA reminds...

8.8CVSS7.4AI score0.00334EPSS
Exploits0References11
ICS
ICS
added 2025/01/07 7:0 a.m.7 views

Nedap Librix Ecoreader

RISK EVALUATION Successful exploitation of this vulnerability could result in remote code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control system...

8.8CVSS8AI score0.00504EPSS
Exploits0References10
ICS
ICS
added 2024/12/19 7:0 a.m.7 views

Ossur Mobile Logic Application

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker unauthorized access to sensitive information. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize network...

5.6CVSS7.2AI score0.00188EPSS
Exploits0References10
ICS
ICS
added 2024/12/19 7:0 a.m.7 views

Delta Electronics DTM Soft

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control...

8.5CVSS7.5AI score0.00333EPSS
Exploits0References10
ICS
ICS
added 2024/12/17 7:0 a.m.7 views

BD Diagnostic Solutions Products (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to use default credentials to access, modify, or delete sensitive data, which could impact the availability of the system or cause a system shutdown. 2. RECOMMENDED PRACTICES CISA recommends users take...

8CVSS6.8AI score0.00237EPSS
Exploits0References10
ICS
ICS
added 2024/12/17 7:0 a.m.7 views

ThreatQuotient ThreatQ Platform

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to perform remote code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all...

8.8CVSS7.9AI score0.00706EPSS
Exploits0References10
ICS
ICS
added 2024/12/03 12:0 a.m.7 views

Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update C)

RISK EVALUATION Successful exploitation of these vulnerabilities could result in remote code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. CISA reminds organizations to perform proper impact...

7.5AI score
Exploits0References8
ICS
ICS
added 2024/11/07 7:0 a.m.7 views

Bosch Rexroth IndraDrive

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service, rendering the device unresponsive by sending arbitrary UDP messages. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

7.5CVSS7.1AI score0.00495EPSS
Exploits0References10
ICS
ICS
added 2024/10/08 12:0 a.m.7 views

Schneider Electric EVlink Home Smart and Schneider Charge

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

8.5CVSS6.8AI score0.00113EPSS
Exploits0References11
ICS
ICS
added 2024/10/08 12:0 a.m.7 views

Schneider Electric Data Center Expert

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

7.3AI score
Exploits0References11
ICS
ICS
added 2023/07/11 7:15 a.m.7 views

Schneider Electric devices using CODESYS Runtime

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

6.9AI score
Exploits0References11
ICS
ICS
added 2026/07/07 12:0 a.m.6 views

FluxInk Color Management Driver local privilege escalation

RISK EVALUATION An attacker with a standard user account on a device could escalate their privileges via arbitrary physical memory mapping at \Device\PhysicalMemory. 2. RECOMMENDED PRACTICES Fixed in version 1.0.7.6. The fixed driver is currently available in the Windows 11 25H2 HLK Hardware Lab...

8.4CVSS6AI score0.00101EPSS
Exploits0References1
ICS
ICS
added 2026/06/30 12:0 a.m.6 views

Hitachi Energy e-mesh EMS

SUMMARY Hitachi Energy is aware of a buffer overflow vulnerability that affects e-mesh EMS product versions listed in this document. Successful exploitation of this vulnerability could lead to a buffer overflow condition, potentially resulting in application outages denial of service and...

9.2CVSS8AI score0.61469EPSS
Exploits40References10
ICS
ICS
added 2026/04/29 2:27 p.m.6 views

TP-Link WR841N Router multiple vulnerabilities

RISK EVALUATION Multiple TP-Link products TP-Link Archer C20 V5, Archer C20 6.0, Archer AX53 v1.0 and TL-WR841N v13 are affected by multiple vulnerabilities. The most severe of these vulnerabilities could allow an adjacent, unauthenticated attacker to execute administrative commands. 2...

8.8CVSS5.7AI score0.00401EPSS
Exploits0References1
ICS
ICS
added 2026/04/14 7:0 a.m.6 views

Schneider Electric Easergy MiCOM Px40 Series

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

6.9CVSS6.3AI score0.00271EPSS
Exploits0References11
ICS
ICS
added 2026/04/07 8:50 p.m.6 views

Thales Sentinel LDK Runtime Stored XSS

RISK EVALUATION Thales Sentinel LDK Runtime on Windows allows Stored Cross-site Scripting. 2. RECOMMENDED PRACTICES Upgrade to version 10.22 or later. 3. DESCRIPTION Thales Sentinel LDK Runtime on Windows allows Stored Cross-site Scripting. Fixed in Sentinel LDK Runtime 10.22. 4. EXTRA INFO...

