Skip to main content

SCADA

22 CVEs product

Monthly

CVE-2026-22553 CRITICAL Act Now

OS command injection in InSAT MasterSCADA BUK-TS through MMadmServ web interface. Unauthenticated RCE on SCADA management server. EPSS 1.26%.

SCADA RCE Command Injection Masterscada
NVD GitHub
CVSS 3.1
9.8
EPSS
1.3%
CVE-2026-21410 CRITICAL Act Now

SQL injection in InSAT MasterSCADA BUK-TS through the main web interface. ICS/SCADA system with unauthenticated SQL injection enabling full database compromise.

SCADA RCE SQLi Masterscada
NVD GitHub
CVSS 3.1
9.8
EPSS
0.5%
CVE-2019-25349 HIGH POC This Week

ScadaApp for iOS 1.1.4.0 contains a denial of service vulnerability that allows attackers to crash the application by inputting an oversized buffer in the Servername field. Attackers can paste a 257-character buffer during login to trigger an application crash on iOS devices. [CVSS 7.5 HIGH]

SCADA Denial Of Service
NVD Exploit-DB
CVSS 3.1
7.5
EPSS
0.0%
CVE-2026-25951 npm HIGH PATCH This Week

Remote code execution in FUXA prior to 1.2.11 allows authenticated administrators to bypass path traversal protections using nested directory sequences, enabling arbitrary file writes to the server filesystem. An attacker with admin privileges can inject malicious scripts into runtime directories that execute when the server reloads, achieving complete system compromise. Update to version 1.2.11 or later to remediate.

SCADA RCE Path Traversal Fuxa
NVD GitHub
CVSS 3.1
7.2
EPSS
0.0%
CVE-2026-25939 npm CRITICAL PATCH Act Now

FUXA SCADA has an eleventh critical vulnerability — missing authorization from versions 1.2.8 onward.

SCADA Fuxa
NVD GitHub
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-25938 npm CRITICAL PATCH Act Now

FUXA SCADA has an authentication spoofing vulnerability from versions 1.2.8 through 1.2.10 — tenth critical vulnerability.

SCADA Authentication Bypass Fuxa
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-25895 npm CRITICAL POC PATCH Act Now

FUXA SCADA has a path traversal vulnerability — ninth critical vulnerability enabling arbitrary file access on SCADA servers.

SCADA Path Traversal Fuxa
NVD GitHub Exploit-DB VulDB
CVSS 3.1
9.8
EPSS
0.0%
CVE-2026-25894 npm CRITICAL PATCH Act Now

FUXA SCADA has insecure default configuration with a known JWT secret — eighth critical vulnerability.

SCADA Fuxa
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-25893 npm CRITICAL PATCH Act Now

FUXA SCADA has yet another authorization bypass — now the seventh critical FUXA vulnerability discovered, enabling unauthenticated access to industrial controls.

SCADA Authentication Bypass Fuxa
NVD GitHub
CVSS 3.1
9.8
EPSS
0.1%
CVE-2026-25752 npm CRITICAL PATCH Act Now

FUXA SCADA/HMI software has an additional authorization bypass vulnerability enabling unauthenticated access to industrial control visualizations.

SCADA Fuxa
NVD GitHub
CVSS 3.1
9.1
EPSS
0.0%
CVE-2026-25751 npm HIGH PATCH This Week

Unauthenticated attackers can retrieve sensitive InfluxDB credentials from FUXA versions through 1.2.9 due to missing authentication controls, enabling direct database access. An attacker exploiting this vulnerability can read, modify, or delete all historical process data and perform denial of service attacks by corrupting the database. FUXA 1.2.10 addresses this issue, but no patch is currently available for affected versions.

SCADA Denial Of Service Information Disclosure Fuxa
NVD GitHub
CVSS 3.1
7.5
EPSS
0.0%
CVE-2020-37143 HIGH POC This Week

ProficySCADA for iOS 5.0.25920 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the password input field. [CVSS 7.5 HIGH]

SCADA Denial Of Service
NVD Exploit-DB
CVSS 3.1
7.5
EPSS
0.1%
CVE-2025-1727 HIGH This Week

CVE-2025-1727 is a critical vulnerability in RF-based remote linking protocols used for End-of-Train (EoT) and Head-of-Train (HoT/FRED) devices in railway operations. The vulnerability exploits a weak BCH checksum implementation that allows attackers to forge brake control commands using software-defined radios (SDR), potentially disrupting train operations or overwhelming brake systems. This affects railway infrastructure globally, with a CVSS score of 8.1 indicating high severity; active exploitation status and proof-of-concept availability are critical factors that determine immediate priority despite the attack requiring physical/adjacent network proximity.

IoT SCADA Industrial Authentication Bypass Denial Of Service
NVD
CVSS 3.1
8.1
EPSS
0.0%
CVE-2025-2523 CRITICAL Act Now

A remote code execution vulnerability in Honeywell Experion PKS and OneWireless WDM (CVSS 9.4). Critical severity with potential for significant impact on affected systems.

