| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-3449 | Weak Session Token used in Automation Runtime SDM | B&R Industrial Automation GmbH | Automation Runtime | Medium | 4.2 | 2025-10-07 18:21:32 | Deep Dive |
| CVE-2025-3448 | XSS on SDM | B&R Industrial Automation GmbH | Automation Runtime | Medium | 6.1 | 2025-10-07 18:21:13 | Deep Dive |
| CVE-2025-3450 | Automation Runtime SDM requests may impact system | B&R Industrial Automation | Automation Runtime | Critical | 10.0 | 2025-10-07 18:03:54 | Deep Dive |
| CVE-2025-9229 | Information Disclosure in MiR robots and MiR fleet through verbose error pages | Mobile Industrial Robots | MiR Robots | Medium | 5.3 | 2025-08-20 08:36:58 | Deep Dive |
| CVE-2025-9228 | Insufficient authorization when creating notes | Mobile Industrial Robots | MiR Robots | Medium | 4.3 | 2025-08-20 08:24:33 | Deep Dive |
| CVE-2025-9225 | Cross-site scripting (XSS) in MiR robots and MiR fleet | Mobile Industrial Robots | MiR Robots | Medium | 5.5 | 2025-08-20 07:26:02 | Deep Dive |
| CVE-2025-8749 | Path traversal vulnerability in MiR robot software via API requests | Mobile Industrial Robots | MiR Robots | Medium | 6.5 | 2025-08-08 11:46:17 | Deep Dive |
| CVE-2025-8748 | OS command injection in MiR robots and MiR fleet via crafted HTTP requests | Mobile Industrial Robots | MiR Robots | High | 8.8 | 2025-08-08 11:09:17 | Deep Dive |
| CVE-2025-26955 | WordPress Industrial Lite theme <= 1.0.8 - Broken Access Control vulnerability | vowelweb | Industrial Lite | Medium | 4.3 | 2025-04-15 11:59:07 | Deep Dive |
| CVE-2024-54092 | Siemens Industrial Edge Devices 安全漏洞 | Siemens | Industrial Edge Device Kit - arm64 V1.17 | Critical | 9.8 | 2025-04-08 08:22:25 | Deep Dive |
| CVE-2024-10210 | Path traversal in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 05:32:39 | Deep Dive |
| CVE-2024-45484 | Enabled ICMP redirection in B&R APROL | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:55:03 | Deep Dive |
| CVE-2024-45483 | Missing GRUB password in B&R APROL | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:54:25 | Deep Dive |
| CVE-2024-45482 | Privilege escalation in B&R APROL | B&R Industrial Automation | B&R APROL | - | - | 2025-03-25 04:52:56 | Deep Dive |
| CVE-2024-45481 | Improper authentication in SSH of B&R APROL | B&R Industrial Automation | B&R APROL | - | - | 2025-03-25 04:52:07 | Deep Dive |
| CVE-2024-45480 | Unauthorized local file reading in B&R APROL | B&R Industrial Automation | B&R APROL | - | - | 2025-03-25 04:50:53 | Deep Dive |
| CVE-2024-10209 | Incorrect Permission Assignment in APROL file system | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:46:50 | Deep Dive |
| CVE-2024-10208 | Cross Site Scripting vulnerability in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:43:41 | Deep Dive |
| CVE-2024-10207 | Server-Side Request Forgery (authenticated) in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:42:41 | Deep Dive |
| CVE-2024-10206 | Server-Side Request Forgery (unauthenticated) in APROL Web Portal | B&R Industrial Automation GmbH | APROL | - | - | 2025-03-25 04:33:04 | Deep Dive |