|
2281
|
- |
|
-
|
-
|
A stack-based buffer overflow vulnerability has been found in the NPort W2150A-W4/W2250A-W4 Series version 1.5 and earlier. This vulnerability stems from insufficient input validation of user-supplie…
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2026-10829
|
2026-06-17 00:26 |
2026-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2282
|
- |
|
-
|
-
|
A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses in the CIP protocol. This allows attacker to abuse the exposed C…
|
CWE-354
Improper Validation of Integrity Check Value
|
CVE-2025-11694
|
2026-06-17 00:26 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2283
|
- |
|
-
|
-
|
An authentication
bypass security issue exists within FactoryTalk Historian Site Edition. By
continually sending requests to the login endpoint, an attacker may obtain a
valid authentication token.
|
CWE-362
Race Condition
|
CVE-2025-13036
|
2026-06-17 00:26 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2284
|
- |
|
-
|
-
|
A security issue was identified in Pavilion due to improper authorization enforcement in API endpoints. This vulnerability can allow an unauthorized actor to execute privileged operations, including …
|
CWE-862
Missing Authorization
|
CVE-2025-14272
|
2026-06-17 00:26 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2285
|
- |
|
-
|
-
|
A denial-of-service security issue exists within the 1794-AENTR adapter due to improper memory handling of CIP protocol requests. This vulnerability can result in the adapter faulting and losing conn…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-0646
|
2026-06-17 00:26 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2286
|
- |
|
-
|
-
|
An improper authentication security issue exists within the 1794-AENTR adapter's embedded web server. The vulnerability allows an unauthenticated attacker to change the device's web interface passwor…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2026-0647
|
2026-06-17 00:26 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2287
|
- |
|
-
|
-
|
A denial of service security issue exists in the
affected product. The security issue stems from a fault occurring when a
crafted CIP message is sent. Devices with less memory are more likely to be
a…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-11317
|
2026-06-17 00:26 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2288
|
7.5 |
HIGH
Network
|
-
|
-
|
A command injection vulnerability was found in galaxy_ng. The do_git_checkout() function in the legacy role import API (v1) interpolates unsanitized git ref names (branch/tag names) into shell comman…
|
CWE-78
OS Command
|
CVE-2026-12398
|
2026-06-17 00:26 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2289
|
- |
|
-
|
-
|
A sensitive information disclosure security issue exists within the affected CompactLogix controllers. The controller's web server exposes CIP Connection IDs on the diagnostics webpage, which are acc…
|
CWE-497
Exposure of Sensitive System Information to an Unauthorized Control Sphere
|
CVE-2026-9307
|
2026-06-17 00:26 |
2026-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2290
|
7.5 |
HIGH
Network
|
-
|
-
|
In Spring Cloud Sleuth, it is possible for a user to provide specially crafted calls that may cause a denial-of-service (DoS) condition. The application is vulnerable when it uses a vulnerable versio…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-41708
|
2026-06-17 00:23 |
2026-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
