Lucene search
K
IcsMost viewed

4251 matches found

ICS
ICS
added 2026/01/13 7:0 a.m.6 views

Rockwell Automation 432ES-IG3 Series A

RISK EVALUATION Successful exploitation of this vulnerability could result in a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control...

8.7CVSS6.5AI score0.00326EPSS
Exploits0References11
ICS
ICS
added 2026/01/13 12:0 a.m.6 views

Siemens TeleControl Server Basic

SUMMARY TeleControl Server Basic before V3.1.2.4 contains a local privilege escalation vulnerability that could allow an attacker to run arbitrary code with elevated privileges. Siemens has released a new version for TeleControl Server Basic and recommends to update to the latest version. 2...

8.8CVSS7.4AI score0.00144EPSS
Exploits0References10
ICS
ICS
added 2026/01/07 4:35 p.m.6 views

OPEXUS eComplaint and eCasePortal IDOR

RISK EVALUATION OPEXUS eCasePortal and eComplaint before version 9.0.45.0 allow an unauthenticated attacker to iterate through predictable URL parameters and download all available files. The eCasePortal vulnerability allows attackers to upload and delete files as well. 2. RECOMMENDED PRACTICES...

9.8CVSS6.8AI score0.00375EPSS
Exploits0References1
ICS
ICS
added 2025/12/30 7:0 a.m.6 views

WHILL Model C2 Electric Wheelchairs and Model F Power Chairs (Update B)

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker within Bluetooth range to take control over the product. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize...

9.8CVSS6.2AI score0.05494EPSS
Exploits0References14
ICS
ICS
added 2025/12/18 7:0 a.m.6 views

National Instruments LabView

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose information and execute arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize...

7.6AI score
Exploits0References13
ICS
ICS
added 2025/12/16 7:0 a.m.6 views

Hitachi Energy AFS, AFR and AFF Series

RISK EVALUATION Successful exploitation of this vulnerability could compromise the integrity of the product data and disrupt its availability. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize...

9CVSS6.4AI score0.14859EPSS
Exploits2References13
ICS
ICS
added 2025/12/11 7:0 a.m.6 views

Grassroots DICOM (GDCM)

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to craft a malicious DICOM file and, if opened, could crash the application resulting in a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the...

6.8CVSS7AI score0.00123EPSS
Exploits0References13
ICS
ICS
added 2025/12/11 7:0 a.m.6 views

Johnson Controls iSTAR

RISK EVALUATION Successful exploitation of these vulnerabilities could result in unauthorized access to the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize network exposure for all...

6.6AI score
Exploits0References13
ICS
ICS
added 2025/12/11 7:0 a.m.6 views

AzeoTech DAQFactory (Update A)

RISK EVALUATION Successful exploitation of these vulnerabilities requires an attacker to upload a malicious .ctl file. This could lead to information disclosure or arbitrary code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

9.8CVSS7.6AI score0.00324EPSS
Exploits0References13
ICS
ICS
added 2025/12/09 8:0 a.m.6 views

Schneider Electric EcoStruxure Foxboro DCS (Update A)

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

5.9CVSS7.3AI score0.01553EPSS
Exploits0References11
ICS
ICS
added 2025/12/09 12:0 a.m.6 views

Siemens Interniche IP-Stack

SUMMARY Multiple Industrial products are affected by a vulnerability in the Interniche IP-Stack. The affected products do not properly enforce TCP sequence number validation in specific scenarios but accept values within a broad range. This could allow an unauthenticated remote attacker e.g. to...

8.7CVSS6.9AI score0.00424EPSS
Exploits0References10
ICS
ICS
added 2025/12/09 12:0 a.m.6 views

Siemens RUGGEDCOM ROS

SUMMARY Ruggedcom ROS devices contain a temporary denial of service vulnerability that could allow an attacker to crash and restart the device. Siemens has released new versions for the affected products and recommends to update to the latest versions. 2. GENERAL RECOMMENDATIONS As a general...

