8.7

CVSS4.0

CVE-2026-1018 - Gotac|Police Statistics Database System - Arbitrary File Read

Police Statistics Database SystemΒ developed by Gotac has an Arbitrary File Read vulnerability, allowing Unauthenticated remote attacker to exploit Absolute Path Traversal to download arbitrary system files.

πŸ“… Published: Jan. 16, 2026, 2:32 a.m. πŸ”„ Last Modified: Jan. 23, 2026, 8:29 p.m.

9.8

CVSS3.1

CVE-2025-62581 - DIAView - Authentication Bypass Vulnerability

Delta Electronics DIAView has multiple vulnerabilities.

πŸ“… Published: Jan. 16, 2026, 2:20 a.m. πŸ”„ Last Modified: Jan. 20, 2026, 4:59 p.m.

9.8

CVSS3.1

CVE-2025-62582 - DIAView - Authentication Bypass Vulnerability

Delta Electronics DIAView has multiple vulnerabilities.

πŸ“… Published: Jan. 16, 2026, 2:03 a.m. πŸ”„ Last Modified: Jan. 20, 2026, 4:58 p.m.

7.6

CVSS4.0

CVE-2025-64769 - AVEVA Process Optimization Cleartext Transmission of Sensitive Information

The Process Optimization application suite leverages connection channels/protocols that by-default are not encrypted and could become subject to hijacking or data leakage in certain man-in-the-middle or passive inspection scenarios.

πŸ“… Published: Jan. 16, 2026, 12:16 a.m. πŸ”„ Last Modified: Jan. 22, 2026, 3:11 p.m.

8.5

CVSS4.0

CVE-2025-65117 - AVEVA Process Optimization Use of Potentially Dangerous Function

The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Designer User) to embed OLE objects into graphics, and escalate their privileges to the identity of a victim user who subsequently interacts with the graphical elements.

πŸ“… Published: Jan. 16, 2026, 12:14 a.m. πŸ”„ Last Modified: Jan. 22, 2026, 3:14 p.m.

8.6

CVSS4.0

CVE-2025-64729 - AVEVA Process Optimization Missing Authorization

The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to tamper with Process Optimization project files, embed code, and escalate their privileges to the identity of a victim user who subsequently interacts with the project files.

πŸ“… Published: Jan. 16, 2026, 12:12 a.m. πŸ”„ Last Modified: Jan. 22, 2026, 3:15 p.m.

9.3

CVSS4.0

CVE-2025-65118 - AVEVA Process Optimization Uncontrolled Search Path Element

The vulnerability, if exploited, could allow an authenticated miscreant (OS Standard User) to trick Process Optimization services into loading arbitrary code and escalate privileges to OS System, potentially resulting in complete compromise of the Model Application Server.

πŸ“… Published: Jan. 16, 2026, 12:11 a.m. πŸ”„ Last Modified: Jan. 16, 2026, 3:55 p.m.

9.3

CVSS4.0

CVE-2025-61943 - AVEVA Process Optimization SQL Injection

The vulnerability, if exploited, could allow an authenticated miscreant (Process Optimization Standard User) to tamper with queries in Captive Historian and achieve code execution under SQL Server administrative privileges, potentially resulting in complete compromise of the SQL Server.

πŸ“… Published: Jan. 16, 2026, 12:09 a.m. πŸ”„ Last Modified: Jan. 22, 2026, 3:19 p.m.

9.3

CVSS4.0

CVE-2025-64691 - AVEVA Process Optimization Code Injection

The vulnerability, if exploited, could allow an authenticated miscreant (OS standard user) to tamper with TCL Macro scripts and escalate privileges to OS system, potentially resulting in complete compromise of the model application server.

πŸ“… Published: Jan. 16, 2026, 12:06 a.m. πŸ”„ Last Modified: Jan. 16, 2026, 3:55 p.m.

10

CVSS4.0

CVE-2025-61937 - AVEVA Process Optimization Code Injection

The vulnerability, if exploited, could allow an unauthenticated miscreant to achieve remote code execution under OS system privileges of β€œtaoimr” service, potentially resulting in complete compromise of theΒ  model application server.

πŸ“… Published: Jan. 16, 2026, 12:04 a.m. πŸ”„ Last Modified: Jan. 22, 2026, 3:20 p.m.
Total resulsts: 330176
Page 214 of 33,018
Β« previous page Β» next page
Filters