<?xml version="1.0" encoding="UTF-8" ?><!-- generator=Zoho Sites --><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><atom:link href="https://www.fortress-cybersecurity.fr/blogs/feed" rel="self" type="application/rss+xml"/><title>Site Institutionnel - Blog</title><description>Site Institutionnel - Blog</description><link>https://www.fortress-cybersecurity.fr/blogs</link><lastBuildDate>Wed, 01 Jul 2026 08:25:07 +0200</lastBuildDate><generator>http://zoho.com/sites/</generator><item><title><![CDATA[Bilan des Known Exploited Vulnerabilities du mois de juin 2026]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-de-juin-2026</link><description><![CDATA[⚠️ &nbsp;En juin 2026, l’agence de cybersécurité américaine (CISA) a ajouté 22 vulnérabilités, identifiées comme activement exploitées dans le cadre d ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_oDkejEquSTCm9QqUenH7tg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_SIKykFb_TsWa-AUxhhWfNw" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_QFmKC9SjRNSAyKRyxg67gg" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"></style><div data-element-id="elm_7SNFdUZukMdrsRG_8B6vOg" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p></p><p></p><p><span><span></span></span></p><p><span><span></span></span></p><p></p><div><p></p><div><p></p><div><div></div>
</div><div><div><div> ⚠️ &nbsp;En juin 2026, l’agence de cybersécurité américaine (CISA) a ajouté 22 vulnérabilités, identifiées comme activement exploitées dans le cadre de cyberattaques, dans sa liste des Known Exploited Vulnerabilities (KEV), le nombre de KEV est en hausse (2) par rapport au mois précédent. </div>
<div><br></div><div> La tendance générale sur les 12 derniers mois est globalement en augmentation. </div>
<div><br></div><div> À date, 1630 KEV sont référencées. </div><div><span><img src="https://www.fortress-cybersecurity.fr/Wed%20Jul%2001%202026.png" alt=""></span><br></div>
<div><br></div><div> 🎆 L'objectif de cette liste est de permettre aux organisations de prioriser leurs actions de patching. Afin de se rendre compte de l'importance des nouvelles entrées dans cette liste : toutes les agences de l’administration américaine doivent corriger ces vulnérabilités dans les 21 jours qui suivent l'ajout dans la liste ! </div>
<div><br></div><div> ☣️ &nbsp;KEV exploitées par un ransomware : </div><div> 1 x Check Point : </div>
<div> &nbsp; Security Gateway (CVE-2026-50751) </div><div> 1 x Oracle : </div><div> &nbsp; &nbsp;PeopleSoft Enterprise PeopleTools (CVE-2026-35273) </div>
<div><br></div><div> 🔥 Liste des autres KEV : </div><div> 3 × Ubiquiti : </div><div> &nbsp; UniFi OS (CVE-2026-34910) </div>
<div> &nbsp; UniFi OS (CVE-2026-34909) </div><div> &nbsp; UniFi OS (CVE-2026-34908) </div>
<div> 3 × Cisco : </div><div> &nbsp; Unified Communications Manager (CVE-2026-20230) </div>
<div> &nbsp; Catalyst SD-WAN Manager (CVE-2026-20262) </div><div> &nbsp; Catalyst SD-WAN Manager (CVE-2026-20245) </div>
<div> 1 × PTC : </div><div> &nbsp; Windchill and FlexPLM (CVE-2026-12569) </div><div> 1 × SimpleHelp &nbsp;: </div>
<div> &nbsp; SimpleHelp (CVE-2026-48558) </div><div> 1 × Lantronix : </div><div> &nbsp; EDS5000 (CVE-2025-67038) </div>
<div> 1 × Splunk : </div><div> &nbsp; Enterprise (CVE-2026-20253) </div><div> 1 × Widget Factory : </div>
<div> &nbsp; Joomla Content Editor &nbsp;(CVE-2026-48907) </div><div> 1 × LiteSpeed : </div>
<div> &nbsp; cPanel Plugin (CVE-2026-54420) </div><div> 1 × Ivanti : </div><div> &nbsp; Sentry (CVE-2026-10520) </div>
<div> 1 × Google : </div><div> &nbsp; Chromium V8 (CVE-2026-11645) </div><div> 1 × Arista : </div>
<div> &nbsp; Extensible Operating System (CVE-2026-7473) </div><div> 1 × BerriAI : </div>
<div> &nbsp; LiteLLM (CVE-2026-42271) </div><div> 1 × SolarWinds : </div><div> &nbsp; Serv-U (CVE-2026-28318) </div>
<div> 1 × Mirasvit : </div><div> &nbsp; Mirasvit Full Page Cache Warmer (CVE-2026-45247) </div>
<div> 1 × Linux : </div><div> &nbsp; Kernel (CVE-2022-0492) </div><div> 1 × Android : </div>
<div> &nbsp; Framework (CVE-2025-48595) </div></div><br></div><div><div></div></div>
<p></p></div><p></p></div><p></p><p></p><p></p></div></div></div></div></div></div>
</div>]]></content:encoded><pubDate>Wed, 01 Jul 2026 07:34:09 +0200</pubDate></item><item><title><![CDATA[Bulletin cybersec indus hebdo 26.S26]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bulletin-cybersec-indus-hebdo-26.s26</link><description><![CDATA[<img align="left" hspace="5" src="https://www.fortress-cybersecurity.fr/files/manufacturing.jpg"/> Kit ANSSI pour entraîner le secteur agroalimentaire à la gestion de crise cyber L’ANSSI propose un kit d’exercice destiné aux acteurs de l’agroalim ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_OIHw3lK1R0uMD1sBLIHwRg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_1ydeJqOcTyiM7nuV2rOklQ" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"> [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } @media (max-width: 767px) { [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } @media all and (min-width: 768px) and (max-width:991px){ [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } </style><div data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA" data-element-type="heading" class="zpelement zpelem-heading "><style> [data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA"].zpelem-heading { border-radius:1px; } </style><h2 class="zpheading zpheading-align-center zpheading-align-mobile-center zpheading-align-tablet-center " data-editor="true">Les news relatives à la cybersécurité des installations industrielles</h2></div>
<div data-element-id="elm_sH2l7vQ8h3FUwPV13-l42A" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><span><span><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p><span><span></span></span></p><p></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p></p><p></p><div><p style="font-weight:bold;"><span>Kit ANSSI pour entraîner le secteur agroalimentaire à la gestion de crise cyber</span><br></p><p>L’ANSSI propose un kit d’exercice destiné aux acteurs de l’agroalimentaire pour les aider à mieux se préparer à une crise cyber. Le dispositif fournit un scénario prêt à l’emploi, décliné en trois niveaux de difficulté, afin de s’adapter à des organisations plus ou moins matures. Il inclut des supports pratiques comme des briefings, chronogrammes, grilles d’observation, débriefings et questionnaires RETEX.<br></p><p><a href="https://cyber.gouv.fr/securisation/gestion-de-crise/entrainement-crise/kits-dexercices-sectoriels/kit-dentrainement-gestion-de-crise-dorigine-cyber-secteur-agroalimentaire/">https://cyber.gouv.fr/securisation/gestion-de-crise/entrainement-crise/kits-dexercices-sectoriels/kit-dentrainement-gestion-de-crise-dorigine-cyber-secteur-agroalimentaire/</a><br></p><p><strong><br></strong></p><p><strong>Cyberattaque contre le gestionnaire des eaux de la Californie (<span>Cal Water)</span></strong></p><p><span><span>Le groupe Handala a revendiqué un accès aux systèmes industriels de <span>Cal Water&nbsp;</span>et a publié environ 5 Go de données.&nbsp;</span>SecurityWeek rapporte que Cal Water n’a trouvé aucune preuve d’activité malveillante dans ses environnements IT internes ou OT. L’enquête menée avec Mandiant indique que l’attaque aurait surtout touché un petit nombre de comptes sur deux plateformes de prestataires tiers.</span><br></p><p><span><a href="https://www.securityweek.com/cal-water-finds-no-evidence-of-ot-activity-after-hackers-claimed-they-could-disrupt-water-supply/">https://www.securityweek.com/cal-water-finds-no-evidence-of-ot-activity-after-hackers-claimed-they-could-disrupt-water-supply/</a><br></span></p><p><strong><br></strong></p><p><strong>NIST SP 1800-45 :&nbsp;<span>architectures d’accès distant sécurisé pour l’OT</span></strong></p><p>NIST a publié la version finale de NIST SP 1800-45, consacrée aux architectures d’accès distant sécurisé pour l’OT dans le secteur eau et assainissement.&nbsp;<br></p><p><a href="https://csrc.nist.gov/pubs/sp/1800/45/final">https://csrc.nist.gov/pubs/sp/1800/45/final</a><br></p><p><br></p><p><span><span style="font-weight:bold;">Le marché de la cybersécurité des installations industrielles continue sa consolidation.</span><br></span></p><p><span>Accenture répond au rachat récent d'Armis par ServiceNow en prenant une participation majoritaire dans Dragos, éditeur d'une solution de visibilité et de détection des activités malveillantes dans les réseaux industriels.</span><br></p><p><a href="https://www.dragos.com/blog/dragos-joins-forces-with-accenture">https://www.dragos.com/blog/dragos-joins-forces-with-accenture</a><br></p><p></p><div><div><p><span style="font-weight:bold;"><span><br></span></span></p><p><span style="font-weight:bold;"><span>Vulnerability Corner :</span></span><span>&nbsp;</span></p></div>
<div><p><span>Liste des Known Exploited Vulnerabilities (KEV) publiés par l'agence de cybersécurité américaine CISA la semaine dernière :&nbsp;&nbsp;</span></p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:195px;"><div><div><p><span style="font-weight:bold;">CVE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:137px;"><div><div><p><span style="font-weight:bold;">Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:129.188px;"><div><div><p><span style="font-weight:bold;">Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:823.812px;" class="zp-selected-cell"><div><div><p><span style="font-weight:bold;">Liens&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:195px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-67038" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2025-67038</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:137px;"><div><div><p><span>Lantronix&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:129.188px;"><div><div><p><span>EDS5000&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:823.812px;"><div><div><p><span></span><a href="https://ltrxdev.atlassian.net/wiki/spaces/LTRXTS/pages/2538438657/Latest%2BFirmware%2Bfor%2Bthe%2BEDS5000%2Bseries%2BEDS5008%2BEDS5016%2BEDS5032%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2025-67038%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://ltrxdev.atlassian.net/wiki/spaces/LTRXTS/pages/2538438657/Latest+Firmware+for+the+EDS5000+series+EDS5008+EDS5016+EDS5032, https://nvd.nist.gov/vuln/detail/CVE-2025-67038, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:195px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-12569" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-12569</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:137px;"><div><div><p><span>PTC&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:129.188px;"><div><div><p><span>Windchill and FlexPLM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:823.812px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-12569%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk%2C%20https%3A//www.ptc.com/en/support/article/CS473270" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://nvd.nist.gov/vuln/detail/CVE-2026-12569, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk, https://www.ptc.com/en/support/article/CS473270</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:195px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-20230" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-20230</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:137px;"><div><div><p><span>Cisco&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:129.188px;"><div><div><p><span>Unified Communications Manager&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:823.812px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-20230%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisco.com/c/en/us/support/docs/csa/cisco-sa-cucm-ssrf-cXPnHcW.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://nvd.nist.gov/vuln/detail/CVE-2026-20230, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk, https://www.cisco.com/c/en/us/support/docs/csa/cisco-sa-cucm-ssrf-cXPnHcW.html</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:195px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-34908" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-34908</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:137px;"><div><div><p><span>Ubiquiti&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:129.188px;"><div><div><p><span>UniFi OS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:823.812px;"><div><div><p><span></span><a href="https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-34908%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b, https://nvd.nist.gov/vuln/detail/CVE-2026-34908, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:195px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-34909" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-34909</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:137px;"><div><div><p><span>Ubiquiti&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:129.188px;"><div><div><p><span>UniFi OS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:823.812px;"><div><div><p><span></span><a href="https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-34909%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b, https://nvd.nist.gov/vuln/detail/CVE-2026-34909, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:195px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-34910" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-34910</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:137px;"><div><div><p><span>Ubiquiti&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:129.188px;"><div><div><p><span>UniFi OS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:823.812px;"><div><div><p><span></span><a href="https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-34910%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b, https://nvd.nist.gov/vuln/detail/CVE-2026-34910, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span style="font-weight:bold;"><span>Vulnérabilités de composants de systèmes industriels :&nbsp;</span></span><span>&nbsp;</span>&nbsp;&nbsp;</p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Critical&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">High&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Medium&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Low&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;" class="zp-selected-cell"><div><div><p><span style="font-weight:bold;">Total&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>EVoke Systems&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>EVoke CSMS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>2&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>4&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Daktronics&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>VFC-DMP-5000&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>3&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>3&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>H.VIEW&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>HV-500S6 IP Camera&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>2&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>2&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Hubbell&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>Aclara Metrum Cellular Web Interface&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Open Health Imaging Foundation (OHIF)&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>OHIF DICOM Web Viewer Framework&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>pydicom&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>pynetdicom&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Yokogawa&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>FAST/TOOLS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Delta Electronics&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>DTMSoft&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Horner Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>Cscape&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>&nbsp;</span>Liste complète triée par CVSSv3 Score :&nbsp;</p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CVE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CVSSv3 Score&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CVSSv3 Severity&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">EPSS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">Percentile&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;" class="zp-selected-cell"><div><div><p><span style="font-weight:bold;">CWE&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>EVoke Systems&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>EVoke CSMS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-40702" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-40702</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>9.4&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CRITICAL&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/306.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-306</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>pydicom&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>pynetdicom&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-56445" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-56445</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>9.1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CRITICAL&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/22.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-22</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Open Health Imaging Foundation (OHIF)&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>OHIF DICOM Web Viewer Framework&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-12473" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-12473</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>8.2&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/918.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-918</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Daktronics&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>VFC-DMP-5000&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-31928" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-31928</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>8.1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/798.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-798</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Delta Electronics&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>DTMSoft&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-12578" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-12578</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.8&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/502.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-502</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Horner Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>Cscape&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-12897" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-12897</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.8&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/125.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-125</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Daktronics&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>VFC-DMP-5000&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28701" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-28701</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.7&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/22.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-22</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>EVoke Systems&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>EVoke CSMS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-50176" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-50176</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/307.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-307</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Hubbell&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>Aclara Metrum Cellular Web Interface&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-1840" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-1840</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.726%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>49.386%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/306.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-306</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Yokogawa&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>FAST/TOOLS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-11833" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-11833</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.217%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>12.063%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/319.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-319</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>EVoke Systems&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>EVoke CSMS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-54479" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-54479</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.3&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/613.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-613</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>H.VIEW&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HV-500S6 IP Camera&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-55975" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-55975</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.2&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/78.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-78</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>H.VIEW&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HV-500S6 IP Camera&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-56414" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-56414</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.2&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/434.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-434</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Daktronics&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>VFC-DMP-5000&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33560" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-33560</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/434.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-434</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>EVoke Systems&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>EVoke CSMS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-44622" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-44622</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>6.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>MEDIUM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/522.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-522</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>-----&nbsp;</span></p></div></div><p></p></div></div></span></span><div><div></div>
</div><p></p><div><div><div><p><span style="font-weight:bold;">Actualité Fortress Cybersecurity&nbsp;</span><span><span>&nbsp;</span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-d-avril-2026" target="_blank" rel="noreferrer noopener"><span>- Bilan des Known Exploited Vulnerabilities du mois d'avril 2026</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/nouveau-guide-de-classification-des-actifs-industriels-publi%C3%A9-par-l-anssi" target="_blank" rel="noreferrer noopener"><span>- Nouveau guide de classification des actifs industriels publié par l'ANSSI</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/calendrier-2026-de-nos-webinaires-d%C3%A9di%C3%A9s-%C3%A0-la-cybers%C3%A9curit%C3%A9-des-installations-industrielles" target="_blank" rel="noreferrer noopener"><span>Nos prochains webinaires dédiés à la cybersécurité des installations industrielles :</span></a><span>&nbsp;</span></p></div>
<div><p>- 2 juillet 2026 : Gérer les vulnérabilités en environnement industriel​​, inscription <a href="https://events.teams.microsoft.com/event/e2cac6c8-9560-48d5-8736-25da3b084041%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener">lien</a>&nbsp;</p></div>
<div><p><span>- 3 septembre 2026 : Mettre en place le plan de contrôle cyber de ses installations industriels​​, inscription </span><a href="https://events.teams.microsoft.com/event/1960fe77-9d3a-4f18-a7a9-70528a5e7151%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 1 octobre 2026 : Sécuriser les accès à distance et de télémaintenance des actifs industriels, inscription </span><a href="https://events.teams.microsoft.com/event/c9ba377e-5c27-4e4d-bffb-8ddc3a7856be%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 5 novembre 2026 : Protéger les endpoints dans les zones industrielles, inscription </span><a href="https://events.teams.microsoft.com/event/f079bb46-c1ad-4274-b0d3-e32db7d3b4fc%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 décembre 2026 : Protéger les réseaux mobiles privés 5G, inscription </span><a href="https://events.teams.microsoft.com/event/56995822-3f07-404d-b2dc-f6fb7727ad50%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
</div><br><p></p></div><p style="font-weight:bold;"></p><p></p><div><p></p></div>
<p></p><p><br></p><p></p><div><p></p></div></div></div></div></div></div></div></div>]]></content:encoded><pubDate>Sun, 28 Jun 2026 19:05:19 +0200</pubDate></item><item><title><![CDATA[Bulletin cybersec indus hebdo 26.S25]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bulletin-cybersec-indus-hebdo-26.s25</link><description><![CDATA[<img align="left" hspace="5" src="https://www.fortress-cybersecurity.fr/files/manufacturing.jpg"/> NIS2 : le Club des Experts de la Sécurité Informatique et Numérique (CESIN) pousse un coup de gueule contre les retards de transposition Poussé par ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_OIHw3lK1R0uMD1sBLIHwRg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_1ydeJqOcTyiM7nuV2rOklQ" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"> [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } @media (max-width: 767px) { [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } @media all and (min-width: 768px) and (max-width:991px){ [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } </style><div data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA" data-element-type="heading" class="zpelement zpelem-heading "><style> [data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA"].zpelem-heading { border-radius:1px; } </style><h2 class="zpheading zpheading-align-center zpheading-align-mobile-center zpheading-align-tablet-center " data-editor="true">Les news relatives à la cybersécurité des installations industrielles</h2></div>
<div data-element-id="elm_sH2l7vQ8h3FUwPV13-l42A" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><span><span><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p><span><span></span></span></p><p></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p></p><p></p><div><p style="font-weight:bold;">NIS2 : le Club des Experts de la Sécurité Informatique et Numérique (CESIN) pousse un coup de gueule contre les retards de transposition</p><div><div> Poussé par l’incertitude entourant la transposition de la directive NIS2, le Club des Experts de la Sécurité de l’Information et du Numérique (CESIN) tire la sonnette d’alarme. Une grande partie des organisations entame la préparation de ses budgets 2027. Sans visibilité sur les futures exigences réglementaires, il sera difficile pour les décideurs de prioriser les projets à venir et d’allouer les ressources nécessaires. </div>
<div> Si le Référentiel Cyber France (RECYF) a été publié par l'Agence Nationale de Sécurité des Systèmes d'Information (ANSSI), rien ne garantit à ce stade que les conclusions du vote relatif à la transposition de NIS2 confirmeront son adoption comme référentiel. </div>
<div> Dans ce contexte, nous vous recommandons aux organisations, en particulier celles du secteur industriel, d’engager dès à présent plusieurs actions essentielles de cybersécurité et d’hygiène informatique : réaliser une analyse des risques cyber, initier l’inventaire des actifs connectés aux réseaux industriels en tenant compte de leur criticité, identifier les accès distants, renforcer le filtrage au niveau des pare-feux périmétriques et, surtout, mettre en place des dispositifs de sauvegarde robustes et en assurer la sécurisation. </div>
</div><a href="https://cesin.fr/articles-slug/?slug=3201-Communiqu%C3%A9%2Bde%2Bpresse%2B-%2BRetard%2Bde%2Btransposition%2Bde%2BNIS2">https://cesin.fr/articles-slug/?slug=3201-Communiqu%C3%A9+de+presse+-+Retard+de+transposition+de+NIS2</a></div>
<div><div><p><span style="font-weight:bold;">Guide pour la mise en place des sauvegardes pour les actifs industriels</span></p><p>Le NIST a publié un guide pratique sur les sauvegardes des systèmes industriels (OT). Le guide souligne leur rôle essentiel dans la résilience face aux cyberattaques et aux pannes. Le document recommande d’intégrer les sauvegardes à la gestion des changements, de protéger les copies selon la règle du « 3-2-1 » et de sauvegarder également configurations, logiciels et documentation. Il insiste sur la nécessité de tester régulièrement les restaurations et d’inclure ces procédures dans les plans de réponse aux incidents. L’objectif est de réduire les temps d’arrêt et d’assurer une reprise rapide des opérations.<br></p><p><a href="https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.1339.pdf">https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.1339.pdf</a></p></div>
<div><p style="font-weight:bold;"><strong>Vision du CISA sur la hiérarchisation des mises à jour de sécurité en fonction des risques</strong></p><div><p style="text-indent:0in;">La multiplication des vulnérabilités publiées s’accélère fortement sous l’effet de l’industrialisation de la recherche en cybersécurité et de l’usage croissant de l’IA, qui facilite aussi bien la découverte de failles que la génération d’exploits. <span style="text-indent:0in;">Dans le même temps, la pression sur les organisations pour identifier et corriger plus rapidement de nouvelles vulnérabilités augmente du fait d’une réduction drastique du délai entre la publication d’une vulnérabilité et son exploitation en conditions réelles.&nbsp;Cette publication du CISA permet d'avoir une nouvelle approche par les risques sur la priorisation des mises à jour.</span></p></div>
<p><a href="https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk">https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk</a></p></div>
<div><div><p><span style="font-weight:bold;"><span>Vulnerability Corner :</span></span><span>&nbsp;</span></p></div>
<div><p><span>Liste des Known Exploited Vulnerabilities (KEV) publiés par l'agence de cybersécurité américaine CISA la semaine dernière :&nbsp;&nbsp;</span></p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:188px;"><div><div><p><span style="font-weight:bold;">CVE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:116.906px;"><div><div><p><span style="font-weight:bold;">Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:166.656px;"><div><div><p><span style="font-weight:bold;">Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:816.344px;"><div><div><p><span style="font-weight:bold;">Liens&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:188px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-20253" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-20253</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:116.906px;"><div><div><p><span>Splunk&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:166.656px;"><div><div><p><span>Enterprise&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:816.344px;"><div><div><p><span></span><a href="https://advisory.splunk.com/advisories/SVD-2026-0603%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-20253%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://advisory.splunk.com/advisories/SVD-2026-0603, https://nvd.nist.gov/vuln/detail/CVE-2026-20253, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:188px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-20262" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-20262</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:116.906px;"><div><div><p><span>Cisco&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:166.656px;"><div><div><p><span>Catalyst SD-WAN Manager&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:816.344px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-20262%2C%20https%3A//sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-arbfw-c2rZvQ%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://nvd.nist.gov/vuln/detail/CVE-2026-20262, https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-arbfw-c2rZvQ, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:188px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-48907" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-48907</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:116.906px;"><div><div><p><span>Widget Factory&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:166.656px;"><div><div><p><span>Joomla Content Editor&nbsp;&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:816.344px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-48907%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk%2C%20https%3A//www.joomlacontenteditor.net/news/jce-security-update-and-a-free-patch-for-older-sites%2C%20https%3A//www.joomlacontenteditor.net/support/changelog/editor" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://nvd.nist.gov/vuln/detail/CVE-2026-48907, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk, https://www.joomlacontenteditor.net/news/jce-security-update-and-a-free-patch-for-older-sites, https://www.joomlacontenteditor.net/support/changelog/editor</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:188px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-54420" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-54420</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:116.906px;"><div><div><p><span>LiteSpeed&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:166.656px;"><div><div><p><span>cPanel Plugin&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:816.344px;"><div><div><p><span></span><a href="https://blog.litespeedtech.com/2026/06/01/security-update-for-litespeed-cpanel-plugin-2/%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-54420%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A//www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://blog.litespeedtech.com/2026/06/01/security-update-for-litespeed-cpanel-plugin-2/, https://nvd.nist.gov/vuln/detail/CVE-2026-54420, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span style="font-weight:bold;"><span>Vulnérabilités de composants de systèmes industriels :&nbsp;</span></span></p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:132px;"><div><div><p><span style="font-weight:bold;">Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:606px;"><div><div><p><span style="font-weight:bold;">Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:93.6562px;"><div><div><p><span style="font-weight:bold;">Critical&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:122.406px;"><div><div><p><span style="font-weight:bold;">High&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:136.828px;"><div><div><p><span style="font-weight:bold;">Medium&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:113.75px;"><div><div><p><span style="font-weight:bold;">Low&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span style="font-weight:bold;">Total&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:132px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:606px;"><div><div><p><span>1794-AENTR,CompactLogix 5370,CompactLogix 5370 L1,FactoryTalk Analytics PavilionX,FactoryTalk Historian SE,RSLinx Classic&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:93.6562px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:122.406px;"><div><div><p><span>7&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:136.828px;"><div><div><p><span>2&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:113.75px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>10&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:132px;"><div><div><p><span>Apollo Pharmacy&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:606px;"><div><div><p><span>Blood Glucose Monitoring System (Model No. APG-01 BT)&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:93.6562px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:122.406px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:136.828px;"><div><div><p><span>2&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:113.75px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>2&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:132px;"><div><div><p><span>Mitsubishi Electric&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:606px;"><div><div><p><span>MELSEC iQ-F Series FX5-EIP EtherNet/IP Module FX5-EIP,Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:93.6562px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:122.406px;"><div><div><p><span>2&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:136.828px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:113.75px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>2&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:132px;"><div><div><p><span>AVer&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:606px;"><div><div><p><span>PTC500S&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:93.6562px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:122.406px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:136.828px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:113.75px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:132px;"><div><div><p><span>AzeoTech&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:606px;"><div><div><p><span>DAQFactory&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:93.6562px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:122.406px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:136.828px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:113.75px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>&nbsp;</span>Liste complète triée par CVSSv3 Score :&nbsp;</p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CVE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CVSSv3 Score&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CVSSv3 Severity&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">EPSS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">Percentile&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CWE&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>AVer&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>PTC500S&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-40624" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-40624</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>9.8&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CRITICAL&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/552.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-552</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>1794-AENTR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-0647" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-0647</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>9.4&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CRITICAL&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.396%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>31.299%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/306.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-306</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>AzeoTech&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>DAQFactory&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-12390" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-12390</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.8&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/843.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-843</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>FactoryTalk Historian SE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-13036" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2025-13036</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.7&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.284%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>19.991%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/362.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-362</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Mitsubishi Electric&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>MELSEC iQ-F Series FX5-EIP EtherNet/IP Module FX5-EIP&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8805" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-8805</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/190.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-190</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Mitsubishi Electric&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8806" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-8806</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/440.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-440</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>RSLinx Classic&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2020-13573" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2020-13573</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>3.454%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>87.491%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/125.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-125</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CompactLogix 5370 L1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-11694" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2025-11694</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.170%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>6.626%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/354.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-354</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>1794-AENTR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-0646" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-0646</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.302%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>21.623%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/401.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-401</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CompactLogix 5370&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-11317" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-11317</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.302%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>21.622%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/404.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-404</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>FactoryTalk Historian SE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-44019" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2025-44019</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.320%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>23.578%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/248.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-248</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>FactoryTalk Analytics PavilionX&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-14272" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2025-14272</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.235%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>14.112%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/862.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-862</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Apollo Pharmacy&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>Blood Glucose Monitoring System (Model No. APG-01 BT)&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-50034" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-50034</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>6.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>MEDIUM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/319.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-319</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Apollo Pharmacy&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>Blood Glucose Monitoring System (Model No. APG-01 BT)&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-52866" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-52866</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>6.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>MEDIUM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/862.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-862</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>FactoryTalk Historian SE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-36539" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2025-36539</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>6.5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>MEDIUM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.304%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>21.853%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/248.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-248</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Rockwell Automation&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CompactLogix 5370 L1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-9307" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-9307</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>5.3&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>MEDIUM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.298%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>21.285%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/497.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-497</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><br></p></div></div></div></div></span></span><div><div></div>
</div><p></p><div><div><div><p><span style="font-weight:bold;">Actualité Fortress Cybersecurity&nbsp;</span><span><span>&nbsp;</span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-d-avril-2026" target="_blank" rel="noreferrer noopener"><span>- Bilan des Known Exploited Vulnerabilities du mois d'avril 2026</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/nouveau-guide-de-classification-des-actifs-industriels-publi%C3%A9-par-l-anssi" target="_blank" rel="noreferrer noopener"><span>- Nouveau guide de classification des actifs industriels publié par l'ANSSI</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/calendrier-2026-de-nos-webinaires-d%C3%A9di%C3%A9s-%C3%A0-la-cybers%C3%A9curit%C3%A9-des-installations-industrielles" target="_blank" rel="noreferrer noopener"><span>Nos prochains webinaires dédiés à la cybersécurité des installations industrielles :</span></a><span>&nbsp;</span></p></div>
<div><p>- 2 juillet 2026 : Gérer les vulnérabilités en environnement industriel​​, inscription <a href="https://events.teams.microsoft.com/event/e2cac6c8-9560-48d5-8736-25da3b084041%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener">lien</a>&nbsp;</p></div>
<div><p><span>- 3 septembre 2026 : Mettre en place le plan de contrôle cyber de ses installations industriels​​, inscription </span><a href="https://events.teams.microsoft.com/event/1960fe77-9d3a-4f18-a7a9-70528a5e7151%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 1 octobre 2026 : Sécuriser les accès à distance et de télémaintenance des actifs industriels, inscription </span><a href="https://events.teams.microsoft.com/event/c9ba377e-5c27-4e4d-bffb-8ddc3a7856be%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 5 novembre 2026 : Protéger les endpoints dans les zones industrielles, inscription </span><a href="https://events.teams.microsoft.com/event/f079bb46-c1ad-4274-b0d3-e32db7d3b4fc%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 décembre 2026 : Protéger les réseaux mobiles privés 5G, inscription </span><a href="https://events.teams.microsoft.com/event/56995822-3f07-404d-b2dc-f6fb7727ad50%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
</div><br><p></p></div><p style="font-weight:bold;"></p><p></p><div><p></p></div>
<p></p><p><br></p><p></p><div><p></p></div></div></div></div></div></div></div></div>]]></content:encoded><pubDate>Mon, 22 Jun 2026 07:27:11 +0200</pubDate></item><item><title><![CDATA[Bulletin cybersec indus hebdo 26.S24]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bulletin-cybersec-indus-hebdo-26.s24</link><description><![CDATA[<img align="left" hspace="5" src="https://www.fortress-cybersecurity.fr/files/manufacturing.jpg"/> Cartes réseau UPS Vertiv vulnérables Les chercheurs de Claroty Team82 ont identifié deux failles critiques, toutes deux notées CVSS 9.8, dans les c ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_OIHw3lK1R0uMD1sBLIHwRg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_1ydeJqOcTyiM7nuV2rOklQ" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"> [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } @media (max-width: 767px) { [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } @media all and (min-width: 768px) and (max-width:991px){ [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } </style><div data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA" data-element-type="heading" class="zpelement zpelem-heading "><style> [data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA"].zpelem-heading { border-radius:1px; } </style><h2 class="zpheading zpheading-align-center zpheading-align-mobile-center zpheading-align-tablet-center " data-editor="true">Les news relatives à la cybersécurité des installations industrielles</h2></div>
<div data-element-id="elm_sH2l7vQ8h3FUwPV13-l42A" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><span><span><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p><span><span></span></span></p><p></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p></p><p></p><div><p style="font-weight:bold;"><strong><span>Cartes réseau UPS Vertiv vulnérables</span></strong></p><p><span>Les chercheurs de Claroty Team82 ont identifié deux failles critiques, toutes deux notées CVSS 9.8, dans les cartes réseau Vertiv Liebert IS-UNITY-DP utilisées pour gérer des onduleurs UPS. Ces équipements sont essentiels dans les data centers, car ils maintiennent les serveurs et systèmes critiques en fonctionnement lors de coupures ou variations électriques. Les vulnérabilités permettent un contournement d’authentification, un déni de service et potentiellement l’exécution de code à distance, avec un risque concret d’arrêt d’équipements alimentés par l’UPS.</span><br></p><p><br></p><p><strong>Rapport CYFIRMA sur le secteur énergie et utilité</strong><br></p><p><span>Le rapport CYFIRMA analyse le paysage de menace cyber visant le secteur énergie et utilité sur les 90 derniers jours. Le secteur apparaît dans 10 campagnes APT sur 27, avec une forte présence d’acteurs étatiques, notamment liés à la Chine.&nbsp;<span>CYFIRMA recense aussi 26 incidents publics, dominés par les attaques OT/ICS, ainsi que 60 victimes ransomware malgré une baisse de 9,1 % par rapport au trimestre précédent. Globalement, le risque reste élevé.</span></span></p><p><span></span></p><div><p><span style="font-weight:bold;"><span>Vulnerability Corner :</span></span><span>&nbsp;</span></p></div>
<div><p><span>Liste des Known Exploited Vulnerabilities (KEV) publiés par l'agence de cybersécurité américaine CISA la semaine dernière :&nbsp;&nbsp;</span></p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:194px;"><div><div><p><span>CVE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:94.9688px;"><div><div><p><span>Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:142.312px;"><div><div><p><span>Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:884.688px;"><div><div><p><span>Liens&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:194px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-10520" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-10520</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:94.9688px;"><div><div><p><span>Ivanti&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:142.312px;"><div><div><p><span>Sentry&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:884.688px;"><div><div><p><span></span><a href="https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Sentry-CVE-2026-10520-CVE-2026-10523?language=en_US%2C%20https%3A%2F%2Fnvd.nist.gov%2Fvuln%2Fdetail%2FCVE-2026-10520%2C%20https%3A%2F%2Fwww.cisa.gov%2Fnews-events%2Fdirectives%2Fbod-26-04-implementation-guidance-prioritizing-security-updates-based-risk%2C%20https%3A%2F%2Fwww.cisa.gov%2Fnews-events%2Fdirectives%2Fbod-26-04-prioritizing-security-updates-based-risk" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Sentry-CVE-2026-10520-CVE-2026-10523?language=en_US, https://nvd.nist.gov/vuln/detail/CVE-2026-10520, https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk, https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:194px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-11645" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-11645</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:94.9688px;"><div><div><p><span>Google&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:142.312px;"><div><div><p><span>Chromium V8&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:884.688px;"><div><div><p><span></span><a href="https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html%2C%20https%3A//issues.chromium.org/issues/506689381%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-11645" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html, https://issues.chromium.org/issues/506689381, https://nvd.nist.gov/vuln/detail/CVE-2026-11645</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:194px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-20245" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-20245</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:94.9688px;"><div><div><p><span>Cisco&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:142.312px;"><div><div><p><span>Catalyst SD-WAN Manager&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:884.688px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-20245%2C%20https%3A//sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-privesc-4uxFrdzx" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://nvd.nist.gov/vuln/detail/CVE-2026-20245, https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-privesc-4uxFrdzx</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:194px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42271" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-42271</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:94.9688px;"><div><div><p><span>BerriAI&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:142.312px;"><div><div><p><span>LiteLLM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:884.688px;"><div><div><p><span></span><a href="https://github.com/BerriAI/litellm/releases/tag/v1.83.7-stable%2C%20https%3A//github.com/BerriAI/litellm/security/advisories/GHSA-v4p8-mg3p-g94g%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-42271" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://github.com/BerriAI/litellm/releases/tag/v1.83.7-stable, https://github.com/BerriAI/litellm/security/advisories/GHSA-v4p8-mg3p-g94g, https://nvd.nist.gov/vuln/detail/CVE-2026-42271</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:194px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-50751" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-50751</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:94.9688px;"><div><div><p><span>Check Point&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:142.312px;"><div><div><p><span>Security Gateway&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:884.688px;"><div><div><p><span></span><a href="https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-50751%2C%20https%3A//support.checkpoint.com/results/sk/sk185033?_gl=1%2A1wqeqhc%2A_gcl_au%2AMTI1MzE5MjI2LjE3ODA5MzQ1NTM." target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/, https://nvd.nist.gov/vuln/detail/CVE-2026-50751, https://support.checkpoint.com/results/sk/sk185033?_gl=1*1wqeqhc*_gcl_au*MTI1MzE5MjI2LjE3ODA5MzQ1NTM.</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:194px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-7473" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-7473</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:94.9688px;"><div><div><p><span>Arista&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:142.312px;"><div><div><p><span>Extensible Operating System&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:884.688px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-7473%2C%20https%3A//www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://nvd.nist.gov/vuln/detail/CVE-2026-7473, https://www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span style="font-weight:bold;"><span>Vulnérabilités de composants de systèmes industriels :&nbsp;</span></span><span>&nbsp;</span></p></div>
<div><p><span>Source : ICS Advisory Project dashboard https://lookerstudio.google.com/u/0/reporting/f0d99ae7-c75b-4fdd-9951-8ecada5aee5e/page/G1klC&nbsp;&nbsp;</span></p></div>
</div></div></span><p></p><table border="1"><tbody><tr><td style="vertical-align:top;width:82px;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>Critical&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>High&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>Medium&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>Low&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;" class="zp-selected-cell"><div><p><strong>Total&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><p>Naxclow&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>Smart Doorbell X3&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>3&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>3&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>7&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><p>Brickcom&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>Brickcom Cube&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>2&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>2&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><p>Yarbo&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>Yarbo Android/IOS mobile application&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>2&nbsp;</p></div></td></tr></tbody></table><div></div>
<p><span></span></p><div><p><span>&nbsp;</span></p></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>Liste complète triée par CVSSv3 Score :&nbsp;</span></p></div></span><p></p><table border="1"><tbody><tr><td style="vertical-align:top;width:72px;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>CVE&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>CVSSv3 Score&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>CVSSv3 Severity&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>EPSS&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>Percentile&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;" class="zp-selected-cell"><div><p><strong>CWE&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Naxclow&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Smart Doorbell X3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28742" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-28742</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/321.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-321</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Yarbo&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Yarbo Android/IOS mobile application&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-10557" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-10557</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/798.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-798</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Naxclow&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Smart Doorbell X3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42947" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-42947</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>8.8&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/639.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-639</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Naxclow&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Smart Doorbell X3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-50101" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-50101</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>8.1&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/262.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-262</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Yarbo&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Yarbo Android/IOS mobile application&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-7368" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-7368</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>8.1&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/862.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-862</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Brickcom&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Brickcom Cube&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-50005" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-50005</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>7.7&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/1392.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-1392</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Brickcom&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Brickcom Cube&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-50245" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-50245</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>7.7&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/306.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-306</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Naxclow&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Smart Doorbell X3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-50108" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-50108</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/862.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-862</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Naxclow&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Smart Doorbell X3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42932" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-42932</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>5.3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MEDIUM&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/340.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-340</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Naxclow&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Smart Doorbell X3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-50244" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-50244</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>5.3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MEDIUM&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/862.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-862</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Naxclow&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Smart Doorbell X3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-50099" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-50099</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>4.6&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MEDIUM&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/538.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-538</span></a>&nbsp;</p></div></td></tr></tbody></table><p><span><br></span></p><div><div></div>
</div><p></p><div><div><div><p><span style="font-weight:bold;">Actualité Fortress Cybersecurity&nbsp;</span><span><span>&nbsp;</span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-d-avril-2026" target="_blank" rel="noreferrer noopener"><span>- Bilan des Known Exploited Vulnerabilities du mois d'avril 2026</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/nouveau-guide-de-classification-des-actifs-industriels-publi%C3%A9-par-l-anssi" target="_blank" rel="noreferrer noopener"><span>- Nouveau guide de classification des actifs industriels publié par l'ANSSI</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/calendrier-2026-de-nos-webinaires-d%C3%A9di%C3%A9s-%C3%A0-la-cybers%C3%A9curit%C3%A9-des-installations-industrielles" target="_blank" rel="noreferrer noopener"><span>Nos prochains webinaires dédiés à la cybersécurité des installations industrielles :</span></a><span>&nbsp;</span></p></div>
<div><p>- 2 juillet 2026 : Gérer les vulnérabilités en environnement industriel​​, inscription <a href="https://events.teams.microsoft.com/event/e2cac6c8-9560-48d5-8736-25da3b084041%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener">lien</a>&nbsp;</p></div>
<div><p><span>- 3 septembre 2026 : Mettre en place le plan de contrôle cyber de ses installations industriels​​, inscription </span><a href="https://events.teams.microsoft.com/event/1960fe77-9d3a-4f18-a7a9-70528a5e7151%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 1 octobre 2026 : Sécuriser les accès à distance et de télémaintenance des actifs industriels, inscription </span><a href="https://events.teams.microsoft.com/event/c9ba377e-5c27-4e4d-bffb-8ddc3a7856be%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 5 novembre 2026 : Protéger les endpoints dans les zones industrielles, inscription </span><a href="https://events.teams.microsoft.com/event/f079bb46-c1ad-4274-b0d3-e32db7d3b4fc%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 décembre 2026 : Protéger les réseaux mobiles privés 5G, inscription </span><a href="https://events.teams.microsoft.com/event/56995822-3f07-404d-b2dc-f6fb7727ad50%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
</div><br><p></p></div><p style="font-weight:bold;"></p><p></p><div><p></p></div>
<p></p><p><br></p><p></p><div><p></p></div></div></div></div></div></div></div></div>]]></content:encoded><pubDate>Sun, 14 Jun 2026 20:37:34 +0200</pubDate></item><item><title><![CDATA[Bulletin cybersec indus hebdo 26.S23]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bulletin-cybersec-indus-hebdo-26.s23</link><description><![CDATA[<img align="left" hspace="5" src="https://www.fortress-cybersecurity.fr/files/manufacturing.jpg"/> ENISA NIS360 2026 Le rapport ENISA NIS360 2026 évalue la maturité et la criticité cyber des secteurs essentiels couverts par NIS2. La maturité prog ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_OIHw3lK1R0uMD1sBLIHwRg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_1ydeJqOcTyiM7nuV2rOklQ" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"> [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } @media (max-width: 767px) { [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } @media all and (min-width: 768px) and (max-width:991px){ [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } </style><div data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA" data-element-type="heading" class="zpelement zpelem-heading "><style> [data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA"].zpelem-heading { border-radius:1px; } </style><h2 class="zpheading zpheading-align-center zpheading-align-mobile-center zpheading-align-tablet-center " data-editor="true">Les news relatives à la cybersécurité des installations industrielles</h2></div>
<div data-element-id="elm_sH2l7vQ8h3FUwPV13-l42A" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><span><span><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p><span><span></span></span></p><p></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p></p><p></p><div><p style="font-weight:bold;"><strong>ENISA NIS360 2026</strong></p><p>Le rapport ENISA NIS360 2026 évalue la maturité et la criticité cyber des secteurs essentiels couverts par NIS2. La maturité progresse globalement dans l’UE, portée par la réglementation, les investissements et une meilleure coopération, avec la banque, l’électricité et les télécommunications toujours parmi les secteurs les plus matures. Mais les écarts restent importants pour certain secteurs : le transport, la gestion des eaux potables et des eaux usées entrent désormais dans la “zone de risque”, car leur criticité dépasse leur niveau de préparation.</p><p><a href="https://www.enisa.europa.eu/sites/default/files/2026-05/ENISA%20NIS360%202026.pdf">https://www.enisa.europa.eu/sites/default/files/2026-05/ENISA%20NIS360%202026.pdf</a><br></p><p><br></p><p><strong>La gouvernance, point faible central du risque cyber industriel</strong><br></p><p>Cet article du World Economic Forum explique que la cybersécurité industrielle n’est plus seulement un sujet technique, mais un problème de gouvernance. Avec la convergence IT/OT, les incidents peuvent dépasser une usine ou une entreprise et provoquer des effets en chaîne sur les fournisseurs, les infrastructures et l’économie. Le texte souligne un manque de pilotage : seuls 16 % des organisations industrielles remontent les sujets cyber OT au conseil d’administration, 20 % disposent d’équipes cyber OT dédiées et 36 % placent clairement cette responsabilité sous le CISO. L'article propose trois priorités&nbsp;: clarifier les responsabilités, raisonner par scénarios de risque et recourir à des validations indépendantes.<br></p><p><a href="https://www.weforum.org/stories/2026/06/industrial-cyber-risk-governance-challenge/">https://www.weforum.org/stories/2026/06/industrial-cyber-risk-governance-challenge/</a><br></p><p><br></p><p><strong>CISA et ses partenaires appellent à un renforcement des <span>système de jaugeage automatique des réservoirs (ATG)</span></strong><br></p><p><span>CISA, la NSA et plusieurs agences américaines alertent sur des attaques visant les systèmes Automatic Tank Gauge, utilisés pour surveiller à distance les niveaux de carburant, de liquides, la température et les fuites de ces réservoirs. Les acteurs de la menace cyber observés compromettent des systèmes ATG exposés à internet puis les modifient via une exécution de commandes. Ainsi, des dommages physiques peuvent être causés au tank, désactiver les alertes du système ou modifier le fonctionnement du système. Les recommandations sont de déconnecter ces équipements d’internet, utiliser des mots de passe forts, appliquer les correctifs, activer le MFA et surveiller les accès suspects.</span></p><p><a href="https://www.cisa.gov/sites/default/files/2026-06/fact-sheet-cisa-and-partners-urge-hardening-automatic-tank-gauge-systems_508c.pdf">https://www.cisa.gov/sites/default/files/2026-06/fact-sheet-cisa-and-partners-urge-hardening-automatic-tank-gauge-systems_508c.pdf</a><br></p><p></p><div><p><span style="font-weight:bold;"><span>Vulnerability Corner :</span></span><span>&nbsp;</span></p></div>
<div><p><span>Liste des Known Exploited Vulnerabilities (KEV) publiés par l'agence de cybersécurité américaine CISA la semaine dernière :&nbsp;&nbsp;</span></p></div>
<p></p><table border="1"><tbody><tr><td style="vertical-align:top;width:196px;"><div><p><strong>CVE&nbsp;</strong></p></div></td><td style="vertical-align:top;width:167.578px;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:160.531px;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:756.469px;" class="zp-selected-cell"><div><p><strong>Liens&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:196px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2022-0492" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2022-0492</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:167.578px;"><div><p>Linux&nbsp;</p></div></td><td style="vertical-align:top;width:160.531px;"><div><p>Kernel&nbsp;</p></div></td><td style="vertical-align:top;width:756.469px;"><div><p><a href="https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af%2C%20https%3A%2F%2Fnvd.nist.gov%2Fvuln%2Fdetail%2FCVE-2022-0492%2C%20https%3A%2F%2Fwww.kernel.org%2F" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af, https://nvd.nist.gov/vuln/detail/CVE-2022-0492, https://www.kernel.org/</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:196px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2024-21182" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2024-21182</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:167.578px;"><div><p>Oracle&nbsp;</p></div></td><td style="vertical-align:top;width:160.531px;"><div><p>WebLogic Server&nbsp;</p></div></td><td style="vertical-align:top;width:756.469px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2024-21182%2C%20https%3A//www.oracle.com/security-alerts/cpujul2024.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">https://nvd.nist.gov/vuln/detail/CVE-2024-21182, https://www.oracle.com/security-alerts/cpujul2024.html</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:196px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-48595" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-48595</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:167.578px;"><div><p>Android&nbsp;</p></div></td><td style="vertical-align:top;width:160.531px;"><div><p>Framework&nbsp;</p></div></td><td style="vertical-align:top;width:756.469px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-48595%2C%20https%3A//source.android.com/docs/security/bulletin/2026/2026-06-01" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">https://nvd.nist.gov/vuln/detail/CVE-2025-48595, https://source.android.com/docs/security/bulletin/2026/2026-06-01</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:196px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-45247" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-45247</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:167.578px;"><div><p>Mirasvit&nbsp;</p></div></td><td style="vertical-align:top;width:160.531px;"><div><p>Mirasvit Full Page Cache Warmer&nbsp;</p></div></td><td style="vertical-align:top;width:756.469px;"><div><p><a href="https://mirasvit.com/package/changelog/?package=mirasvit%2Fmodule-cache-warmer%2C%20https%3A%2F%2Fnvd.nist.gov%2Fvuln%2Fdetail%2FCVE-2026-45247" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">https://mirasvit.com/package/changelog/?package=mirasvit/module-cache-warmer, https://nvd.nist.gov/vuln/detail/CVE-2026-45247</span></a>&nbsp;</p></div></td></tr></tbody></table><div></div>
<p></p><div><p><span>&nbsp;</span></p></div><div><p><span style="font-weight:bold;"><span>Vulnérabilités de composants de systèmes industriels :&nbsp;</span></span><span>&nbsp;</span></p></div>
<div><p><span>Source : ICS Advisory Project dashboard https://lookerstudio.google.com/u/0/reporting/f0d99ae7-c75b-4fdd-9951-8ecada5aee5e/page/G1klC&nbsp;&nbsp;</span></p></div>
<p></p><table border="1"><tbody><tr><td style="vertical-align:top;width:82px;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>Critical&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>High&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>Medium&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;"><div><p><strong>Low&nbsp;</strong></p></div></td><td style="vertical-align:top;width:82px;" class="zp-selected-cell"><div><p><strong>Total&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><p>NAVTOR&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>NavBox&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:82px;"><div><p>1&nbsp;</p></div></td></tr></tbody></table><div></div>
<p></p><div><p><span>&nbsp;</span></p></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>Liste complète triée par CVSSv3 Score :&nbsp;</span></p></div><p></p><table border="1"><tbody><tr><td style="vertical-align:top;width:72px;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>CVE&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>CVSSv3 Score&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>CVSSv3 Severity&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>EPSS&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>Percentile&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;" class="zp-selected-cell"><div><p><strong>CWE&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>NAVTOR&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>NavBox&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-21404" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-21404</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>6.3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MEDIUM&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>0.017%&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>4.472%&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/798.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-798</span></a>&nbsp;</p></div></td></tr></tbody></table><div><div></div>
<div><p><span>&nbsp;</span></p></div></div><p><br></p></div></div></span></span><p></p><div><div><div><p><span style="font-weight:bold;">Actualité Fortress Cybersecurity&nbsp;</span><span><span>&nbsp;</span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-d-avril-2026" target="_blank" rel="noreferrer noopener"><span>- Bilan des Known Exploited Vulnerabilities du mois d'avril 2026</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/nouveau-guide-de-classification-des-actifs-industriels-publi%C3%A9-par-l-anssi" target="_blank" rel="noreferrer noopener"><span>- Nouveau guide de classification des actifs industriels publié par l'ANSSI</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/calendrier-2026-de-nos-webinaires-d%C3%A9di%C3%A9s-%C3%A0-la-cybers%C3%A9curit%C3%A9-des-installations-industrielles" target="_blank" rel="noreferrer noopener"><span>Nos prochains webinaires dédiés à la cybersécurité des installations industrielles :</span></a><span>&nbsp;</span></p></div>
<div><p>- 2 juillet 2026 : Gérer les vulnérabilités en environnement industriel​​, inscription <a href="https://events.teams.microsoft.com/event/e2cac6c8-9560-48d5-8736-25da3b084041%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener">lien</a>&nbsp;</p></div>
<div><p><span>- 3 septembre 2026 : Mettre en place le plan de contrôle cyber de ses installations industriels​​, inscription </span><a href="https://events.teams.microsoft.com/event/1960fe77-9d3a-4f18-a7a9-70528a5e7151%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 1 octobre 2026 : Sécuriser les accès à distance et de télémaintenance des actifs industriels, inscription </span><a href="https://events.teams.microsoft.com/event/c9ba377e-5c27-4e4d-bffb-8ddc3a7856be%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 5 novembre 2026 : Protéger les endpoints dans les zones industrielles, inscription </span><a href="https://events.teams.microsoft.com/event/f079bb46-c1ad-4274-b0d3-e32db7d3b4fc%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 décembre 2026 : Protéger les réseaux mobiles privés 5G, inscription </span><a href="https://events.teams.microsoft.com/event/56995822-3f07-404d-b2dc-f6fb7727ad50%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
</div><br><p></p></div><p style="font-weight:bold;"></p><p></p><div><p></p></div>
<p></p><p><br></p><p></p><div><p></p></div></div></div></div></div></div></div></div>]]></content:encoded><pubDate>Sun, 07 Jun 2026 21:18:51 +0200</pubDate></item><item><title><![CDATA[Bulletin cybersec indus hebdo 26.S22]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bulletin-cybersec-indus-hebdo-26.s22</link><description><![CDATA[<img align="left" hspace="5" src="https://www.fortress-cybersecurity.fr/files/manufacturing.jpg"/> Reconstruire l'attaque du ransomware Akira avec uniquement les logs périmétriques et des systèmes Ce billet du SANS ISC reconstitue une chaîne d’at ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_OIHw3lK1R0uMD1sBLIHwRg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_1ydeJqOcTyiM7nuV2rOklQ" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"> [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } @media (max-width: 767px) { [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } @media all and (min-width: 768px) and (max-width:991px){ [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } </style><div data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA" data-element-type="heading" class="zpelement zpelem-heading "><style> [data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA"].zpelem-heading { border-radius:1px; } </style><h2 class="zpheading zpheading-align-center zpheading-align-mobile-center zpheading-align-tablet-center " data-editor="true">Les news relatives à la cybersécurité des installations industrielles</h2></div>
<div data-element-id="elm_sH2l7vQ8h3FUwPV13-l42A" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><span><span><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p><span><span></span></span></p><p></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p></p><p></p><div><p style="font-weight:bold;"><strong>Reconstruire l'attaque du ransomware Akira avec uniquement les logs périmétriques et des systèmes</strong></p><p>Ce billet du SANS ISC reconstitue une chaîne d’attaque Akira à partir de deux sources souvent sous-exploitées : les logs SSLVPN du pare-feu et les journaux Windows EVTX. L’attaque Akira aurait pu être identifiée avant le chiffrement. La chaîne d’attaque reste assez classique : brute force sur l’accès VPN, compte local sans MFA, Kerberoasting, mouvements latéraux via RDP, effacement des journaux et suppression des shadow copies.&nbsp;<span>Le problème n’est pas toujours l’absence de données, mais leur conservation, leur corrélation et leur lecture au bon moment.</span></p><p><span><a href="https://isc.sans.edu/diary/rss/33024">https://isc.sans.edu/diary/rss/33024</a><br></span></p><p><br></p><p><span style="font-weight:bold;font-size:16px;"><strong><span>11e rapport annuel sur l'état de la fabrication intelligente</span></strong></span></p><p><span>L’étude de Rockwell Automation est basée sur 1 560 répondants dans 17 pays,</span>&nbsp;59 % utilisent déjà des technologies de smart manufacturing et 90 % jugent la transformation digitale indispensable pour rester compétitif. La cybersécurité devient donc un enjeu central <span>car 46 % des fabricants ont subi au moins un incident cyber l’an dernier. Cela est dû au fait que l</span>es usines sont de plus en plus connectée et la présence de l'IA dans les opérations de qualité, d'optimisation&nbsp;&nbsp;<br></p><p><span><a href="https://www.rockwellautomation.com/en-us/capabilities/digital-transformation/state-of-smart-manufacturing.html">https://www.rockwellautomation.com/en-us/capabilities/digital-transformation/state-of-smart-manufacturing.html</a><br></span></p><div><h1></h1></div>
<p><span><br></span></p><p><span></span></p><p style="font-weight:bold;">Une approche Zero Trust pour sécuriser les environnements OT fédéraux<br></p><p>Claroty et Corsha annoncent une intégration visant à mieux protéger les systèmes des agences fédérales américaines. L’idée est de combiner la visibilité OT de Claroty CTD avec l’authentification dynamique des identités de Corsha, afin de contrôler chaque connexion machine-à-machine. Le but étant de passer d’une simple surveillance OT à segmenter dynamiquement le trafic, de bloquer les communications suspectes, de limiter les mouvements latéraux et de prévenir en temps réel la propagation de ransomwares ou l’usage abusif d’identifiants.<br></p><p><a href="https://claroty.com/press-releases/claroty-and-corsha-partner-to-bring-holistic-cyber-physical-systems-protection-to-federal-operational-environments">https://claroty.com/press-releases/claroty-and-corsha-partner-to-bring-holistic-cyber-physical-systems-protection-to-federal-operational-environments</a></p><p></p><div><div><p><span style="font-weight:bold;"><span>Vulnerability Corner :</span></span><span>&nbsp;</span></p></div>
<div><p><span>Liste des Known Exploited Vulnerabilities (KEV) publiés par l'agence de cybersécurité américaine CISA la semaine dernière :</span></p><table border="1"><tbody><tr><td style="vertical-align:top;width:179px;"><div><p><strong>CVE&nbsp;</strong></p></div></td><td style="vertical-align:top;width:136.906px;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:221.094px;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:700.578px;"><div><p><strong>Liens&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:179px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-45321" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-45321</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:136.906px;"><div><p>TanStack&nbsp;</p></div></td><td style="vertical-align:top;width:221.094px;"><div><p>TanStack&nbsp;</p></div></td><td style="vertical-align:top;width:700.578px;"><div><p><a href="https://github.com/TanStack/router/security/advisories/GHSA-g7cv-rxg3-hmpx%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-45321" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">https://github.com/TanStack/router/security/advisories/GHSA-g7cv-rxg3-hmpx, https://nvd.nist.gov/vuln/detail/CVE-2026-45321</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:179px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-48027" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-48027</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:136.906px;" class="zp-selected-cell"><div><p>Nx&nbsp;</p></div></td><td style="vertical-align:top;width:221.094px;"><div><p>Nx Console&nbsp;</p></div></td><td style="vertical-align:top;width:700.578px;"><div><p><a href="https://github.com/nrwl/nx-console/security/advisories/GHSA-c9j4-9m59-847w%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-48027" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">https://github.com/nrwl/nx-console/security/advisories/GHSA-c9j4-9m59-847w, https://nvd.nist.gov/vuln/detail/CVE-2026-48027</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:179px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-48172" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-48172</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:136.906px;"><div><p>LiteSpeed&nbsp;</p></div></td><td style="vertical-align:top;width:221.094px;"><div><p>cPanel Plugin&nbsp;</p></div></td><td style="vertical-align:top;width:700.578px;"><div><p><a href="https://blog.litespeedtech.com/2026/05/21/security-update-for-litespeed-cpanel-plugin/%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-48172" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">https://blog.litespeedtech.com/2026/05/21/security-update-for-litespeed-cpanel-plugin/, https://nvd.nist.gov/vuln/detail/CVE-2026-48172</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:179px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8398" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-8398</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:136.906px;"><div><p>Daemon&nbsp;</p></div></td><td style="vertical-align:top;width:221.094px;"><div><p>Daemon Tools Lite&nbsp;</p></div></td><td style="vertical-align:top;width:700.578px;"><div><p><a href="https://blog.daemon-tools.cc/post/security-incident%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-8398" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">https://blog.daemon-tools.cc/post/security-incident, https://nvd.nist.gov/vuln/detail/CVE-2026-8398</span></a>&nbsp;</p></div></td></tr></tbody></table><div></div>
<p>&nbsp;</p></div></div></div></div></span><div><div></div><div><p><span style="font-weight:bold;"><span>Vulnérabilités de composants de systèmes industriels :&nbsp;</span></span><span>&nbsp;</span></p></div>
<div><table border="1"><tbody><tr><td style="vertical-align:top;width:201px;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:580px;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:114.766px;"><div><p><strong>Critical&nbsp;</strong></p></div></td><td style="vertical-align:top;width:115.688px;"><div><p><strong>High&nbsp;</strong></p></div></td><td style="vertical-align:top;width:124.703px;"><div><p><strong>Medium&nbsp;</strong></p></div></td><td style="vertical-align:top;width:96.2969px;"><div><p><strong>Low&nbsp;</strong></p></div></td><td style="vertical-align:top;width:76.4062px;" class="zp-selected-cell"><div><p><strong>Total&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:201px;"><div><p>Danelec&nbsp;</p></div></td><td style="vertical-align:top;width:580px;"><div><p>MacGregor Voyage Data Recorder (VDR) G4e&nbsp;</p></div></td><td style="vertical-align:top;width:114.766px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:115.688px;"><div><p>2&nbsp;</p></div></td><td style="vertical-align:top;width:124.703px;"><div><p><br></p><p>3&nbsp;</p></div></td><td style="vertical-align:top;width:96.2969px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:76.4062px;"><div><p>5&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:201px;"><div><p>XCharge&nbsp;</p></div></td><td style="vertical-align:top;width:580px;"><div><p>C6&nbsp;</p></div></td><td style="vertical-align:top;width:114.766px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:115.688px;"><div><p>2&nbsp;</p></div></td><td style="vertical-align:top;width:124.703px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:96.2969px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:76.4062px;"><div><p>3&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:201px;"><div><p>CP Plus&nbsp;</p></div></td><td style="vertical-align:top;width:580px;"><div><p>CP-UNR-108F1 Hardware&nbsp;</p></div></td><td style="vertical-align:top;width:114.766px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:115.688px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:124.703px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:96.2969px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:76.4062px;"><div><p>1&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:201px;"><div><p>Jinan USR IOT Technology Limited (PUSR)&nbsp;</p></div></td><td style="vertical-align:top;width:580px;"><div><p>USR-W610 RS232/485 to Wi-Fi/Ethernet Converter&nbsp;</p></div></td><td style="vertical-align:top;width:114.766px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:115.688px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:124.703px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:96.2969px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:76.4062px;"><div><p>1&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:201px;"><div><p>KMW&nbsp;</p></div></td><td style="vertical-align:top;width:580px;"><div><p>KM-IP521&nbsp;</p></div></td><td style="vertical-align:top;width:114.766px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:115.688px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:124.703px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:96.2969px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:76.4062px;"><div><p>1&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:201px;"><div><p>Fourth Frontier&nbsp;</p></div></td><td style="vertical-align:top;width:580px;"><div><p>Frontier X Android application&nbsp;</p></div></td><td style="vertical-align:top;width:114.766px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:115.688px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:124.703px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:96.2969px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:76.4062px;"><div><p>1&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:201px;"><div><p>Eppendorf&nbsp;</p></div></td><td style="vertical-align:top;width:580px;"><div><p>BioFlo 320 Bioreactor&nbsp;</p></div></td><td style="vertical-align:top;width:114.766px;"><div><p>1&nbsp;</p></div></td><td style="vertical-align:top;width:115.688px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:124.703px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:96.2969px;"><div><p>0&nbsp;</p></div></td><td style="vertical-align:top;width:76.4062px;"><div><p>1&nbsp;</p></div></td></tr></tbody></table></div>
<div><p><span>&nbsp;</span></p></div><div><p><span>&nbsp;</span></p></div><div><p><span>Liste complète triée par CVSSv3 Score :&nbsp;</span></p></div>
<div><table border="1"><tbody><tr><td style="vertical-align:top;width:72px;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>CVE&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>CVSSv3 Score&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>CVSSv3 Severity&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>EPSS&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;"><div><p><strong>Percentile&nbsp;</strong></p></div></td><td style="vertical-align:top;width:72px;" class="zp-selected-cell"><div><p><strong>CWE&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Eppendorf&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>BioFlo 320 Bioreactor&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-7251" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-7251</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>0.101%&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>27.571%&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/259.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-259</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Jinan USR IOT Technology Limited (PUSR)&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>USR-W610 RS232/485 to Wi-Fi/Ethernet Converter&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-7786" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-7786</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/798.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-798</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>XCharge&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>C6&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-9037" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-9037</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/494.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-494</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>KMW&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>KM-IP521&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-5386" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-5386</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/620.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-620</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Fourth Frontier&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>Frontier X Android application&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-5768" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-5768</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>8.8&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/306.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-306</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>CP Plus&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>CP-UNR-108F1 Hardware&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-6824" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-6824</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>8.4&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/79.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-79</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Danelec&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MacGregor Voyage Data Recorder (VDR) G4e&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42929" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-42929</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>8.3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/798.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-798</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Danelec&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MacGregor Voyage Data Recorder (VDR) G4e&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42941" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-42941</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>8.3&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/1392.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-1392</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>XCharge&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>C6&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-9038" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-9038</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>7.6&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/121.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-121</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>XCharge&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>C6&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-9039" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-9039</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>7.6&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/1188.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-1188</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Danelec&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MacGregor Voyage Data Recorder (VDR) G4e&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-40425" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-40425</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>5.7&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MEDIUM&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/552.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-552</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Danelec&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MacGregor Voyage Data Recorder (VDR) G4e&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42951" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-42951</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>5.4&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MEDIUM&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/522.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-522</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><p>Danelec&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MacGregor Voyage Data Recorder (VDR) G4e&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-44611" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-44611</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>5.4&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>MEDIUM&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p>N/A&nbsp;</p></div></td><td style="vertical-align:top;width:72px;"><div><p><a href="https://cwe.mitre.org/data/definitions/916.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-916</span></a>&nbsp;</p></div></td></tr></tbody></table></div>
</div><p><br></p><p><span></span></p><p><br></p></span><p></p><div><div><div><div><p><span style="font-weight:bold;">Actualité Fortress Cybersecurity&nbsp;</span><span><span>&nbsp;</span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-d-avril-2026" target="_blank" rel="noreferrer noopener"><span>- Bilan des Known Exploited Vulnerabilities du mois d'avril 2026</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/nouveau-guide-de-classification-des-actifs-industriels-publi%C3%A9-par-l-anssi" target="_blank" rel="noreferrer noopener"><span>- Nouveau guide de classification des actifs industriels publié par l'ANSSI</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/calendrier-2026-de-nos-webinaires-d%C3%A9di%C3%A9s-%C3%A0-la-cybers%C3%A9curit%C3%A9-des-installations-industrielles" target="_blank" rel="noreferrer noopener"><span>Nos prochains webinaires dédiés à la cybersécurité des installations industrielles :</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 4 juin 2026 : Gérer les incidents cyber en environnement industriel​, inscription </span><a href="https://events.teams.microsoft.com/event/c5644e79-7926-4075-bc80-8de9ad9833cf%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 2 juillet 2026 : Gérer les vulnérabilités en environnement industriel​​, inscription </span><a href="https://events.teams.microsoft.com/event/e2cac6c8-9560-48d5-8736-25da3b084041%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 septembre 2026 : Mettre en place le plan de contrôle cyber de ses installations industriels​​, inscription </span><a href="https://events.teams.microsoft.com/event/1960fe77-9d3a-4f18-a7a9-70528a5e7151%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 1 octobre 2026 : Sécuriser les accès à distance et de télémaintenance des actifs industriels, inscription </span><a href="https://events.teams.microsoft.com/event/c9ba377e-5c27-4e4d-bffb-8ddc3a7856be%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 5 novembre 2026 : Protéger les endpoints dans les zones industrielles, inscription </span><a href="https://events.teams.microsoft.com/event/f079bb46-c1ad-4274-b0d3-e32db7d3b4fc%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 décembre 2026 : Protéger les réseaux mobiles privés 5G, inscription </span><a href="https://events.teams.microsoft.com/event/56995822-3f07-404d-b2dc-f6fb7727ad50%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
</div><br><p></p></div></div><p style="font-weight:bold;"></p><p></p><div><p></p></div>
<p></p><p><br></p><p></p><div><p></p></div></div></div></div></div></div></div></div>]]></content:encoded><pubDate>Mon, 01 Jun 2026 00:22:33 +0200</pubDate></item><item><title><![CDATA[Bulletin cybersec indus hebdo 26.S21]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bulletin-cybersec-indus-hebdo-26.s21</link><description><![CDATA[<img align="left" hspace="5" src="https://www.fortress-cybersecurity.fr/files/manufacturing.jpg"/> CVE-2024-9643 : des routeurs industriels Four-Faith exploités à grande échelle CrowdSec alerte sur l’exploitation massive de la faille CVE-2024-964 ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_OIHw3lK1R0uMD1sBLIHwRg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_1ydeJqOcTyiM7nuV2rOklQ" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"> [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } @media (max-width: 767px) { [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } @media all and (min-width: 768px) and (max-width:991px){ [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } </style><div data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA" data-element-type="heading" class="zpelement zpelem-heading "><style> [data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA"].zpelem-heading { border-radius:1px; } </style><h2 class="zpheading zpheading-align-center zpheading-align-mobile-center zpheading-align-tablet-center " data-editor="true">Les news relatives à la cybersécurité des installations industrielles</h2></div>
<div data-element-id="elm_sH2l7vQ8h3FUwPV13-l42A" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><span><span><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p><span><span></span></span></p><p></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p></p><p></p><div><p style="font-weight:bold;"><strong>CVE-2024-9643 : des routeurs industriels Four-Faith exploités à grande échelle</strong></p><p>CrowdSec alerte sur l’exploitation massive de la faille CVE-2024-9643, qui touche les routeurs industriels Four-Faith F3x36. La vulnérabilité permet de contourner l’authentification via des identifiants administrateur codés en dur, donnant un accès complet à l’interface de gestion. Depuis avril 2026, l’activité a fortement augmenté, avec 139 IP malveillantes observées et un passage en phase de mass exploitation le 12 mai. L’objectif principal semble être la prise de contrôle d’infrastructures pour intégrer ces routeurs à des botnets ou les utiliser comme relais d’attaque.</p><a href="https://www.crowdsec.net/vulntracking-report/cve-2024-9643-four-faith-router-authentication-bypass" title="https://www.crowdsec.net/vulntracking-report/cve-2024-9643-four-faith-router-authentication-bypass" rel="">https://www.crowdsec.net/vulntracking-report/cve-2024-9643-four-faith-router-authentication-bypass</a><br></div>
<p style="font-weight:bold;"><br></p><p></p><div><div><div><div style="font-weight:bold;"><section><p><strong>Fast16 : un sabotage discret des simulations nucléaires... pré-stuxnet</strong></p></section></div>
<div><p>Fast16 est un outil de sabotage conçu avant Stuxnet, ciblant des logiciels de simulation comme LS-DYNA et AUTODYN. Son but n’était pas de voler des données, mais de fausser les résultats de simulations liées à des détonations nucléaires. Le malware ne s’active que dans des cas très précis, notamment lorsque la densité simulée dépasse 30 g/cm³, un seuil associé à la compression de l’uranium dans un dispositif à implosi<span style="font-weight:bold;">on. Le fait que plusieurs versions des logiciels soient ciblées montre que l’opération a probablement été suivie dans le temps, en s’adaptant aux mises à jour des organisations visées.</span></p></div>
</div><p style="font-weight:bold;"><a href="https://www.security.com/threat-intelligence/fast16-nuclear-sabotage" rel="">https://www.security.com/threat-intelligence/fast16-nuclear-sabotage</a></p></div>
</div><p></p><div><div><p><br></p></div></div><p><strong><span>Sandworm : ce que montrent les données en environnement industriel</span></strong></p><p>Nozomi analyse l’activité de Sandworm, un groupe cyber lié à la Russie, connu pour des attaques destructrices contre des infrastructures critiques. L’étude se base sur la télémétrie anonymisée de 10 clients industriels dans 7 pays, entre juillet 2025 et janvier 2026. Le point important, c’est que Sandworm ne s’appuie pas forcément sur des nouvelles techniques : il exploite souvent des environnements déjà compromis, avec des failles ou outils connus comme EternalBlue, Log4Shell, Cobalt Strike ou des RAT. Chaque système infecté avait généré des alertes sérieuses pendant plusieurs semaines avant l’activité Sandworm, avec une moyenne de 43 jours. Une fois présent, le groupe cherche surtout à se déplacer latéralement dans le réseau et à se rapprocher des systèmes industriels.</p><p><a href="https://www.nozominetworks.com/press-release/nozomi-networks-platform-now-available-on-google-cloud-marketplace" target="_blank">https://www.nozominetworks.com/press-release/nozomi-networks-platform-now-available-on-google-cloud-marketplace</a>&nbsp;<br></p><p><br></p><p></p><div><div><p><strong>Verizon Data Breach Investigations Report (DBIR) 2026</strong><br></p><p>Le rapport DBIR 2026 de Verizon analyse plus de 31 000 incidents de sécurité, dont plus de 22 000 violations de données. Le principal changement est la montée de l’exploitation de vulnérabilités, devenue le premier vecteur d’accès initial avec 31 % des cas, devant l’abus d’identifiants. Le ransomware continue aussi de progresser et concerne 48 % des violations, même si la majorité des victimes ne paient plus la rançon. Le rapport insiste aussi sur le rôle des tiers : 48 % des violations impliquent un fournisseur ou un partenaire. L’IA générative est de plus en plus utilisée par les attaquants, notamment pour le ciblage, l’accès initial et le développement d’outils.<br></p></div><a href="https://www.verizon.com/business/resources/T1f0/reports/2026-dbir-data-breach-investigations-report.pdf" rel="">https://www.verizon.com/business/resources/T1f0/reports/2026-dbir-data-breach-investigations-report.pdf</a></div>
<p></p><p><br></p><p></p><div><div><p><span style="font-weight:bold;">Vulnerability Corner :</span>&nbsp;</p></div>
<div><p></p><div><div><p><span>Liste des Known Exploited Vulnerabilities (KEV) publiés par l'agence de cybersécurité américaine CISA la semaine dernière :&nbsp;&nbsp;</span></p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:144px;"><div><div><p><span>CVE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span>Liens&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:144px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2008-4250" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2008-4250</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Microsoft&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>Windows&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span></span><a href="https://learn.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2008-4250" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://learn.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067, https://nvd.nist.gov/vuln/detail/CVE-2008-4250</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:144px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2009-1537" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2009-1537</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Microsoft&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>DirectX&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span></span><a href="https://learn.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-028%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2009-1537" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://learn.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-028, https://nvd.nist.gov/vuln/detail/CVE-2009-1537</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:144px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2009-3459" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2009-3459</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Adobe&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>Acrobat and Reader&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2009-3459%2C%20https%3A//web.archive.org/web/20120324170253/http%3A//www.adobe.com/support/security/bulletins/apsb09-15.html#:%7E:text=CVE%2D2009%2D3459).-%2CNOTE%3A%2C-There%20are%20reports%2C%20https://www.cisa.gov/news-events/alerts/2009/10/13/adobe-reader-and-acrobat-vulnerabilities" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://nvd.nist.gov/vuln/detail/CVE-2009-3459, https://web.archive.org/web/20120324170253/http://www.adobe.com/support/security/bulletins/apsb09-15.html#:~:text=CVE%2D2009%2D3459).-,NOTE%3A,-There%20are%20reports, https://www.cisa.gov/news-events/alerts/2009/10/13/adobe-reader-and-acrobat-vulnerabilities</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:144px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2010-0249" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2010-0249</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Microsoft&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>Internet Explorer&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span></span><a href="https://learn.microsoft.com/en-us/security-updates/SecurityAdvisories/2010/979352%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2010-0249" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://learn.microsoft.com/en-us/security-updates/SecurityAdvisories/2010/979352, https://nvd.nist.gov/vuln/detail/CVE-2010-0249</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:144px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2010-0806" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2010-0806</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Microsoft&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>Internet Explorer&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span></span><a href="https://learn.microsoft.com/en-us/security-updates/securityadvisories/2010/981374%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2010-0806" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://learn.microsoft.com/en-us/security-updates/securityadvisories/2010/981374, https://nvd.nist.gov/vuln/detail/CVE-2010-0806</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:144px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-34291" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2025-34291</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Langflow&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>Langflow&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span></span><a href="https://github.com/langflow-ai/langflow%2C%20https%3A//github.com/langflow-ai/langflow/issues/11465#event-25774545848%2C%20https://github.com/langflow-ai/langflow/releases/tag/v1.9.3%2C%20https://nvd.nist.gov/vuln/detail/CVE-2025-34291" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://github.com/langflow-ai/langflow, https://github.com/langflow-ai/langflow/issues/11465#event-25774545848, https://github.com/langflow-ai/langflow/releases/tag/v1.9.3, https://nvd.nist.gov/vuln/detail/CVE-2025-34291</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:144px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-34926" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-34926</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Trend Micro&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>Apex One&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-34926%2C%20https%3A//success.trendmicro.com/en-US/solution/KA-0023430" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://nvd.nist.gov/vuln/detail/CVE-2026-34926, https://success.trendmicro.com/en-US/solution/KA-0023430</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:144px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-41091" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-41091</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Microsoft&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>Defender&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span></span><a href="https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-41091%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-41091" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-41091, https://nvd.nist.gov/vuln/detail/CVE-2026-41091</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:144px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-45498" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-45498</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:146.25px;"><div><div><p><span>Microsoft&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:233.188px;"><div><div><p><span>Defender&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:682.812px;"><div><div><p><span></span><a href="https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45498%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-45498" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2026-45498, https://nvd.nist.gov/vuln/detail/CVE-2026-45498</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span style="font-weight:bold;"><span>Vulnérabilités de composants de systèmes industriels :&nbsp;</span></span><span>&nbsp;</span></p></div>
<div><p><br></p></div><div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>Critical&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>High&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>Medium&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>Low&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>Total&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>2&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>4&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Kieback &amp; Peter&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>DDC4002&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>ZKTeco&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>SSC335-GC2063-Face-0b77 Solution&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>&nbsp;</span></p></div><div><p><span>Liste complète triée par CVSSv3 Score :&nbsp;</span></p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CVE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CVSSv3 Score&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CVSSv3 Severity&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>EPSS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>Percentile&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CWE&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8602" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-8602</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>9.1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CRITICAL&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.081%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>23.657%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/306.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-306</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>ZKTeco&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>SSC335-GC2063-Face-0b77 Solution&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8598" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-8598</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>9.1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CRITICAL&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.050%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>15.630%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/288.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-288</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8603" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-8603</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>8.8&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.590%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>69.420%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/78.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-78</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8604" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-8604</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>8.8&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.019%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>5.249%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/352.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-352</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>ScadaBR&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8605" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-8605</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>6.1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>MEDIUM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.041%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>12.391%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/798.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-798</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Kieback &amp; Peter&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>DDC4002&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4293" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-4293</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>5.3&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>MEDIUM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.030%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>8.810%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/79.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-79</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>-----&nbsp;<br></span><span style="font-weight:bold;">Actualité Fortress Cybersecurity&nbsp;</span><span><span>&nbsp;</span><br> &nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-d-avril-2026" target="_blank" rel="noreferrer noopener"><span>- Bilan des Known Exploited Vulnerabilities du mois d'avril 2026</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/nouveau-guide-de-classification-des-actifs-industriels-publi%C3%A9-par-l-anssi" target="_blank" rel="noreferrer noopener"><span>- Nouveau guide de classification des actifs industriels publié par l'ANSSI</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/calendrier-2026-de-nos-webinaires-d%C3%A9di%C3%A9s-%C3%A0-la-cybers%C3%A9curit%C3%A9-des-installations-industrielles" target="_blank" rel="noreferrer noopener"><span>Nos prochains webinaires dédiés à la cybersécurité des installations industrielles :</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 4 juin 2026 : Gérer les incidents cyber en environnement industriel​, inscription </span><a href="https://events.teams.microsoft.com/event/c5644e79-7926-4075-bc80-8de9ad9833cf%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 2 juillet 2026 : Gérer les vulnérabilités en environnement industriel​​, inscription </span><a href="https://events.teams.microsoft.com/event/e2cac6c8-9560-48d5-8736-25da3b084041%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 septembre 2026 : Mettre en place le plan de contrôle cyber de ses installations industriels​​, inscription </span><a href="https://events.teams.microsoft.com/event/1960fe77-9d3a-4f18-a7a9-70528a5e7151%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 1 octobre 2026 : Sécuriser les accès à distance et de télémaintenance des actifs industriels, inscription </span><a href="https://events.teams.microsoft.com/event/c9ba377e-5c27-4e4d-bffb-8ddc3a7856be%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 5 novembre 2026 : Protéger les endpoints dans les zones industrielles, inscription </span><a href="https://events.teams.microsoft.com/event/f079bb46-c1ad-4274-b0d3-e32db7d3b4fc%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 décembre 2026 : Protéger les réseaux mobiles privés 5G, inscription </span><a href="https://events.teams.microsoft.com/event/56995822-3f07-404d-b2dc-f6fb7727ad50%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
</div><br><p></p></div></div><p style="font-weight:bold;"></p><p></p><div><p></p></div>
<p></p><p><br></p></div></span></span><p></p><div><p></p></div></div></div></div>
</div></div></div></div>]]></content:encoded><pubDate>Sun, 24 May 2026 15:56:30 +0200</pubDate></item><item><title><![CDATA[Bulletin cybersec indus hebdo 26.S20]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bulletin-cybersec-indus-hebdo-26.s20</link><description><![CDATA[<img align="left" hspace="5" src="https://www.fortress-cybersecurity.fr/files/manufacturing.jpg"/> l’IA comme accélérateur d’une intrusion IT vers l’OT dans le secteur de l’eau au Mexique Dragos analyse une compromission visant l’environnement IT d ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_OIHw3lK1R0uMD1sBLIHwRg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_1ydeJqOcTyiM7nuV2rOklQ" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"> [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } @media (max-width: 767px) { [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } @media all and (min-width: 768px) and (max-width:991px){ [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } </style><div data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA" data-element-type="heading" class="zpelement zpelem-heading "><style> [data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA"].zpelem-heading { border-radius:1px; } </style><h2 class="zpheading zpheading-align-center zpheading-align-mobile-center zpheading-align-tablet-center " data-editor="true">Les news relatives à la cybersécurité des installations industrielles</h2></div>
<div data-element-id="elm_sH2l7vQ8h3FUwPV13-l42A" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><span><span><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p><span><span></span></span></p><p></p><div><p style="font-weight:bold;"><strong>l’IA comme accélérateur d’une intrusion IT vers l’OT dans le secteur de l’eau au Mexique</strong></p><p>Dragos analyse une compromission visant l’environnement IT d’un service municipal d’eau et d’assainissement à Monterrey, avec une tentative de progression vers des systèmes OT. L’attaquant aurait utilisé des outils d’IA commerciaux pour accélérer la reconnaissance, cartographier l’environnement, développer des scripts malveillants et identifier une interface SCADA vNode comme cible sensible. L’IA n’a pas permis une compromission OT mais&nbsp;les implications sont doubles. Premièrement, les organisations qui ne mettent pas en œuvre les contrôles de sécurité de base restent exposées à un risque accru, car l’IA peut rapidement mettre en œuvre des techniques connues. Deuxièmement, à mesure que les modèles d’IA continuent de s’améliorer, les stratégies de sécurité OT axées uniquement sur la prévention deviendront moins efficaces, les organisations ont également besoin de capacités de visibilité, de détection et de réponse sur le réseau OT pour identifier les activités malveillantes lorsque les contrôles préventifs échouent.</p><p><a href="https://5943619.hs-sites.com/hubfs/116-Whitepapers/dragos-2026-ai-mexico-water-attack-intel-brief%20%281%29.pdf">https://5943619.hs-sites.com/hubfs/116-Whitepapers/dragos-2026-ai-mexico-water-attack-intel-brief%20(1).pdf</a></p></div><br><p></p><p></p><div><div><p><strong>Un écosystème ransomware qui se reconcentre</strong><br></p><p>Check Point Research montre qu’après une phase de fragmentation, l’écosystème ransomware se reconcentre autour de quelques groupes dominants : au T1 2026, le top 10 représente 71 % des victimes publiées sur les sites de fuite de Qilin etAkira, The Gentlemen et LockBit concentrent à eux seuls 41 % des victimes. Cette consolidation ne marque pas un simple retour à l’ancien modèle : les groupes qui émergent sont plus techniques, plus diversifiés géographiquement et plus résistants aux opérations de démantèlement. Dans le même temps, le modèle économique du ransomware montre des signes d’essoufflement, avec des taux de paiement historiquement bas et des campagnes de vol massif de données de moins en moins rentables. L’écart entre le nombre élevé de victimes revendiquées, 2 122 au T1 2026, et la baisse de la monétisation par victime pourrait accélérer cette concentration en écartant les opérateurs incapables d’atteindre une taille ou un niveau de sophistication suffisants.<br></p></div>
<p><a href="https://research.checkpoint.com/2026/the-state-of-ransomware-q1-2026/">https://research.checkpoint.com/2026/the-state-of-ransomware-q1-2026/</a></p></div><br><p></p><p></p><div><div><section><div><p><strong>Un partenariat secteur public-privé pour renforcer la résilience nationale sur le secteur <strong>OT/IoT au&nbsp;<span>Émirats arabes unis</span></strong></strong></p></div>
</section></div><div><p>Le Cybersecurity Council des Émirats arabes unis et Nozomi Networks annoncent une collaboration stratégique pour mieux protéger les infrastructures critiques, les environnements OT et IoT du pays. L’accord prévoit notamment la création d’un centre d’innovation et d’excellence à Abu Dhabi, dédié à la cybersécurité industrielle, à la R&amp;D et au soutien des opérateurs critiques. Les secteurs visés sont l’énergie, les utilities, le transport, l’industrie manufacturière et les smart infrastructures. Cette article montre que la cybersécurité OT et IoT est un enjeu de sécurité nationale.</p></div>
<div><p><a href="https://www.nozominetworks.com/press-release/uae-cybersecurity-council-and-nozomi-networks-forge-alliance-to-advance-national-cyber-capabilities-and-national-resilience">https://www.nozominetworks.com/press-release/uae-cybersecurity-council-and-nozomi-networks-forge-alliance-to-advance-national-cyber-capabilities-and-national-resilience</a></p></div>
</div><p></p><p><strong><span><strong><br></strong></span></strong></p><p><strong><span><strong>Sur le volet offreurs de solutions (nouvelle section)</strong></span><br></strong></p><p><strong>Nozomi Networks arrive sur Google Cloud Marketplace</strong></p><p>Nozomi Networks, éditeur de sondes NDR spécialisées dans les environnements industriels, annonce la disponibilité de sa plateforme sur Google Cloud Marketplace. Les clients peuvent désormais déployer Guardian et la Central Management Console directement dans leur propre tenant Google Cloud. Cette mise à disposition permet d’utiliser Nozomi dans une architecture cloud Google, sans changer les capacités attendues : visibilité réseau, détection de menaces, supervision des environnements industriels, etc.</p><p><span><a href="https://www.nozominetworks.com/press-release/nozomi-networks-platform-now-available-on-google-cloud-marketplace" target="_blank">https://www.nozominetworks.com/press-release/nozomi-networks-platform-now-available-on-google-cloud-marketplace</a><span>&nbsp;</span></span><br></p><p><br></p><p></p><div><div><p><span style="font-weight:bold;"><span>Vulnerability Corner :</span></span><span>&nbsp;</span></p></div>
<div><p><span>Liste des Known Exploited Vulnerabilities (KEV) publiés par l'agence de cybersécurité américaine CISA la semaine dernière :&nbsp;&nbsp;</span></p></div>
</div><p></p><table border="1"><tbody><tr><td style="vertical-align:top;width:170px;"><div><p><strong>CVE&nbsp;</strong></p></div></td><td style="vertical-align:top;width:97.3906px;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:164.906px;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:863.094px;"><div><p><strong>Liens&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:170px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-20182" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-20182</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:97.3906px;"><div><p>Cisco&nbsp;</p></div></td><td style="vertical-align:top;width:164.906px;"><div><p>Catalyst SD-WAN&nbsp;</p></div></td><td style="vertical-align:top;width:863.094px;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-20182%2C%20https%3A//sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-rpa2-v69WY2SW%2C%20https%3A//www.cisa.gov/news-events/directives/ed-26-03-mitigate-vulnerabilities-cisco-sd-wan-systems%2C%20https%3A//www.cisa.gov/news-events/directives/supplemental-direction-ed-26-03-hunt-and-hardening-guidance-cisco-sd-wan-systems" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">https://nvd.nist.gov/vuln/detail/CVE-2026-20182, https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-rpa2-v69WY2SW, https://www.cisa.gov/news-events/directives/ed-26-03-mitigate-vulnerabilities-cisco-sd-wan-systems, https://www.cisa.gov/news-events/directives/supplemental-direction-ed-26-03-hunt-and-hardening-guidance-cisco-sd-wan-systems</span></a>&nbsp;</p></div></td></tr></tbody></table><div><div></div>
<div><p><span>&nbsp;</span></p></div><div><p><span style="font-weight:bold;"><span>Vulnérabilités de composants de systèmes industriels :&nbsp;</span></span><span>&nbsp;</span></p></div>
<div><p><br></p></div><div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:593.5px;"><div><div><p><span>Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:120.5px;"><div><div><p><span>Critical&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:143.281px;"><div><div><p><span>High&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.312px;"><div><div><p><span>Medium&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.062px;"><div><div><p><span>Low&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>Total&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Siemens&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:593.5px;" class="zp-selected-cell"><div><div><p><span>gWAP,IE/PB LINK HA (6GK1411-5BB00),Opcenter RDnL,ROS#,RUGGEDCOM ROX MX5000,SENTRON 7KT PAC1261 Data Manager,SIMATIC CN 4100,SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0),SIMATIC HMI MTP1000 Unified Comfort Panel (6AV2128-3KB06-0AX1),Simcenter Femap,SIPROTEC 5 6MD84 (CP300),Solid Edge,Teamcenter V2312&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:120.5px;"><div><div><p><span>23&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:143.281px;"><div><div><p><span>77&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.312px;"><div><div><p><span>122&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.062px;"><div><div><p><span>3&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>225&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Subnet Solutions Inc.&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:593.5px;"><div><div><p><span>PowerSYSTEM Center 2020&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:120.5px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:143.281px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.312px;"><div><div><p><span>3&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.062px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>4&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Fuji Electric&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:593.5px;"><div><div><p><span>Tellus&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:120.5px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:143.281px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.312px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.062px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Universal Robots&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:593.5px;"><div><div><p><span>Polyscope 5&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:120.5px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:143.281px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.312px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:119.062px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:111.406px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>&nbsp;</span>Liste complète triée par CVSSv3.1 Score :</p><p><strong>Au regard du nombre, seules les vulnérabilités Critical et High sont listées.</strong></p></div>
<div><table border="1"><tbody><tr><td style="vertical-align:top;width:15%;"><div><p><strong>Vendor&nbsp;</strong></p></div></td><td style="vertical-align:top;width:15%;"><div><p><strong>Product&nbsp;</strong></p></div></td><td style="vertical-align:top;width:15%;"><div><p><strong>CVE&nbsp;</strong></p></div></td><td style="vertical-align:top;width:15%;"><div><p><strong>CVSSv3 Score&nbsp;</strong></p></div></td><td style="vertical-align:top;width:15%;"><div><p><strong>CVSSv3 Severity&nbsp;</strong></p></div></td><td style="vertical-align:top;width:15%;"><div><p><strong>EPSS&nbsp;</strong></p></div></td><td style="vertical-align:top;width:15%;"><div><p><strong>CWE&nbsp;</strong></p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14192" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14192</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.379%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/191.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-191</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14193" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14193</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.500%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14194" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14194</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.500%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14195" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14195</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.267%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14196" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14196</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.419%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14198" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14198</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.500%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14199" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14199</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.646%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/191.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-191</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14200" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14200</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.570%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14201" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14201</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.570%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14202" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14202</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.570%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14203" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14203</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.570%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14204" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14204</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.570%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2022-34835" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2022-34835</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.419%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Universal Robots&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>Polyscope 5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8153" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-8153</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>1.532%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/78.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-78</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-55754" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-55754</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.6&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.120%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/150.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-150</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-14197" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-14197</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.587%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/125.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-125</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SENTRON 7KT PAC1261 Data Manager&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-22871" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-22871</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.294%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/444.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-444</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-40949" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-40949</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.173%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/78.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-78</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-49794" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-49794</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.445%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/825.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-825</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-49796" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-49796</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>1.777%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/125.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-125</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-22924" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-22924</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.039%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/306.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-306</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-25786" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-25786</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.044%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/79.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-79</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-25787" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-25787</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.044%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/79.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-79</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>ROS#&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-41551" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-41551</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>9.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>CRITICAL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.048%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/23.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-23</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Subnet Solutions Inc.&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>PowerSYSTEM Center 2020&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-26289" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-26289</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>8.2&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.021%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/863.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-863</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-47219" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-47219</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>8.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.145%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/125.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-125</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>gWAP&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-40175" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-40175</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>8.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.030%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/113.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-113</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Fuji Electric&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>Tellus&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-8108" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-8108</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.005%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/749.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-749</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-13104" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-13104</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.254%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/191.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-191</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-13106" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-13106</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.922%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2020-10648" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2020-10648</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.123%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2022-30790" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2022-30790</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.249%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>Simcenter Femap&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-12659" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-12659</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.016%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/122.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-122</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38685" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38685</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.017%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38702" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38702</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.014%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38708" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38708</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.021%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/416.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-416</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38724" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38724</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.021%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/416.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-416</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39689" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39689</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/416.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-416</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39783" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39783</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39841" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39841</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39864" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39864</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39866" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39866</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.027%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/416.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-416</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-6020" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-6020</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.072%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/22.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-22</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-7425" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-7425</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.192%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/416.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-416</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-7425" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-7425</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.192%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/416.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-416</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>Solid Edge&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-44411" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-44411</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.015%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/824.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-824</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>Solid Edge&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-44412" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-44412</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.8&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.015%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/121.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-121</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2022-2347" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2022-2347</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.7&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.038%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/122.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-122</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC HMI MTP1000 Unified Comfort Panel (6AV2128-3KB06-0AX1)&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-27662" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-27662</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.7&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.025%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/1188.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-1188</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39718" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39718</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.6&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.019%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>IE/PB LINK HA (6GK1411-5BB00)&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-40833" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-40833</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.040%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/476.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-476</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-40947" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-40947</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.229%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/78.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-78</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-48989" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-48989</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.983%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/404.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-404</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-53066" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-53066</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.066%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/200.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-200</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-55752" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-55752</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.143%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/23.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-23</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-6021" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-6021</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>2.116%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-9230" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-9230</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.037%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/125.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-125</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-21945" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-21945</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.069%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/400.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-400</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-22925" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-22925</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.040%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/770.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-770</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-2673" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-2673</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.022%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/757.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-757</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28388" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-28388</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.034%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/476.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-476</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28389" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-28389</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.085%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/476.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-476</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28390" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-28390</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.085%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/476.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-476</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-31790" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-31790</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.035%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/754.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-754</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>Teamcenter V2312&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33893" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-33893</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.5&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.038%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/798.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-798</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-21932" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-21932</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.4&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.042%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2024-58240" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2024-58240</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.3&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.023%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/416.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-416</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>Teamcenter V2312&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33862" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-33862</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.3&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.032%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/79.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-79</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2019-13103" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2019-13103</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.052%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/674.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-674</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2024-57256" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2024-57256</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.061%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/190.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-190</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>RUGGEDCOM ROX MX5000&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2024-57258" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2024-57258</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.041%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/190.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-190</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38729" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38729</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/125.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-125</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39683" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39683</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/125.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-125</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39702" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39702</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.025%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/208.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-208</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39757" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39757</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39794" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39794</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39860" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39860</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC Drive Controller CPU 1504D TF (6ES7615-4DF10-0AB0)&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-25789" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-25789</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.138%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/79.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-79</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>Opcenter RDnL&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-27446" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-27446</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.1&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.156%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/306.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-306</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38693" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38693</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.017%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38695" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38695</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.017%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/476.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-476</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38697" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38697</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.014%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38698" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38698</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.014%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38700" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38700</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.017%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38713" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38713</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.014%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38714" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38714</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.014%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-38725" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-38725</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39682" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39682</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.009%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39694" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39694</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.019%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/1285.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-1285</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39743" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39743</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.014%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39766" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39766</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39806" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39806</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.019%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39817" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39817</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39823" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39823</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.019%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39824" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39824</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39825" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39825</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.015%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39828" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39828</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.014%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39838" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39838</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.019%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39843" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39843</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.015%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39857" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39857</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.019%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-39865" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2025-39865</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.018%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/20.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-20</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28387" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-28387</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.043%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/416.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-416</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;" class="zp-selected-cell"><div><p>Siemens&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>SIMATIC CN 4100&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-31789" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CVE-2026-31789</span></a>&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>7.0&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>HIGH&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p>0.006%&nbsp;</p></div></td><td style="vertical-align:top;width:15%;"><div><p><a href="https://cwe.mitre.org/data/definitions/787.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;">CWE-787</span></a>&nbsp;</p></div></td></tr><tr><td style="vertical-align:top;width:15%;"><p><br></p></td><td style="vertical-align:top;width:15%;"></td><td style="vertical-align:top;width:15%;"></td><td style="vertical-align:top;width:15%;"></td><td style="vertical-align:top;width:15%;"></td><td style="vertical-align:top;width:15%;"></td><td style="vertical-align:top;width:15%;"><br></td></tr></tbody></table></div>
<div><p><span>&nbsp;</span></p></div><div><p><span>-----&nbsp;<br></span><span style="font-weight:bold;">Actualité Fortress Cybersecurity&nbsp;</span><span><span>&nbsp;</span><br> &nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-d-avril-2026" target="_blank" rel="noreferrer noopener"><span>- Bilan des Known Exploited Vulnerabilities du mois d'avril 2026</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/nouveau-guide-de-classification-des-actifs-industriels-publi%C3%A9-par-l-anssi" target="_blank" rel="noreferrer noopener"><span>- Nouveau guide de classification des actifs industriels publié par l'ANSSI</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/calendrier-2026-de-nos-webinaires-d%C3%A9di%C3%A9s-%C3%A0-la-cybers%C3%A9curit%C3%A9-des-installations-industrielles" target="_blank" rel="noreferrer noopener"><span>Nos prochains webinaires dédiés à la cybersécurité des installations industrielles :</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 4 juin 2026 : Gérer les incidents cyber en environnement industriel​, inscription </span><a href="https://events.teams.microsoft.com/event/c5644e79-7926-4075-bc80-8de9ad9833cf%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 2 juillet 2026 : Gérer les vulnérabilités en environnement industriel​​, inscription </span><a href="https://events.teams.microsoft.com/event/e2cac6c8-9560-48d5-8736-25da3b084041%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 septembre 2026 : Mettre en place le plan de contrôle cyber de ses installations industriels​​, inscription </span><a href="https://events.teams.microsoft.com/event/1960fe77-9d3a-4f18-a7a9-70528a5e7151%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 1 octobre 2026 : Sécuriser les accès à distance et de télémaintenance des actifs industriels, inscription </span><a href="https://events.teams.microsoft.com/event/c9ba377e-5c27-4e4d-bffb-8ddc3a7856be%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 5 novembre 2026 : Protéger les endpoints dans les zones industrielles, inscription </span><a href="https://events.teams.microsoft.com/event/f079bb46-c1ad-4274-b0d3-e32db7d3b4fc%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 décembre 2026 : Protéger les réseaux mobiles privés 5G, inscription </span><a href="https://events.teams.microsoft.com/event/56995822-3f07-404d-b2dc-f6fb7727ad50%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
</div><p><br></p><p><br></p></span></span><p></p><div><p></p></div></div></div></div>
</div></div></div></div>]]></content:encoded><pubDate>Sun, 17 May 2026 21:05:46 +0200</pubDate></item><item><title><![CDATA[Bulletin cybersec indus hebdo 26.S19]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bulletin-cybersec-indus-hebdo-26.s19</link><description><![CDATA[<img align="left" hspace="5" src="https://www.fortress-cybersecurity.fr/files/manufacturing.jpg"/> Lotus Wiper : une nouvelle menace visant le secteur de l'énergie au Venezuela Kaspersky analyse Lotus Wiper, un malware destructeur ciblant le secteu ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_OIHw3lK1R0uMD1sBLIHwRg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_1ydeJqOcTyiM7nuV2rOklQ" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"> [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } @media (max-width: 767px) { [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } @media all and (min-width: 768px) and (max-width:991px){ [data-element-id="elm_mz-pWBAHSAqarVeQFmIgeA"].zpelem-col{ border-radius:1px; } } </style><div data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA" data-element-type="heading" class="zpelement zpelem-heading "><style> [data-element-id="elm_M7cAp-bDTcCbA9gTt6JiPA"].zpelem-heading { border-radius:1px; } </style><h2 class="zpheading zpheading-align-center zpheading-align-mobile-center zpheading-align-tablet-center " data-editor="true">Les news relatives à la cybersécurité des installations industrielles</h2></div>
<div data-element-id="elm_sH2l7vQ8h3FUwPV13-l42A" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><span><span><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><div><p style="font-weight:bold;"></p><b></b></div>
</div></div><p><strong><span>Lotus Wiper : une nouvelle menace visant le secteur de l'énergie au Venezuela</span></strong><br></p><p><span><span><span>Kaspersky analyse Lotus Wiper, un malware destructeur ciblant le secteur énergie/utilities au Venezuela fin 2025, dans un contexte de tensions géopolitiques dans la région des Caraïbes. À la différence d’un ransomware, l’attaque ne vise pas l’extorsion mais l’effacement pur des systèmes : modification aléatoire des mots de passe utilisateurs, désactivation des comptes locaux et des interfaces réseau, suppression des points de restauration, écrasement des disques, effacement des journaux et suppression massive de fichiers. À l’image de NotPetya ou d’HermeticWiper, Lotus Wiper rappelle que toutes les attaques destructrices ne poursuivent pas un objectif financier : certaines s’inscrivent dans des logiques géopolitiques où la finalité est la destruction des systèmes et la perturbation durable de l’activité.</span></span><br></span></p><p><a href="https://securelist.com/tr/lotus-wiper/119472/" title="https://securelist.com/tr/lotus-wiper/119472/" rel="">https://securelist.com/tr/lotus-wiper/119472/</a><br></p><p><span><br></span></p><p><strong><span>NIST/NCCoE : mieux voir l’OT pour mieux le protéger</span></strong><br></p><p><span><span><span></span></span></span></p><div><p></p></div></span></span><p></p><div><p>Dans cet article de GovConWire, la nouvelle initiative du NIST/NCCoE, un organisme américain de référence en cybersécurité et son centre chargé de produire des guides pratiques, met l'accent sur la visibilité dans les environnements industriels. L’idée est simple : dans beaucoup de ces environnements, on ne sait pas toujours précisément quels équipements sont présents, comment ils communiquent, ni si une activité anormale est en cours. L’article montre que ce manque de visibilité n’est pas seulement un problème technique. Il peut avoir des impacts directs sur la production, la sécurité des sites, la conformité et la résilience des infrastructures critiques.</p></div>
<p><a href="https://www.govconwire.com/articles/chuck-brooks-govcon-expert-nist-cybersecurity-visibility-project" title="https://www.govconwire.com/articles/chuck-brooks-govcon-expert-nist-cybersecurity-visibility-project" rel="">https://www.govconwire.com/articles/chuck-brooks-govcon-expert-nist-cybersecurity-visibility-project</a><br></p><p></p><p><br></p><p><strong><span>Mythos / Project Glasswing : les environnements industriels encore trop peu intégrés</span></strong></p><p>Dans cet article de Nextgov/FCW, on parle de Mythos, le modèle cyber d’Anthropic, utilisé dans Project Glasswing pour aider à identifier et corriger des vulnérabilités logicielles.<span><span></span></span></p><div><p>L’article explique que plusieurs acteurs du monde industriel estiment avoir été écartés au départ, alors que leurs infrastructures sont directement exposées à ce type de risque. Il rappelle aussi que corriger une faille sur un site industriel est souvent plus complexe que dans un environnement informatique classique : certains équipements sont anciens, difficiles à arrêter, et les mises à jour doivent être priorisées avec attention.</p></div>
<p></p><p><a href="https://www.nextgov.com/cybersecurity/2026/05/operational-technology-providers-are-feeling-annoyance-exclusion-anthropics-mythos-rollout-sources-say/413309/" title="https://www.nextgov.com/cybersecurity/2026/05/operational-technology-providers-are-feeling-annoyance-exclusion-anthropics-mythos-rollout-sources-say/413309/" rel="">https://www.nextgov.com/cybersecurity/2026/05/operational-technology-providers-are-feeling-annoyance-exclusion-anthropics-mythos-rollout-sources-say/413309/</a><br></p><p><br></p><div><p></p><div><div><p><span style="font-weight:bold;"><span>Vulnerability Corner :</span></span><span>&nbsp;</span></p></div>
<div><p><span>Liste des Known Exploited Vulnerabilities (KEV) publiés par l'agence de cybersécurité américaine CISA la semaine dernière :&nbsp;&nbsp;</span></p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:192px;" class="zp-selected-cell"><div><div><p><span style="font-weight:bold;">CVE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:199.25px;"><div><div><p><span style="font-weight:bold;">Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:277.047px;"><div><div><p><span style="font-weight:bold;">Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:608.953px;"><div><div><p><span style="font-weight:bold;">Liens&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:192px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-0300" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-0300</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:199.25px;"><div><div><p><span>Palo Alto Networks&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:277.047px;"><div><div><p><span>PAN-OS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:608.953px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-0300%2C%20https%3A//security.paloaltonetworks.com/CVE-2026-0300" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://nvd.nist.gov/vuln/detail/CVE-2026-0300, https://security.paloaltonetworks.com/CVE-2026-0300</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:192px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42208" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-42208</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:199.25px;"><div><div><p><span>BerriAI&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:277.047px;"><div><div><p><span>LiteLLM&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:608.953px;"><div><div><p><span></span><a href="https://github.com/BerriAI/litellm/security/advisories/GHSA-r75f-5x8p-qvmc%2C%20https%3A//nvd.nist.gov/vuln/detail/CVE-2026-42208" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://github.com/BerriAI/litellm/security/advisories/GHSA-r75f-5x8p-qvmc, https://nvd.nist.gov/vuln/detail/CVE-2026-42208</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:192px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-6973" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-6973</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:199.25px;"><div><div><p><span>Ivanti&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:277.047px;"><div><div><p><span>Endpoint Manager Mobile (EPMM)&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:608.953px;"><div><div><p><span></span><a href="https://hub.ivanti.com/s/article/May-2026-Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-Multiple-CVEs?language=en_US%2C%20https%3A%2F%2Fnvd.nist.gov%2Fvuln%2Fdetail%2FCVE-2026-6973" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>https://hub.ivanti.com/s/article/May-2026-Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-Multiple-CVEs?language=en_US, https://nvd.nist.gov/vuln/detail/CVE-2026-6973</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span style="font-weight:bold;"><span>Vulnérabilités de composants de systèmes industriels :&nbsp;</span></span><span>&nbsp;</span></p></div>
<div><p><span>Source : ICS Advisory Project dashboard https://lookerstudio.google.com/u/0/reporting/f0d99ae7-c75b-4fdd-9951-8ecada5aee5e/page/G1klC&nbsp;&nbsp;</span></p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Critical&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">High&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Medium&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Low&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span style="font-weight:bold;">Total&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;"><div><div><p><span>Johnson Controls Inc.&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>CEM AC2000&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:82px;" class="zp-selected-cell"><div><div><p><span>MAXHUB&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>MAXHUB Pivot client application&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>0&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:82px;"><div><div><p><span>1&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>&nbsp;</span></p></div><div><p><span>Liste complète triée par CVSSv3 Score :&nbsp;</span></p></div>
<div><div><table border="1"><tbody><tr><td style="vertical-align:top;width:72px;" class="zp-selected-cell"><div><div><p><span style="font-weight:bold;">Vendor&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">Product&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CVE&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CVSSv3 Score&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CVSSv3 Severity&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">EPSS&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">Percentile&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span style="font-weight:bold;">CWE&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>Johnson Controls Inc.&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>CEM AC2000&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-21661" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-21661</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>8.7&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>0.014%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>2.463%&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/427.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-427</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr><tr><td style="vertical-align:top;width:72px;"><div><div><p><span>MAXHUB&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>MAXHUB Pivot client application&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-6411" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CVE-2026-6411</span></span></a><span>&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>7.3&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>HIGH&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span>N/A&nbsp;</span></p></div>
</div></td><td style="vertical-align:top;width:72px;"><div><div><p><span></span><a href="https://cwe.mitre.org/data/definitions/327.html" target="_blank" rel="noreferrer noopener"><span style="text-decoration:underline;"><span>CWE-327</span></span></a><span>&nbsp;</span></p></div>
</div></td></tr></tbody></table></div></div><div><p><span>&nbsp;</span></p></div>
<div><p><span>-----&nbsp;<br></span><span style="font-weight:bold;">Actualité Fortress Cybersecurity&nbsp;</span><span><span>&nbsp;</span><br> &nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-d-avril-2026" target="_blank" rel="noreferrer noopener"><span>- Bilan des Known Exploited Vulnerabilities du mois d'avril 2026</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/nouveau-guide-de-classification-des-actifs-industriels-publi%C3%A9-par-l-anssi" target="_blank" rel="noreferrer noopener"><span>- Nouveau guide de classification des actifs industriels publié par l'ANSSI</span></a><span>&nbsp;</span></p></div>
<div><p><a href="https://www.fortress-cybersecurity.fr/blogs/post/calendrier-2026-de-nos-webinaires-d%C3%A9di%C3%A9s-%C3%A0-la-cybers%C3%A9curit%C3%A9-des-installations-industrielles" target="_blank" rel="noreferrer noopener"><span>Nos prochains webinaires dédiés à la cybersécurité des installations industrielles :</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 4 juin 2026 : Gérer les incidents cyber en environnement industriel​, inscription </span><a href="https://events.teams.microsoft.com/event/c5644e79-7926-4075-bc80-8de9ad9833cf%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 2 juillet 2026 : Gérer les vulnérabilités en environnement industriel​​, inscription </span><a href="https://events.teams.microsoft.com/event/e2cac6c8-9560-48d5-8736-25da3b084041%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 septembre 2026 : Mettre en place le plan de contrôle cyber de ses installations industriels​​, inscription </span><a href="https://events.teams.microsoft.com/event/1960fe77-9d3a-4f18-a7a9-70528a5e7151%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 1 octobre 2026 : Sécuriser les accès à distance et de télémaintenance des actifs industriels, inscription </span><a href="https://events.teams.microsoft.com/event/c9ba377e-5c27-4e4d-bffb-8ddc3a7856be%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 5 novembre 2026 : Protéger les endpoints dans les zones industrielles, inscription </span><a href="https://events.teams.microsoft.com/event/f079bb46-c1ad-4274-b0d3-e32db7d3b4fc%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
<div><p><span>- 3 décembre 2026 : Protéger les réseaux mobiles privés 5G, inscription </span><a href="https://events.teams.microsoft.com/event/56995822-3f07-404d-b2dc-f6fb7727ad50%40a43cc6b0-e19e-4635-966f-1f00bc18b9ac" target="_blank" rel="noreferrer noopener"><span>lien</span></a><span>&nbsp;</span></p></div>
</div><br><p></p></div></div></div></div></div></div></div></div>]]></content:encoded><pubDate>Sun, 10 May 2026 22:23:56 +0200</pubDate></item><item><title><![CDATA[Bilan des Known Exploited Vulnerabilities du mois d'avril 2026]]></title><link>https://www.fortress-cybersecurity.fr/blogs/post/bilan-des-known-exploited-vulnerabilities-du-mois-d-avril-2026</link><description><![CDATA[ ⚠️&nbsp; En Avril 2026, l’agence de cybersécurité américaine (CISA) a ajouté 31 vulnérabilités, identifiées comme activement exploitées dans le cadre ]]></description><content:encoded><![CDATA[<div class="zpcontent-container blogpost-container "><div data-element-id="elm_oDkejEquSTCm9QqUenH7tg" data-element-type="section" class="zpsection "><style type="text/css"></style><div class="zpcontainer-fluid zpcontainer"><div data-element-id="elm_SIKykFb_TsWa-AUxhhWfNw" data-element-type="row" class="zprow zprow-container zpalign-items- zpjustify-content- " data-equal-column=""><style type="text/css"></style><div data-element-id="elm_QFmKC9SjRNSAyKRyxg67gg" data-element-type="column" class="zpelem-col zpcol-12 zpcol-md-12 zpcol-sm-12 zpalign-self- "><style type="text/css"></style><div data-element-id="elm_7SNFdUZukMdrsRG_8B6vOg" data-element-type="text" class="zpelement zpelem-text "><style></style><div class="zptext zptext-align-left zptext-align-mobile-left zptext-align-tablet-left " data-editor="true"><p></p><p></p><p><span><span></span></span></p><p><span><span></span></span></p><p></p><div><p></p><div><p></p><div><div></div>
</div><div><div> ⚠️&nbsp; En Avril 2026, l’agence de cybersécurité américaine (CISA) a ajouté 31 vulnérabilités, identifiées comme activement exploitées dans le cadre de cyberattaques, dans sa liste des Known Exploited Vulnerabilities (KEV), le nombre de KEV est en hausse +5 par rapport au mois précédent. </div>
<div><br></div><div> Après plusieurs mois de stabilisation, voire de basse, la tendance générale est en hausse. </div><span><img src="https://www.fortress-cybersecurity.fr/Tue%20May%2005%202026.png" alt=""></span><br><div><br></div>
<div><p>☣️&nbsp;3 x KEV exploitées par un ransomware sur les produits des éditeurs suivants ; JetBrains, Microsoft, PaperCut</p><p><br></p><p>🔥 Editeurs concernés par les KEV : Adobe, Apache, Cisco, ConnectWise, D-Link, Fortinet, Ivanti, Kentico, Marimo, Microsoft, Quest, Samsung, SimpleHelp , Synacor, TrueConf, WebPros.</p></div>
<div></div><br><div> À date, 1587 KEV sont référencées. </div><div><br></div><div> 🎆 L'objectif de cette liste est de permettre aux organisations de prioriser leurs actions de patching. Afin de se rendre compte de l'importance des nouvelles entrées dans cette liste : toutes les agences de l’administration américaine doivent corriger ces vulnérabilités dans les 21 jours qui suivent l'ajout dans la liste ! </div>
<div><br></div><div> ☣️&nbsp; KEV exploitées par un ransomware : </div><div> 1 x JetBrains : </div>
<div> &nbsp; TeamCity (CVE-2024-27199) </div><div> 1 x Microsoft : </div><div> &nbsp; Exchange Server (CVE-2023-21529) </div>
<div> 1 x PaperCut : </div><div> &nbsp; NG/MF (CVE-2023-27351) </div><div><br></div>
<div> 🔥 Liste des autres KEV : </div><div> 3 × Cisco : </div><div> &nbsp; Catalyst SD-WAN Manger (CVE-2026-20122) </div>
<div> &nbsp; Catalyst SD-WAN Manager (CVE-2026-20133) </div><div> &nbsp; Catalyst SD-WAN Manager (CVE-2026-20128) </div>
<div> 2 × Adobe : </div><div> &nbsp; Acrobat (CVE-2020-9715) </div><div> &nbsp; Acrobat and Reader (CVE-2026-34621) </div>
<div> 2 × Fortinet : </div><div> &nbsp; FortiClient EMS (CVE-2026-21643) </div><div> &nbsp; FortiClient EMS (CVE-2026-35616) </div>
<div> 2 × SimpleHelp&nbsp; : </div><div> &nbsp; SimpleHelp (CVE-2024-57728) </div>
<div> &nbsp; SimpleHelp (CVE-2024-57726) </div><div> 1 × WebPros : </div><div> &nbsp; cPanel &amp; WHM and WP2 (WordPress Squared) (CVE-2026-41940) </div>
<div> 1 × ConnectWise : </div><div> &nbsp; ScreenConnect (CVE-2024-1708) </div><div> 1 × Marimo : </div>
<div> &nbsp; Marimo (CVE-2026-39987) </div><div> 1 × Samsung : </div><div> &nbsp; MagicINFO 9 Server (CVE-2024-7399) </div>
<div> 1 × D-Link : </div><div> &nbsp; DIR-823X (CVE-2025-29635) </div><div> 1 × Kentico : </div>
<div> &nbsp; Kentico Xperience (CVE-2025-2749) </div><div> 1 × Synacor : </div><div> &nbsp; Zimbra Collaboration Suite (ZCS) (CVE-2025-48700) </div>
<div> 1 × Quest : </div><div> &nbsp; KACE Systems Management Appliance (SMA) (CVE-2025-32975) </div>
<div> 1 × Apache : </div><div> &nbsp; ActiveMQ (CVE-2026-34197) </div><div> 1 × Ivanti : </div>
<div> &nbsp; Endpoint Manager Mobile (EPMM) (CVE-2026-1340) </div><div> 1 × TrueConf : </div>
<div> &nbsp; Client (CVE-2026-3502) </div><div><br></div></div><div><div></div></div>
<p></p></div><p></p></div><p></p><p></p><p></p></div></div></div></div></div></div>
</div>]]></content:encoded><pubDate>Tue, 05 May 2026 00:33:21 +0200</pubDate></item></channel></rss>