5.3CVSS6.8AI score0.00226EPSS
Exploits0References10
ICS
ICS
added 2025/12/09 12:0 a.m.6 views

Siemens Building X - Security Manager Edge Controller

SUMMARY Building X - Security Manager Edge Controller ACC-AP devices do not properly check the integrity of firmware updates. This could allow an attacker to upload a maliciously modified firmware onto the device. Siemens is preparing fix versions and recommends specific countermeasures for...

6.2CVSS6.7AI score0.00145EPSS
Exploits0References10
ICS
ICS
added 2025/12/09 12:0 a.m.6 views

Siemens SIMATIC CN 4100

SUMMARY SIMATIC CN 4100 contains multiple vulnerabilities which could potentially lead to a compromise in availability, integrity and confidentiality. Siemens has released a new version for SIMATIC CN 4100 and recommends to update to the latest version. 2. GENERAL RECOMMENDATIONS As a general...

7.7AI score
Exploits0References10
ICS
ICS
added 2025/12/04 7:0 a.m.6 views

MAXHUB Pivot

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to request a password reset and gain unauthorized access to the account. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such...

8.7CVSS7AI score0.00257EPSS
Exploits0References13
ICS
ICS
added 2025/12/02 7:0 a.m.6 views

Industrial Video & Control Longwatch

RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated attacker to gain remote code execution with elevated privileges. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such...

9.3CVSS8.6AI score0.00628EPSS
Exploits0References13
ICS
ICS
added 2025/11/25 7:0 a.m.6 views

SiRcom SMART Alert (SiSA)

RISK EVALUATION Successful exploitation of this vulnerability could enable an attacker to remotely activate or manipulate emergency sirens. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network...

8.8CVSS6.8AI score0.00306EPSS
Exploits0References13
ICS
ICS
added 2025/11/25 7:0 a.m.6 views

Zenitel TCIV-3+

RISK EVALUATION Successful exploitation of these vulnerabilities could result in arbitrary code execution or cause a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as:...

10CVSS8.4AI score0.02278EPSS
Exploits0References11
ICS
ICS
added 2025/11/20 6:0 a.m.6 views

Opto 22 GRV-EPIC and groov RIO

RISK EVALUATION Successful exploitation of this vulnerability could result in the execution of arbitrary shell commands with root privileges. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize...

7.5CVSS8.2AI score0.0645EPSS
Exploits0References11
ICS
ICS
added 2025/11/20 12:30 a.m.6 views

ABB Edgenius Management Portal

SUMMARY ABB identified a critical vulnerability present in ABB Ability Edgenius starting from version 3.2.0.0. We have not received any reports of this vulnerability being exploited. An unauthenticated attacker could exploit this vulnerability to: → install and run arbitrary code, → uninstall...

9.6CVSS6.2AI score0.00283EPSS
Exploits0References11
ICS
ICS
added 2025/11/18 7:0 a.m.6 views

Shelly Pro 4PM

RISK EVALUATION Successful exploitation of this vulnerability could result in a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control...

8.3CVSS6.8AI score0.00393EPSS
Exploits0References11
ICS
ICS
added 2025/11/13 7:0 a.m.6 views

Siemens SICAM P850 family and SICAM P855 family

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to perform arbitrary actions on the device on behalf of a legitimate user, or impersonate that user. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

6.1AI score
Exploits0References13
ICS
ICS
added 2025/11/13 7:0 a.m.6 views

Rockwell Automation FactoryTalk Policy Manager

RISK EVALUATION Successful exploitation of this vulnerability could lead to resource exhaustion and denial of service. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all...

7.5CVSS7.4AI score0.03168EPSS
Exploits0References13
ICS
ICS
added 2025/11/13 7:0 a.m.6 views

Rockwell Automation Studio 5000 Simulation Interface

RISK EVALUATION Successful exploitation of these vulnerabilities could allow attackers to trigger outbound SMB requests to capture NTLM hashes and execute scripts with Administrator privileges upon system reboot. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize...

8.9CVSS7.2AI score0.00167EPSS
Exploits0References11
ICS
ICS
added 2025/11/13 7:0 a.m.6 views

AVEVA Application Server IDE

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to tamper with help files and inject cross-site scripting XSS code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:...

