MITRE ATT&CK CVE list for this attack path. Use risk scores and timeline to decide what to patch first and what to track next.
| CVE | 説明 | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|
| CVE-2026-9307 | A sensitive information disclosure security issue exists within the affected CompactLogix controllers. The controller's web server exposes CIP Connection IDs on the diagnostics webpage, which are accessible to any unauthenticated user on the network. This information can be leveraged by an attacker to construct malicious packets, leading to Denial-of-Service. | 6.3 | 該当なし | 2026-06-16 | 2026-06-16 |
| CVE-2026-0646 | A denial-of-service security issue exists within the 1794-AENTR adapter due to improper memory handling of CIP protocol requests. This vulnerability can result in the adapter faulting and losing connection to its associated I/O modules, requiring a manual reset to recover. | 8.7 | 該当なし | 2026-06-16 | 2026-06-16 |
| CVE-2025-11694 | A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses in the CIP protocol. This allows attacker to abuse the exposed Connection ID’s visible on the web interface to perform denial-of-service attacks, resulting in a minor fault. | 8.7 | 該当なし | 2026-06-16 | 2026-06-16 |
| CVE-2026-54197 | Unauthenticated Sensitive Data Exposure in GetGenie <= 4.4.1 versions. | 6.5 | 該当なし | 2026-06-16 | 2026-06-16 |
| CVE-2026-10825 | A denial-of-service vulnerability exists in the WebSocket API due to insufficient validation and handling of JSON-based requests. A low-privileged authenticated attacker can send a specially crafted request that causes service disruption and may result in an unexpected device reboot. | 7.1 | 該当なし | 2026-06-16 | 2026-06-16 |
| CVE-2026-50255 | Incorrect default permissions issue exists in Optical Disc Archive Software for Windows 5.5.3 and earlier. If this vulnerability is exploited, arbitrary code may be executed with SYSTEM privileges. | 5.4 | 該当なし | 2026-06-16 | 2026-06-16 |
| CVE-2026-42014 | A flaw was found in GnuTLS. The `gnutls_pkcs11_token_set_pin` function, used for changing the Security Officer PIN, can lead to a use-after-free vulnerability. This occurs when an attacker attempts to change the PIN with a NULL old PIN for a token that lacks a protected authentication path. | 6.6 | 該当なし | 2026-06-16 | 2026-06-16 |
| CVE-2026-1767 | A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted MP3 file containing malformed ID3 tags. This incorrect length calculation during the parsing of performer tags can lead to a read beyond the allocated buffer, potentially causing a Denial of Service (DoS) due to a crash or enabling information disclosure. | 5.6 | 該当なし | 2026-06-16 | 2026-06-16 |
| CVE-2026-1766 | A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3 files containing malformed ID3v2.3 COMM (Comment) tags. An attacker could exploit this by providing a malicious MP3 file, leading to a denial of service (DoS), which causes an application crash, and potentially disclosing sensitive information from the heap memory. | 5.6 | 該当なし | 2026-06-16 | 2026-06-16 |
| CVE-2026-53430 | Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Message modules) allows a denial of service via a gzip decompression bomb. This vulnerability is associated with program files lib/grpc/compressor/gzip.ex, lib/grpc/message.ex and program routines 'Elixir.GRPC.Compressor.Gzip':decompress/1, 'Elixir.GRPC.Message':from_data/2. 'Elixir.GRPC.Compressor.Gzip':decompress/1 calls :zlib.gunzip/1 directly on attacker-controlled | 8.7 | 該当なし | 2026-06-15 | 2026-06-15 |
| CVE-2026-12087 | Socket versions before 2.041 for Perl have an out-of-bounds heap read. In Socket.xs, pack_ip_mreq_source() checks the length of its source argument before the argument is read, so the check tests the byte length carried over from the preceding multiaddr argument instead. Both addresses occupy a 4-byte field, so a valid multiaddr lets a source of any length pass the check, and the source is then copied into the 4-byte imr_sourceaddr field with a fixed-size copy. A source shorter than 4 bytes is | 該当なし | 該当なし | 2026-06-15 | 2026-06-16 |
| CVE-2026-52695 | Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout <= 1.8.2 versions. | 7.5 | 該当なし | 2026-06-15 | 2026-06-15 |
| CVE-2026-52694 | Unauthenticated Sensitive Data Exposure in Signature Add-On for WooCommerce <= 2.0 versions. | 7.5 | 該当なし | 2026-06-15 | 2026-06-15 |
| CVE-2026-52692 | Unauthenticated Sensitive Data Exposure in Affiliates Manager <= 2.9.50 versions. | 7.5 | 該当なし | 2026-06-15 | 2026-06-15 |
| CVE-2026-49110 | Unauthenticated Broken Authentication in Upsell Order Bump Offer for WooCommerce <= 3.1.4 versions. | 7.5 | 該当なし | 2026-06-15 | 2026-06-15 |
| CVE-2026-49082 | Subscriber Sensitive Data Exposure in Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & Chat Buttons <= 1.4.8 versions. | 7.4 | 該当なし | 2026-06-15 | 2026-06-15 |
| CVE-2026-49078 | Unauthenticated Other Vulnerability Type in WP Travel Engine <= 6.7.10 versions. | 7.5 | 該当なし | 2026-06-15 | 2026-06-15 |
| CVE-2026-49068 | Subscriber Sensitive Data Exposure in Coupon Affiliates <= 7.8.1 versions. | 7.5 | 該当なし | 2026-06-15 | 2026-06-15 |
| CVE-2026-49066 | Unauthenticated Sensitive Data Exposure in Conekta Payment Gateway <= 6.0.0 versions. | 7.5 | 該当なし | 2026-06-15 | 2026-06-15 |
| CVE-2026-49056 | Unauthenticated Sensitive Data Exposure in WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels <= 4.9.4 versions. | 7.5 | 該当なし | 2026-06-15 | 2026-06-15 |