Honeywell RCE Integer Overflow SCADA Industrial
NVD
CVSS 3.1
9.4
EPSS
0.4%
CVE-2025-39202 HIGH This Week

CVE-2025-39202 is a local privilege escalation vulnerability in MicroSCADA X SYS600's Monitor Pro interface that allows authenticated users with low privileges to read and overwrite arbitrary files, leading to information disclosure and data corruption. The vulnerability affects the SYS600 product line and requires local access with valid credentials; while the CVSS score of 7.3 indicates moderate-to-high severity, real-world exploitability depends on whether this vulnerability has been added to CISA's KEV catalog or has publicly available proof-of-concept code.

Siemens SCADA Information Disclosure Path Traversal Microscada X Sys600
NVD
CVSS 3.1
7.3
EPSS
0.0%
CVE-2021-41579 HIGH This Week

LCDS LAquis SCADA through 4.3.1.1085 is vulnerable to a control bypass and path traversal. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Path Traversal SCADA
NVD GitHub
CVSS 3.1
7.8
EPSS
1.2%
CVE-2020-25188 HIGH This Week

An attacker who convinces a valid user to open a specially crafted project file to exploit could execute code under the privileges of the application due to an out-of-bounds read vulnerability on the. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure SCADA
NVD
CVSS 3.1
7.8
EPSS
1.9%
CVE-2019-10994 LOW Monitor

Processing a specially crafted project file in LAquis SCADA 4.3.1.71 may trigger an out-of-bounds read, which may allow an attacker to obtain sensitive information. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure SCADA
NVD
CVSS 3.0
3.3
EPSS
0.9%
CVE-2019-10980 HIGH This Week

A type confusion vulnerability may be exploited when LAquis SCADA 4.3.1.71 processes a specially crafted project file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Memory Corruption SCADA
NVD
CVSS 3.1
7.8
EPSS
1.0%
CVE-2018-12635 HIGH This Week

CirCarLife Scada v4.2.4 allows unauthorized upgrades via requests to the html/upgrade.html and services/system/firmware.upgrade URIs. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass SCADA
NVD
CVSS 3.0
7.5
EPSS
0.9%
CVE-2017-9661 HIGH This Week

An Uncontrolled Search Path Element issue was discovered in SIMPlight SCADA Software version 4.3.0.27 and prior. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. No vendor patch available.

RCE SCADA
NVD
CVSS 3.0
7.0
EPSS
0.3%
CVE-2014-5429 MEDIUM This Month

DNP Master Driver 3.02 and earlier in Elipse SCADA 2.29 build 141 and earlier, E3 1.0 through 4.6, and Elipse Power 1.0 through 4.6 allows remote attackers to cause a denial of service (CPU. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service SCADA Power E3
NVD
CVSS 2.0
5.0
EPSS
0.5%
EPSS 1% CVSS 9.8
CRITICAL Act Now

OS command injection in InSAT MasterSCADA BUK-TS through MMadmServ web interface. Unauthenticated RCE on SCADA management server. EPSS 1.26%.

SCADA RCE Command Injection +1
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL Act Now

SQL injection in InSAT MasterSCADA BUK-TS through the main web interface. ICS/SCADA system with unauthenticated SQL injection enabling full database compromise.

SCADA RCE SQLi +1
NVD GitHub
EPSS 0% CVSS 7.5
HIGH POC This Week

ScadaApp for iOS 1.1.4.0 contains a denial of service vulnerability that allows attackers to crash the application by inputting an oversized buffer in the Servername field. Attackers can paste a 257-character buffer during login to trigger an application crash on iOS devices. [CVSS 7.5 HIGH]

SCADA Denial Of Service
NVD Exploit-DB
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Remote code execution in FUXA prior to 1.2.11 allows authenticated administrators to bypass path traversal protections using nested directory sequences, enabling arbitrary file writes to the server filesystem. An attacker with admin privileges can inject malicious scripts into runtime directories that execute when the server reloads, achieving complete system compromise. Update to version 1.2.11 or later to remediate.

SCADA RCE Path Traversal +1
NVD GitHub
EPSS 0% CVSS 9.1
CRITICAL PATCH Act Now

FUXA SCADA has an eleventh critical vulnerability — missing authorization from versions 1.2.8 onward.

SCADA Fuxa
NVD GitHub
EPSS 0% CVSS 9.8
CRITICAL PATCH Act Now

FUXA SCADA has an authentication spoofing vulnerability from versions 1.2.8 through 1.2.10 — tenth critical vulnerability.

SCADA Authentication Bypass Fuxa
NVD GitHub
EPSS 0% CVSS 9.8
CRITICAL POC PATCH Act Now

FUXA SCADA has a path traversal vulnerability — ninth critical vulnerability enabling arbitrary file access on SCADA servers.

