Browse all 93 CVE security advisories affecting ICS-CERT. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ICS-CERT, now known as the Cybersecurity and Infrastructure Security Agency’s Industrial Control Systems Cybersecurity Center, serves as the primary federal entity for coordinating defense against cyber threats targeting critical infrastructure. Its core mission involves monitoring, analyzing, and responding to vulnerabilities within industrial control systems used in energy, water, and transportation sectors. Historically, disclosed vulnerabilities in associated software and hardware frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from legacy protocols lacking modern encryption or authentication. While the agency itself is a defensive body rather than a commercial product with CVEs, the systems it protects have faced significant incidents like Stuxnet and Triton, highlighting risks of physical process disruption. The current record of 93 CVEs reflects ongoing efforts to patch legacy vulnerabilities in widely deployed SCADA and PLC environments, emphasizing the critical need for network segmentation and continuous monitoring to prevent operational downtime or safety hazards in essential services.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2018-18990 | LCDS LAquis SCADA 路径遍历漏洞 — LCDS Laquis SCADACWE-23 | 4.3 | - | 2019-02-05 |
| CVE-2018-19004 | LCDS LAquis SCADA 缓冲区错误漏洞 — LCDS Laquis SCADACWE-125 | 6.1 | - | 2019-02-01 |
| CVE-2018-18988 | LAquis SCADA 输入验证错误漏洞 — LCDS Laquis SCADACWE-125 | 7.3 | - | 2019-02-01 |
| CVE-2018-19010 | 多款Drager产品输入验证漏洞 — Dräger Infinity DeltaCWE-20 | 7.5 | - | 2019-01-28 |
| CVE-2018-19014 | 多款Drager产品安全漏洞 — Dräger Infinity DeltaCWE-532 | 6.5 | - | 2019-01-28 |
| CVE-2018-19012 | 多款Drager产品安全漏洞 — Dräger Infinity DeltaCWE-269 | 9.9 | - | 2019-01-28 |
| CVE-2018-19015 | Omron CX-Supervisor 命令注入漏洞 — CX-SupervisorCWE-77 | 7.3 | - | 2019-01-28 |
| CVE-2018-19011 | Omron CX-Supervisor 代码注入漏洞 — CX-SupervisorCWE-94 | 7.3 | - | 2019-01-22 |
| CVE-2018-19013 | Omron CX-Supervisor 命令注入漏洞 — CX-SupervisorCWE-77 | 5.0 | - | 2019-01-22 |
| CVE-2018-19017 | Omron CX-Supervisor 安全漏洞 — CX-SupervisorCWE-416 | 7.8 | - | 2019-01-22 |
| CVE-2018-19019 | OmronCX-Supervisor 安全漏洞 — CX-SupervisorCWE-843 | 7.3 | - | 2019-01-22 |
| CVE-2018-17930 | Teledyne DALSA Sherlock 缓冲区错误漏洞 — Teledyne DALSA SherlockCWE-121 | 9.8 | - | 2018-11-28 |
| CVE-2018-14805 | ABB eSOMS 授权问题漏洞 — ABB eSOMSCWE-287 | 8.1 | - | 2018-08-29 |
| CVE-2018-14795 | Emerson Electric Deltav 路径遍历漏洞 — DeltaVCWE-23 | 8.8 | - | 2018-08-21 |
| CVE-2018-14793 | Emerson Electric DeltaV 缓冲区错误漏洞 — DeltaVCWE-121 | 8.4 | - | 2018-08-21 |
| CVE-2017-16748 | Tridium Niagara AX Framework和Niagara 4 Framework 授权问题漏洞 — Niagara AX Framework and Niagara 4 FrameworkCWE-287 | 7.8 | - | 2018-08-20 |
| CVE-2017-16744 | Tridium Niagara AX Framework和Niagara 4 Framework 路径遍历漏洞 — Niagara AX Framework and Niagara 4 FrameworkCWE-22 | 7.2 | - | 2018-08-20 |
| CVE-2018-10636 | Delta Electronics CNCSoft和ScreenEditor 缓冲区错误漏洞 — CNCSoft with ScreenEditorCWE-121 | 8.8 | - | 2018-08-13 |
| CVE-2018-10598 | Delta Electronics CNCSoft and ScreenEditor 缓冲区错误漏洞 — CNCSoft with ScreenEditorCWE-125 | 8.1 | - | 2018-08-13 |
| CVE-2018-14785 | NetComm Wireless G LTE Light Industrial M2M Router(NWL-25)安全漏洞 — NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior.CWE-548 | 7.5 | - | 2018-08-10 |
| CVE-2018-14784 | NetComm Wireless G LTE Light Industrial M2M Router(NWL-25)安全漏洞 — NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior.CWE-79 | 6.1 | - | 2018-08-10 |
| CVE-2018-14783 | NetComm Wireless G LTE Light Industrial M2M Router(NWL-25)跨站请求伪造漏洞 — NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior.CWE-352 | 8.8 | - | 2018-08-10 |
| CVE-2018-14782 | NetComm Wireless G LTE Light Industrial M2M Router(NWL-25)安全漏洞 — NetComm Wireless G LTE Light Industrial M2M Router (NWL-25) with firmware 2.0.29.11 and prior.CWE-200 | 7.5 | - | 2018-08-10 |
| CVE-2018-10630 | Crestron TSW-X60 安全漏洞 — Crestron TSW-X60 version prior to 2.001.0037.001 and MC3 version prior to 1.502.0047.001CWE-284 | 9.8 | - | 2018-08-10 |
| CVE-2018-8847 | Eaton 9000X DriveA 缓冲区错误漏洞 — Eaton 9000X DriveCWE-121 | 9.8 | - | 2018-07-13 |
| CVE-2017-16726 | Beckhoff TwinCAT 安全漏洞 — Beckhoff TwinCATCWE-285 | 9.1 | - | 2018-06-27 |
| CVE-2017-16718 | Beckhoff TwinCAT 安全漏洞 — Beckhoff TwinCATCWE-522 | 5.9 | - | 2018-06-27 |
| CVE-2018-10594 | Delta Industrial Automation COMMGR 缓冲区错误漏洞 — Delta Industrial Automation COMMGR and accompanying PLC Simulators (DVPSimulator EH2, EH3, ES2, SE, SS2 and AHSIM_5x0, AHSIM_5x1)CWE-121 | 9.8 | - | 2018-06-26 |
| CVE-2018-10619 | Rockwell Automation RSLinx Classic和FactoryTalk Linx Gateway 安全漏洞 — Rockwell Automation RSLinx Classic and FactoryTalk Linx GatewayCWE-428 | 7.8 | - | 2018-06-07 |
| CVE-2017-7906 | ABB IP GATEWA 跨站请求伪造漏洞 — ABB IP GATEWAYCWE-352 | 8.8 | - | 2018-06-06 |
This page lists every published CVE security advisory associated with ICS-CERT. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.