Summary
Successful exploitation of this vulnerability could allow an authenticated attacker to inject malicious scripts on the server.
The following versions of Rockwell Automation FactoryTalk DataMosaix are affected:
- DataMosaix Private Cloud <=8.02 (CVE-2026-9292)
| CVSS | Vendor | … |
|---|
Summary
Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition.
The following versions of Rockwell Automation 1756-EN2, 1756-EN3, and 1756-ENBT are affected:
- 1756-EN3 <=V12.001 (CVE-2026-9653)
- 1756-EN2 <=V12.001 (CVE-2026-9653)
- 1756-ENBT V6.006 (CVE-2026-9653)
Summary
Multiple SICAM 8 products are affected by multiple vulnerabilities that could lead to denial of service, namely: - SICAM A8000 Device firmware - CPCI85 for CP-8031/CP-8050 - SICORE for CP-8010/CP-8012 - SICAM EGS Device firmware - CPCI85 - SICAM S8000 - SICORE Siemens has released …
Summary
Successful exploitation of this vulnerability allows an authenticated attacker to escalate privileges and access spaces outside their assigned partition, within the same Salto ProAccess Space installation or system. Exploitation requires valid authenticated operator credentials and the partition feature to be enabled; installations without partitioning are …
Summary
Successful exploitation of these vulnerabilities could allow an attacker to cause a denial-of-service condition.
The following versions of Rockwell Automation CompactLogix, ControlLogix, Compact GuardLogix and GuardLogix are affected:
- CompactLogix 5370 <=V35.015 (CVE-2025-12011, CVE-2025-12012, CVE-2025-11698)
- Compact GuardLogix 5370 <=V35.015 (CVE-2025-12011, CVE-2025-12012, CVE-2025-11698) …
Summary
Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition.
The following versions of NASA Core Flight System (cFS) Health & Safety (HS) Application are affected:
- Core Flight System (cFS) Health & Safety (HS) Application
Summary
Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition on the affected product.
The following versions of Rockwell Automation Flex 5000 Adapter are affected:
- Flex 5000 Adapter 6.011 (CVE-2026-12659)
| CVSS | … |
|---|
Developed by CISA, the National Security Agency (NSA) and international partners, this joint guidance contains best practices for software manufacturers and online service providers to design and implement a coordinated vulnerability disclosure (CVD) program for working with external security researchers that includes a clear vulnerability disclosure policy (VDP) and process …