| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-0220 | B&R products use insufficient communication encryption | B&R Industrial Automation | Automation Studio | High | 8.3 | 2024-02-22 10:15:45 | Deep Dive |
| CVE-2024-1635 | Undertow: out-of-memory error after several closed connections with wildfly-http-client protocol | - | - | High | 7.5 | 2024-02-19 21:23:14 | Deep Dive |
| CVE-2024-21915 | Rockwell Automation FactoryTalk® Service Platform Elevated Privileges Vulnerability Through Web Service Functionality | Rockwell Automation | FactoryTalk® Service Platform | Critical | 9.0 | 2024-02-16 18:20:44 | Deep Dive |
| CVE-2024-1459 | Undertow: directory traversal vulnerability | - | - | Medium | 5.3 | 2024-02-12 20:30:04 | Deep Dive |
| CVE-2022-22506 | IBM Robotic Process Automation information disclosure | IBM | Robotic Process Automation | Medium | 4.6 | 2024-02-12 19:09:57 | Deep Dive |
| CVE-2023-6681 | Jwcrypto: denail of service via specifically crafted jwe | Red Hat | Red Hat Enterprise Linux 8 | Medium | 5.3 | 2024-02-12 14:04:45 | Deep Dive |
| CVE-2024-0690 | Ansible-core: possible information leak in tasks that ignore ansible_no_log configuration | - | - | Medium | 5.0 | 2024-02-06 12:00:29 | Deep Dive |
| CVE-2023-50782 | Python-cryptography: bleichenbacher timing oracle attack against rsa decryption - incomplete fix for cve-2020-25659 | - | - | High | 7.5 | 2024-02-05 20:45:50 | Deep Dive |
| CVE-2023-6028 | SDM Web interface vulnerable to XSS | B&R Industrial Automation | Automation Runtime | Medium | 6.1 | 2024-02-05 17:33:35 | Deep Dive |
| CVE-2024-0323 | FTP uses unsecure encryption mechanisms | B&R Industrial Automation | Automation Runtime | Critical | 9.8 | 2024-02-05 16:05:48 | Deep Dive |
| CVE-2023-50947 | IBM Business Automation Workflow cross-site scripting | IBM | Business Automation Workflow | Medium | 5.4 | 2024-02-04 00:11:02 | Deep Dive |
| CVE-2021-22281 | Zip Slip Vulnerability in B&R Automation Studio Project Import | B&R Industrial Automation | Automation Studio | Medium | 6.3 | 2024-02-02 07:24:30 | Deep Dive |
| CVE-2020-24682 | Automation Studio and PVI Multiple unquoted service path vulnerabilities | B&R Industrial Automation | Automation Studio | High | 7.2 | 2024-02-02 07:11:44 | Deep Dive |
| CVE-2020-24681 | Automation Studio and PVI Multiple incorrect permission assignments for services | B&R Industrial Automation | Automation Studio | High | 8.2 | 2024-02-02 06:58:24 | Deep Dive |
| CVE-2021-22282 | RCE in B&R Automation Studio with crafted project files | B&R Industrial Automation | Automation Studio | High | 8.3 | 2024-02-02 06:38:32 | Deep Dive |
| CVE-2024-21916 | Rockwell Automation Denial-of-service Vulnerability in ICE1 Controller | Rockwell Automation | ControlLogix® 5570 | High | 8.6 | 2024-01-31 18:29:00 | Deep Dive |
| CVE-2024-21917 | Rockwell Automation FactoryTalk® Service Platform Service Token Vulnerability | Rockwell Automation | FactoryTalk® Service Platform | Critical | 9.8 | 2024-01-31 18:16:28 | Deep Dive |
| CVE-2023-6291 | Keycloak: redirect_uri validation bypass | Red Hat | Red Hat build of Keycloak 22 | High | 7.1 | 2024-01-26 14:23:43 | Deep Dive |
| CVE-2023-34063 | VMware Aria Automation和VMware Cloud Foundation 安全漏洞 | N/A | VMware Aria Automation, VMware Cloud Foundation | Critical | 9.9 | 2024-01-16 09:10:10 | Deep Dive |
| CVE-2023-7206 | Horner Automation Cscape Stack-Based Buffer Overflow | Horner Automation | Cscape | High | 7.8 | 2024-01-15 22:22:02 | Deep Dive |