7.2CVSS6.4AI score0.00155EPSS
Exploits0References13
ICS
ICS
added 2025/11/11 8:0 a.m.6 views

Schneider Electric EcoStruxure Machine SCADA Expert & Pro-face BLUE Open Studio

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install physical controls so no unauthorized personnel can access...

8.4CVSS6.2AI score0.00097EPSS
Exploits0References11
ICS
ICS
added 2025/11/06 7:0 a.m.6 views

ABB FLXeon Controllers

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to take remote control of the product, insert and run arbitrary code, and crash the device being accessed. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

7.8AI score
Exploits0References12
ICS
ICS
added 2025/11/04 7:0 a.m.6 views

IDIS ICM Viewer

RISK EVALUATION Successful exploitation of this vulnerability could result in an attacker executing arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all...

8.8CVSS7.9AI score0.0045EPSS
Exploits0References11
ICS
ICS
added 2025/10/28 6:0 a.m.6 views

Vertikal Systems Hospital Manager Backend Services

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to obtain unauthorized access to and disclose sensitive information. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such...

6.7AI score
Exploits0References13
ICS
ICS
added 2025/10/23 6:0 a.m.6 views

Veeder-Root TLS4B Automatic Tank Gauge System

RISK EVALUATION Successful exploitation of these vulnerabilities could allow attackers to execute system-level commands, gain full shell access, achieve remote command execution, move laterally within the network, trigger a denial of service condition, cause administrative lockout, and disrupt...

9.9CVSS7.6AI score0.01308EPSS
Exploits0References11
ICS
ICS
added 2025/10/23 6:0 a.m.6 views

ASKI Energy ALS-Mini-S8 and ALS-Mini-S4

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain full control over the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for...

10CVSS7.1AI score0.00754EPSS
Exploits0References11
ICS
ICS
added 2025/10/14 12:0 a.m.6 views

Siemens SiPass Integrated

SUMMARY SiPass integrated before V3.0 contains multiple vulnerabilities that could allow an unauthenticated remote attacker to exploit user accounts, manipulate data, impersonate users, or achieve arbitrary code execution on the SiPass integrated server. Siemens has released a new version for...

9.3AI score
Exploits0References10
ICS
ICS
added 2025/10/14 12:0 a.m.6 views

Siemens SIMATIC ET 200SP Communication Processors

SUMMARY SIMATIC ET 200SP communication processors CP 1542SP-1, CP 1542SP-1 IRC and CP 1543SP-1, incl. SIPLUS variants contain an authentication vulnerability that could allow an unauthenticated remote attacker to access the configuration data. Siemens has released new versions for the affected...

9.8CVSS7.1AI score0.00496EPSS
Exploits0References10
ICS
ICS
added 2025/10/09 6:0 a.m.6 views

Rockwell Automation Stratix

RISK EVALUATION Successful exploitation of this vulnerability could result in arbitrary code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control system...

7.7CVSS7.8AI score0.37613EPSS
Exploits1References11
ICS
ICS
added 2025/10/07 10:50 p.m.6 views

OPEXUS FOIAXpress stored XSS

RISK EVALUATION OPEXUS FOIAXpress before 11.13.3.0 contains multiple stored cross-site-scripting vulnerabilities. These vulnerabilities allow an authenticated administrative user to inject JavaScript or other content into various components of FOIAXpress. Successful exploitation allows the...

4.8CVSS6.5AI score0.00225EPSS
Exploits0References1
ICS
ICS
added 2025/09/30 9:2 a.m.6 views

Hitachi Energy MSM

SUMMARY Hitachi Energy is aware of open-source software vulnerabilities that affect MSM product versions listed below. If exploited, these vulnerabilities could result in XSS and DoS attacks, potentially causing confidentiality, integrity and availability impact to MSM. Please refer to the...

