| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-6436 | Rockwell Automation Input Validation Vulnerability exists in the SequenceManager™ Server | Rockwell Automation | SequenceManager™ | - | - | 2024-09-27 19:45:05 | Deep Dive |
| CVE-2024-8771 | Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce <= 5.7.34 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure | icegram | Email Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress | Medium | 4.3 | 2024-09-26 15:30:34 | Deep Dive |
| CVE-2024-4657 | Strored XSS in Talent Software's BAP Automation | Talent Software | BAP Automation | - | - | 2024-09-25 12:37:28 | Deep Dive |
| CVE-2024-5682 | User Enumeration in Yordam Information Technology's Yordam Library Automation System | Yordam Information Technology | Yordam Library Automation System | - | - | 2024-09-18 11:52:42 | Deep Dive |
| CVE-2024-43188 | IBM Business Automation Workflow improper input validation | IBM | Business Automation Workflow | Medium | 4.9 | 2024-09-18 11:39:23 | Deep Dive |
| CVE-2024-8775 | Ansible-core: exposure of sensitive information in ansible vault files due to improper logging | - | - | Medium | 5.5 | 2024-09-14 02:15:15 | Deep Dive |
| CVE-2024-7961 | Rockwell Automation Path Traversal Vulnerability in Pavilion8® | Rockwell Automation | Pavilion8® | - | - | 2024-09-12 20:26:42 | Deep Dive |
| CVE-2024-7960 | Rockwell Automation Incorrect Privileges and Path Traversal Vulnerability in Pavilion8® | Rockwell Automation | Pavilion8® | - | - | 2024-09-12 20:15:10 | Deep Dive |
| CVE-2024-8533 | Rockwell Automation OptixPanel™ Privilege Escalation Vulnerability via File Permissions | Rockwell Automation | 2800C OptixPanel™ Compact | - | - | 2024-09-12 20:06:21 | Deep Dive |
| CVE-2024-6077 | Rockwell Automation ControlLogix/GuardLogix 5580 and CompactLogix/Compact GuardLogix® 5380 Vulnerable to DoS vulnerability via CIP | Rockwell Automation | CompactLogix 5380 | - | - | 2024-09-12 19:59:40 | Deep Dive |
| CVE-2024-6840 | Automation-controller: gain access to the k8s api server via job execution with container group | - | - | Medium | 6.6 | 2024-09-12 16:35:09 | Deep Dive |
| CVE-2024-45826 | ThinManager® Code Execution Vulnerability | Rockwell Automation | ThinManager | Medium | 6.8 | 2024-09-12 14:33:44 | Deep Dive |
| CVE-2024-45825 | 5015-U8IHFT Denial-of-Service Vulnerability via CIP Message | Rockwell Automation | 5015-U8IHFT | High | 7.5 | 2024-09-12 14:28:16 | Deep Dive |
| CVE-2024-45823 | FactoryTalk® Batch View™ Authentication Bypass Vulnerability via shared secrets | Rockwell Automation | FactoryTalk® Batch View™ | High | 8.1 | 2024-09-12 14:20:49 | Deep Dive |
| CVE-2024-45824 | FactoryTalk® View Site Edition Remote Code Execution Vulnerability via Lack of Input Validation | Rockwell Automation | FactoryTalk View Site Edition | Critical | 9.8 | 2024-09-12 14:05:22 | Deep Dive |
| CVE-2023-6841 | Keycloak: amount of attributes per object is not limited and it may lead to dos | - | - | High | 7.5 | 2024-09-10 16:15:33 | Deep Dive |
| CVE-2024-44087 | Siemens Automation License Manager 输入验证错误漏洞 | Siemens | Automation License Manager V5 | High | 8.6 | 2024-09-10 09:36:52 | Deep Dive |
| CVE-2024-33698 | Siemens SIMATIC 安全漏洞 | Siemens | Opcenter Quality | Critical | 9.8 | 2024-09-10 09:36:31 | Deep Dive |
| CVE-2024-5624 | Reflected Cross-Site Scripting (XSS) in Shift Logbook application of B&R APROL | B&R Industrial Automation | B&R APROL | - | - | 2024-08-29 08:53:06 | Deep Dive |
| CVE-2024-5623 | Untrusted search path vulnerability in B&R APROL | B&R Industrial Automation | B&R APROL | - | - | 2024-08-29 08:51:26 | Deep Dive |