Browse all 93 CVE security advisories affecting ICS-CERT. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ICS-CERT, now known as the Cybersecurity and Infrastructure Security Agency’s Industrial Control Systems Cybersecurity Center, serves as the primary federal entity for coordinating defense against cyber threats targeting critical infrastructure. Its core mission involves monitoring, analyzing, and responding to vulnerabilities within industrial control systems used in energy, water, and transportation sectors. Historically, disclosed vulnerabilities in associated software and hardware frequently involve remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from legacy protocols lacking modern encryption or authentication. While the agency itself is a defensive body rather than a commercial product with CVEs, the systems it protects have faced significant incidents like Stuxnet and Triton, highlighting risks of physical process disruption. The current record of 93 CVEs reflects ongoing efforts to patch legacy vulnerabilities in widely deployed SCADA and PLC environments, emphasizing the critical need for network segmentation and continuous monitoring to prevent operational downtime or safety hazards in essential services.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2018-7510 | BeaconMedaes TotalAlert Scroll Medical Air Systems Web应用程序安全漏洞 — BeaconMedaes TotalAlert Scroll Medical Air Systems web applicationCWE-256 | 9.8 | - | 2018-06-06 |
| CVE-2017-7931 | ABB IP GATEWAY 安全漏洞 — ABB IP GATEWAYCWE-287 | 9.1 | - | 2018-06-06 |
| CVE-2018-10601 | 多款Philips产品缓冲区错误漏洞 — IntelliVue Patient Monitors, Avalon Fetal/Maternal MonitorsCWE-121 | 8.0 | - | 2018-06-05 |
| CVE-2018-10599 | 多款Philips产品信息泄露漏洞 — IntelliVue Patient Monitors, Avalon Fetal/Maternal MonitorsCWE-200 | 8.0 | - | 2018-06-05 |
| CVE-2018-10597 | 多款Philips产品授权问题漏洞 — IntelliVue Patient Monitors, Avalon Fetal/Maternal MonitorsCWE-287 | 8.0 | - | 2018-06-05 |
| CVE-2017-9664 | ABB SREA-01和SREA-50 路径遍历漏洞 — ABB SREA-01 and SREA-50CWE-23 | 9.1 | - | 2018-05-24 |
| CVE-2018-7518 | BeaconMedaes Scroll Medical Air Systems TotalAlert Web Application 安全漏洞 — BeaconMedæs TotalAlert Scroll Medical Air Systems web applicationCWE-522 | 9.1 | - | 2018-05-24 |
| CVE-2018-8867 | 多款GE产品安全漏洞 — GE PACSystems RX3i CPE305/310 version 9.20 and prior RX3i CPE330 version 9.21 and prior RX3i CPE 400 version 9.30 and prior PACSystems RSTi-EP CPE 100 all versionsPACSystems CPU320/CRU320 RXi all versionsCWE-20 | 7.5 | - | 2018-05-18 |
| CVE-2018-8843 | Rockwell Automation Arena 资源管理错误漏洞 — Rockwell Automation ArenaCWE-416 | 5.5 | - | 2018-05-14 |
| CVE-2018-8860 | Vecna VGo Robot 信息泄露漏洞 — VGo Robot | 7.1 | - | 2018-05-09 |
| CVE-2018-8866 | Vecna VGo Robot 安全漏洞 — VGo Robot | 8.8 | - | 2018-05-09 |
| CVE-2017-5175 | Advantech WebAccess 安全漏洞 — Advantech WebAccess Versions 8.1 and prior.CWE-427 | 7.8 | - | 2018-05-09 |
| CVE-2018-7509 | Delta Electronics WPLSoft 安全漏洞 — Delta Electronics WPLSoftCWE-787 | 8.8 | - | 2018-05-04 |
| CVE-2018-7507 | Delta Electronics WPLSoft 缓冲区错误漏洞 — Delta Electronics WPLSoftCWE-122 | 8.8 | - | 2018-05-04 |
| CVE-2018-7494 | Delta Electronics WPLSoft 缓冲区错误漏洞 — Delta Electronics WPLSoftCWE-121 | 8.8 | - | 2018-05-04 |
| CVE-2018-8837 | Advantech WebAccess HMI Designer 安全漏洞 — Advantech WebAccess HMI DesignerCWE-787 | 7.8 | - | 2018-04-25 |
| CVE-2018-8835 | Advantech WebAccess HMI Designer 安全漏洞 — Advantech WebAccess HMI DesignerCWE-415 | 7.8 | - | 2018-04-25 |
| CVE-2018-8833 | Advantech WebAccess HMI Designer 缓冲区错误漏洞 — Advantech WebAccess HMI DesignerCWE-122 | 7.8 | - | 2018-04-25 |
| CVE-2018-8840 | Schneider Electric InduSoft Web Studio和InTouch Machine Edition 缓冲区错误漏洞 — Schneider Electric InduSoft Web Studio and InTouch Machine EditionCWE-121 | 9.8 | - | 2018-04-18 |
| CVE-2018-8838 | 多款Yokogawa产品权限许可和访问控制问题漏洞 — Yokogawa CENTUM and Exaopc | 6.5 | - | 2018-04-17 |
| CVE-2018-7514 | Omron CX-One多个软件缓冲区错误漏洞 — Omron CX-OneCWE-121 | 7.3 | - | 2018-04-17 |
| CVE-2018-8834 | Omron CX-One多个软件缓冲区错误漏洞 — Omron CX-OneCWE-122 | 7.8 | - | 2018-04-17 |
| CVE-2018-7530 | Omron CX-One多个软件安全漏洞 — Omron CX-OneCWE-843 | 7.8 | - | 2018-04-17 |
| CVE-2018-5463 | LCDS LAquis SCADA 安全漏洞 — LCDS - Leão Consultoria e Desenvolvimento de Sistemas LTDA ME LAquis SCADACWE-703 | 7.8 | - | 2018-04-09 |
| CVE-2018-7506 | Moxa Mxview 加密问题漏洞 — Moxa MXview | 7.5 | - | 2018-04-06 |
| CVE-2018-7502 | Beckhoff TwinCAT Kernal驱动程序权限许可和访问控制漏洞 — Beckhoff TwinCAT PLC productsCWE-822 | 7.8 | - | 2018-03-23 |
| CVE-2018-7513 | Omron CX-Supervisor 缓冲区错误漏洞 — Omron CX-SupervisorCWE-121 | 5.3 | - | 2018-03-21 |
| CVE-2018-7521 | Omron CX-Supervisor 缓冲区错误漏洞 — Omron CX-SupervisorCWE-416 | 5.3 | - | 2018-03-21 |
| CVE-2018-7515 | Omron CX-Supervisor 缓冲区错误漏洞 — BeaconMedæs TotalAlert Scroll Medical Air Systems web applicationCWE-256 | 5.3 | - | 2018-03-21 |
| CVE-2018-7517 | Omron CX-Supervisor 缓冲区错误漏洞 — Omron CX-SupervisorCWE-787 | 5.3 | - | 2018-03-21 |
This page lists every published CVE security advisory associated with ICS-CERT. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.