6.5AI score
Exploits0References9
ICS
ICS
added 2025/09/30 8:50 a.m.6 views

Hitachi Energy Asset Suite (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could result in the manipulation of content or the injection of data with the potential of carrying out further malicious attacks. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

6CVSS6.7AI score0.00277EPSS
Exploits0References9
ICS
ICS
added 2025/09/30 6:0 a.m.6 views

National Instruments Circuit Design Suite

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to cause memory corruption, potentially leading to information disclosure and execution of arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

8.5CVSS7.4AI score0.00171EPSS
Exploits0References11
ICS
ICS
added 2025/09/30 5:0 a.m.6 views

LG Innotek Camera Multiple Models

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain administrative access to the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure...

8.8CVSS7.1AI score0.00578EPSS
Exploits0References11
ICS
ICS
added 2025/09/25 6:0 a.m.6 views

Dingtian DT-R002

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to retrieve credentials without authentication. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities, such as: Minimize network...

7.1AI score
Exploits0References11
ICS
ICS
added 2025/09/23 6:0 a.m.6 views

Viessmann Vitogate 300

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to modify an intended OS command when it is sent to a downstream component, or allow an attacker to cause unexpected interactions between the client and server. 2. RECOMMENDED PRACTICES CISA recommends users...

7AI score
Exploits0References13
ICS
ICS
added 2025/09/18 6:0 a.m.6 views

Dover Fueling Solutions ProGauge MagLink LX4 Devices

RISK EVALUATION Successful exploitation of these vulnerabilities could result in a remote attacker causing a denial-of-service condition or gaining administrative access to the device. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

8.8CVSS7.2AI score0.00368EPSS
Exploits0References10
ICS
ICS
added 2025/09/16 6:0 a.m.6 views

Delta Electronics DIALink

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to bypass authentication. 2. RECOMMENDED PRACTICES CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures. CISA also provides a section for...

7.3CVSS6.8AI score0.13174EPSS
Exploits0References10
ICS
ICS
added 2025/09/15 6:41 p.m.6 views

psPAS does not enforce TLS 1.2 within Get-PASSAMLResponse

RISK EVALUATION psPAS is a PowerShell module for the CyberArk API. psPAS does not explicitly enforce TLS 1.2 when using the 'Get-PASSAMLResponse' function. An unauthenticated attacker in a 'Man-in-the-Middle' position could manipulate the TLS handshake and downgrade TLS to a deprecated protocol...

3.1CVSS6.8AI score0.00221EPSS
Exploits0References1
ICS
ICS
added 2025/09/11 6:0 a.m.6 views

Daikin Europe N.V Security Gateway

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to gain unauthorized access to the system. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure...

9.8CVSS7AI score0.00607EPSS
Exploits1References10
ICS
ICS
added 2025/09/09 6:0 a.m.6 views

Rockwell Automation Analytics LogixAI

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to access sensitive information. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all...

8.8CVSS6.5AI score0.00269EPSS
Exploits0References13
ICS
ICS
added 2025/09/09 6:0 a.m.6 views

Rockwell Automation Stratix IOS

RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to run malicious configurations without authentication. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize...

8.6CVSS7.7AI score0.00605EPSS
Exploits0References10
ICS
ICS
added 2025/09/09 12:0 a.m.6 views

Siemens Industrial Edge Management

SUMMARY Industrial Edge Management is affected by a vulnerability that could allow a remote attacker to cause a denial of service condition. Siemens recommends specific countermeasures for products where fixes are not, or not yet available. 2. GENERAL RECOMMENDATIONS As a general security...

7.5CVSS6.8AI score0.64718EPSS
Exploits1References10
ICS
ICS
added 2025/09/09 12:0 a.m.6 views

Siemens SINAMICS Drives

SUMMARY Siemens SINAMICS G220, SINAMICS S210, and SINAMICS S200 contains a privilege escalation vulnerability that could allow users to escalate their privileges. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing...

9.8CVSS7.1AI score0.00201EPSS
Exploits0References10
ICS
ICS
added 2025/09/09 12:0 a.m.6 views

Siemens User Management Component (UMC)

SUMMARY Siemens' User Management Component UMC is affected by multiple vulnerabilities that could allow an unauthenticated remote attacker to execute arbitrary code or to cause a denial of service condition. Siemens has released a new version for User Management Component UMC and recommends to...

8.1AI score
Exploits0References10
Total number of security vulnerabilities4251