| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-9280 | ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities | Rockwell Automation | ArmorStart® LT | - | - | 2026-01-20 13:57:02 | Deep Dive |
| CVE-2025-14027 | Rockwell Automation Recommends Upgrading From 1756-RM2 XT To 1756-RM3 XT | Rockwell Automation | ControlLogix® Redundancy Enhanced Module | - | - | 2026-01-20 13:56:44 | Deep Dive |
| CVE-2025-9279 | ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities | Rockwell Automation | ArmorStart® LT | - | - | 2026-01-20 13:56:23 | Deep Dive |
| CVE-2025-9278 | ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities | Rockwell Automation | ArmorStart® LT | - | - | 2026-01-20 13:55:43 | Deep Dive |
| CVE-2025-9466 | ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities | Rockwell Automation | ArmorStart® LT | - | - | 2026-01-20 13:54:48 | Deep Dive |
| CVE-2025-11743 | Rockwell Automation CompactLogix® 5370 Denial of Service Vulnerability | Rockwell Automation | CompactLogix® 5370 | - | - | 2026-01-20 13:52:17 | Deep Dive |
| CVE-2025-9465 | ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities | Rockwell Automation | ArmorStart® LT | - | - | 2026-01-20 13:51:36 | Deep Dive |
| CVE-2025-9464 | Rockwell Automation ArmorStart® LT - Multiple Denial-of-Service Vulnerabilities | Rockwell Automation | ArmorStart® LT | - | - | 2026-01-20 13:49:19 | Deep Dive |
| CVE-2025-14377 | Verve Asset Manager – Plaintext Storage Vulnerabilities | Rockwell Automation | Verve Asset Manager | - | - | 2026-01-20 13:21:41 | Deep Dive |
| CVE-2025-14376 | Verve Asset Manager – Plaintext Storage Vulnerabilities | Rockwell Automation | Verve Asset Manager | - | - | 2026-01-20 13:18:32 | Deep Dive |
| CVE-2025-41768 | Beckhoff: XSS Vulnerability in TwinCAT 3 HMI Server | Beckhoff Automation | TwinCAT.HMI.Server | Medium | 5.5 | 2026-01-20 08:02:53 | Deep Dive |
| CVE-2025-14348 | weMail <= 2.0.7 - Insufficient Authorization via x-wemail-user Header to Sensitive Information Disclosure | wedevs | weMail: Email Marketing, Email Automation, Newsletters, Subscribers & Email Optins for WooCommerce | Medium | 5.3 | 2026-01-20 04:35:46 | Deep Dive |
| CVE-2025-11044 | Vulnerability on Automation Runtime my cause DoS Conditions | B&R Industrial Automation GmbH | Automation Runtime | Medium | 6.8 | 2026-01-19 15:57:15 | Deep Dive |
| CVE-2025-11043 | Improper Server Certificate Validation in Automation Studio | B&R Industrial Automation GmbH | B&R Automation Studio | High | 7.4 | 2026-01-19 15:52:15 | Deep Dive |
| CVE-2025-52987 | Paragon Automation: A clickjacking vulnerability in the web server configuration has been addressed | Juniper Networks | Paragon Automation (Pathfinder, Planner, Insights) | Medium | 6.1 | 2026-01-15 20:10:45 | Deep Dive |
| CVE-2025-40805 | Siemens Industrial Edge Devices 安全漏洞 | Siemens | Industrial Edge Cloud Device (IECD) | Critical | 10.0 | 2026-01-13 09:44:03 | Deep Dive |
| CVE-2025-14025 | Ansible-automation-platform/aap-gateway: aap-gateway: read-only personal access token (pat) bypasses write restrictions | Red Hat | Red Hat Ansible Automation Platform 2.5 for RHEL 8 | High | 8.5 | 2026-01-08 13:44:05 | Deep Dive |
| CVE-2025-12543 | Undertow-core: undertow http server fails to reject malformed host headers leading to potential cache poisoning and ssrf | Red Hat | Red Hat build of Apache Camel 4.14.4 for Spring Boot 3.5.11 | Critical | 9.6 | 2026-01-07 16:04:22 | Deep Dive |
| CVE-2025-13911 | Inductive Automation Ignition Execution with Unnecessary Privileges | Inductive Automation | Ignition | Medium | 6.4 | 2025-12-18 20:24:30 | Deep Dive |
| CVE-2025-13824 | Micro820®, Micro850®, Micro870® – Specialized Fuzzing Vulnerabilities | Rockwell Automation | Micro820®, Micro850®, Micro870® | - | - | 2025-12-15 15:20:53 | Deep Dive |