8.3CVSS5.9AI score0.00137EPSS
Exploits0References1
ICS
ICS
added 2026/04/02 5:11 p.m.6 views

Bentley Systems iTwin Platform exposed access token

RISK EVALUATION Bentley Systems iTwin Platform exposed a Cesium ion access token in the source of some web pages. An unauthenticated attacker could use this token to enumerate or delete certain assets. 2. RECOMMENDED PRACTICES As of 2026-03-27, the token is no longer present in the web pages and...

6.9CVSS5.9AI score0.00281EPSS
Exploits0References1
ICS
ICS
added 2026/03/31 6:0 a.m.6 views

Anritsu Remote Spectrum Monitor

RISK EVALUATION Successful exploitation of this vulnerability could allow attackers with network access to alter operational settings, obtain sensitive signal data, or disrupt device availability. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

9.3CVSS5.8AI score0.00387EPSS
Exploits0References11
ICS
ICS
added 2026/03/12 6:0 a.m.6 views

Trane Tracer SC, Tracer SC+, and Tracer Concierge

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information, execute arbitrary commands, or perform a denial-of-service on the product. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

5.9AI score
Exploits0References13
ICS
ICS
added 2026/03/10 7:0 a.m.6 views

Schneider Electric EcoStruxure Automation Expert

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

8.2CVSS6.2AI score0.00227EPSS
Exploits0References11
ICS
ICS
added 2026/03/10 7:0 a.m.6 views

Schneider Electric EcoStruxure Data Center Expert

GENERAL SECURITY RECOMMENDATIONS Schneider Electric strongly recommends the following industry cybersecurity best practices: Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized...

7.5CVSS6.5AI score0.00679EPSS
Exploits0References11
ICS
ICS
added 2026/03/10 7:0 a.m.6 views

Schneider Electric Modicon M241, M251, and M262

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

6.9CVSS5.9AI score0.00455EPSS
Exploits0References11
ICS
ICS
added 2026/03/10 5:0 a.m.6 views

Ceragon Siklu MultiHaul and EtherHaul Series

RISK EVALUATION Successful exploitation of this vulnerability could result in arbitrary file upload to the target equipment. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this these vulnerabilityies, such as: When remote access is...

6.5CVSS5.9AI score0.00417EPSS
Exploits6References10
ICS
ICS
added 2026/03/03 7:0 a.m.6 views

Labkotec LID-3300IP

RISK EVALUATION Successful exploitation of this vulnerability could allow attackers to gain unauthorized control over system operations, leading to disruption of normal functionality and potential safety hazards. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize...

8.8CVSS6AI score0.00758EPSS
Exploits0References11
ICS
ICS
added 2026/02/26 7:0 a.m.6 views

Yokogawa CENTUM VP R6, R7

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to terminate the software stack process, cause a denial-of-service condition, or execute arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

5.8AI score
Exploits0References13
ICS
ICS
added 2026/02/26 7:0 a.m.6 views

Pelco, Inc. Sarix Pro 3 Series IP Cameras

RISK EVALUATION Successful exploitation of this vulnerability could allow attackers to gain unauthorized access to sensitive device data, bypass surveillance controls, and expose facilities to privacy breaches, operational risks, and regulatory compliance issues. 2. RECOMMENDED PRACTICES CISA...

8.7CVSS5.5AI score0.00348EPSS
Exploits0References11
ICS
ICS
added 2026/02/12 7:0 a.m.6 views

Airleader Master

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to obtain remote code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all...

9.8CVSS6.4AI score0.01207EPSS
Exploits0References11
ICS
ICS
added 2026/02/10 8:0 a.m.6 views

Schneider Electric SCADAPack and RemoteConnect

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

6.1AI score
Exploits0References11
ICS
ICS
added 2026/02/10 7:0 a.m.6 views

Yokogawa FAST/TOOLS

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to redirected users to malicious sites, decrypt communications, perform a man-in-the-middle MITM attack, execute malicious scripts, steal files, and perform other various attacks. 2. RECOMMENDED PRACTICES...

5.5AI score
Exploits0References13
Total number of security vulnerabilities4251