SCADA Path Traversal Fuxa
NVD GitHub Exploit-DB VulDB
EPSS 0% CVSS 9.8
CRITICAL PATCH Act Now

FUXA SCADA has insecure default configuration with a known JWT secret — eighth critical vulnerability.

SCADA Fuxa
NVD GitHub
EPSS 0% CVSS 9.8
CRITICAL PATCH Act Now

FUXA SCADA has yet another authorization bypass — now the seventh critical FUXA vulnerability discovered, enabling unauthenticated access to industrial controls.

SCADA Authentication Bypass Fuxa
NVD GitHub
EPSS 0% CVSS 9.1
CRITICAL PATCH Act Now

FUXA SCADA/HMI software has an additional authorization bypass vulnerability enabling unauthenticated access to industrial control visualizations.

SCADA Fuxa
NVD GitHub
EPSS 0% CVSS 7.5
HIGH PATCH This Week

Unauthenticated attackers can retrieve sensitive InfluxDB credentials from FUXA versions through 1.2.9 due to missing authentication controls, enabling direct database access. An attacker exploiting this vulnerability can read, modify, or delete all historical process data and perform denial of service attacks by corrupting the database. FUXA 1.2.10 addresses this issue, but no patch is currently available for affected versions.

SCADA Denial Of Service Information Disclosure +1
NVD GitHub
EPSS 0% CVSS 7.5
HIGH POC This Week

ProficySCADA for iOS 5.0.25920 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the password input field. [CVSS 7.5 HIGH]

SCADA Denial Of Service
NVD Exploit-DB
EPSS 0% CVSS 8.1
HIGH This Week

CVE-2025-1727 is a critical vulnerability in RF-based remote linking protocols used for End-of-Train (EoT) and Head-of-Train (HoT/FRED) devices in railway operations. The vulnerability exploits a weak BCH checksum implementation that allows attackers to forge brake control commands using software-defined radios (SDR), potentially disrupting train operations or overwhelming brake systems. This affects railway infrastructure globally, with a CVSS score of 8.1 indicating high severity; active exploitation status and proof-of-concept availability are critical factors that determine immediate priority despite the attack requiring physical/adjacent network proximity.

IoT SCADA Industrial +2
NVD
EPSS 0% CVSS 9.4
CRITICAL Act Now

A remote code execution vulnerability in Honeywell Experion PKS and OneWireless WDM (CVSS 9.4). Critical severity with potential for significant impact on affected systems.

Honeywell RCE Integer Overflow +2
NVD
EPSS 0% CVSS 7.3
HIGH This Week

CVE-2025-39202 is a local privilege escalation vulnerability in MicroSCADA X SYS600's Monitor Pro interface that allows authenticated users with low privileges to read and overwrite arbitrary files, leading to information disclosure and data corruption. The vulnerability affects the SYS600 product line and requires local access with valid credentials; while the CVSS score of 7.3 indicates moderate-to-high severity, real-world exploitability depends on whether this vulnerability has been added to CISA's KEV catalog or has publicly available proof-of-concept code.

Siemens SCADA Information Disclosure +2
NVD
EPSS 1% CVSS 7.8
HIGH This Week

LCDS LAquis SCADA through 4.3.1.1085 is vulnerable to a control bypass and path traversal. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Path Traversal SCADA
NVD GitHub
EPSS 2% CVSS 7.8
HIGH This Week

An attacker who convinces a valid user to open a specially crafted project file to exploit could execute code under the privileges of the application due to an out-of-bounds read vulnerability on the. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure SCADA
NVD
EPSS 1% CVSS 3.3
LOW Monitor

Processing a specially crafted project file in LAquis SCADA 4.3.1.71 may trigger an out-of-bounds read, which may allow an attacker to obtain sensitive information. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure SCADA
NVD
EPSS 1% CVSS 7.8
HIGH This Week

A type confusion vulnerability may be exploited when LAquis SCADA 4.3.1.71 processes a specially crafted project file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Memory Corruption SCADA
NVD
EPSS 1% CVSS 7.5
HIGH This Week

CirCarLife Scada v4.2.4 allows unauthorized upgrades via requests to the html/upgrade.html and services/system/firmware.upgrade URIs. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass SCADA
NVD
EPSS 0% CVSS 7.0
HIGH This Week

An Uncontrolled Search Path Element issue was discovered in SIMPlight SCADA Software version 4.3.0.27 and prior. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. No vendor patch available.

RCE SCADA
NVD
EPSS 0% CVSS 5.0
MEDIUM This Month

DNP Master Driver 3.02 and earlier in Elipse SCADA 2.29 build 141 and earlier, E3 1.0 through 4.6, and Elipse Power 1.0 through 4.6 allows remote attackers to cause a denial of service (CPU. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service SCADA Power +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy