| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-7032 | Rockwell Automation Stack-based Buffer Overflow In Arena® Simulation | Rockwell Automation | Arena® Simulation | - | - | 2025-08-05 13:39:33 | Deep Dive |
| CVE-2025-7025 | Rockwell Automation Heap-based Buffer Overflow In Arena® Simulation | Rockwell Automation | Arena® Simulation | - | - | 2025-08-05 13:37:18 | Deep Dive |
| CVE-2025-5988 | Aap-gateway: csrf origin checking is disabled | - | - | Medium | 5.3 | 2025-08-04 15:16:44 | Deep Dive |
| CVE-2025-7738 | Python3.11-django-ansible-base: sensitive authenticator secrets returned in clear text via api in aap | Ansible | django-ansible-base | Medium | 4.4 | 2025-07-31 14:12:03 | Deep Dive |
| CVE-2025-1384 | Least Privilege Violation Vulnerability in the communications functions of NJ/NX-series Machine Automation Controllers | OMRON Corporation | Machine Automation Controller NJ-series | High | 7.0 | 2025-07-13 23:42:10 | Deep Dive |
| CVE-2025-53861 | Aap: sensitive cookie(s) set without security flags | Red Hat | Red Hat Ansible Automation Platform 2 | Low | 3.1 | 2025-07-11 12:44:18 | Deep Dive |
| CVE-2025-53862 | Aap: aap-gateway: automation-hub: sensitive information disclosure | Red Hat | Red Hat Ansible Automation Platform 2 | Low | 3.5 | 2025-07-11 12:34:24 | Deep Dive |
| CVE-2025-6376 | Arena® Simulation Out-Of-Bounds Write Remote Code Execution Vulnerability | Rockwell Automation | Arena® | - | - | 2025-07-09 20:13:45 | Deep Dive |
| CVE-2025-6377 | Arena® Simulation Out-Of-Bounds Write Remote Code Execution Vulnerability | Rockwell Automation | Arena® | - | - | 2025-07-09 20:12:48 | Deep Dive |
| CVE-2025-27127 | Siemens多款产品 代码问题漏洞 | Siemens | TIA Project-Server | Medium | 4.3 | 2025-07-08 10:34:32 | Deep Dive |
| CVE-2025-49520 | Event-driven-ansible: authenticated argument injection in git url in eda project creation | Red Hat | Red Hat Ansible Automation Platform 2.5 for RHEL 8 | High | 8.8 | 2025-06-30 20:45:29 | Deep Dive |
| CVE-2025-49521 | Event-driven-ansible: template injection via git branch and refspec in eda projects | Red Hat | Red Hat Ansible Automation Platform 2.5 for RHEL 8 | High | 8.8 | 2025-06-30 20:45:13 | Deep Dive |
| CVE-2025-1562 | Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit <= 3.5.3 - Missing Authorization to Unauthenticated Arbitrary Plugin Installation | amans2k | FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce | Critical | 9.8 | 2025-06-18 07:22:44 | Deep Dive |
| CVE-2025-4971 | Broadcom Automic Automation Agent Unix privilege escalation | Broadcom | Automic Automation | - | - | 2025-05-19 23:42:23 | Deep Dive |
| CVE-2025-4520 | Uncanny Automator <= 6.4.0.2 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update | uncannyowl | Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin | Medium | 5.4 | 2025-05-14 02:23:18 | Deep Dive |
| CVE-2025-3623 | Uncanny Automator <= 6.4.0.1 - Unauthenticated PHP Object Injection in automator_api_decode_message Function | uncannyowl | Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin | Critical | 9.1 | 2025-05-14 02:23:17 | Deep Dive |
| CVE-2025-30176 | Siemens多款产品 缓冲区错误漏洞 | Siemens | SIMATIC PCS neo V4.1 | High | 7.5 | 2025-05-13 09:38:40 | Deep Dive |
| CVE-2025-30175 | Siemens多款产品 缓冲区错误漏洞 | Siemens | SIMATIC PCS neo V4.1 | High | 7.5 | 2025-05-13 09:38:38 | Deep Dive |
| CVE-2025-30174 | Siemens多款产品 缓冲区错误漏洞 | Siemens | SIMATIC PCS neo V4.1 | High | 7.5 | 2025-05-13 09:38:37 | Deep Dive |
| CVE-2025-22249 | VMSA-2025-0008: VMware Aria automation updates address a DOM based Cross-site scripting vulnerability (CVE-2025-22249) | VMware | Vmware Aria Automation | High | 8.2 | 2025-05-13 05:08:03 | Deep Dive |