Skip to main content
RuntimeRebel
← All Articles

Tag

#SCADA

10 articles

Advertisement

VU
MEDIUM
Vulnerabilities

CVE-2026-6332: Schneider Electric EcoStruxure HVAC Source Code Disclosure

A cleartext storage vulnerability in Schneider Electric EcoStruxure Machine Expert HVAC (CVE-2026-6332) exposes sensitive source code. Update to v1.10.0.

Runtime Rebel Intel
5 min read·May 28, 2026
AI-Driven Cyberattack Fails to Breach OT Systems via SCADA Login
INFO
Threat Intel

AI-Driven Cyberattack Fails to Breach OT Systems via SCADA Login

Analysis of the first AI-driven cyberattack targeting OT. Despite advanced automation, the campaign failed to bypass standard SCADA login interfaces.

Runtime Rebel Intel
3 min read·May 7, 2026
VU
HIGH
Vulnerabilities

CVE-2025-14510: ABB Ability OPTIMAX Azure AD SSO Auth Bypass

CISA warns of CVE-2025-14510 impacting ABB Ability OPTIMAX, allowing authentication bypass on Azure AD SSO integrations. Patch immediately.

Runtime Rebel Intel
4 min read·May 1, 2026
TH
CRITICAL
Threat Intel

Iranian APT Exploits Rockwell Automation PLCs: Securing Critical Infrastructure OT Devices

Iranian-affiliated APT actors are exploiting internet-facing Rockwell Automation PLCs, disrupting US critical infrastructure. Learn how to secure your OT devices and

Runtime Rebel Intel
6 min read·Apr 7, 2026
VU
HIGH
Vulnerabilities

Mitsubishi Electric ICS Vulnerabilities Expose SQL Credentials

High-severity vulnerabilities (CVE-2025-14815, CVE-2025-14816) in Mitsubishi Electric ICS/SCADA products risk SQL credential exposure and data compromise.

Runtime Rebel Intel
4 min read·Apr 7, 2026
VU
HIGH
Vulnerabilities

CVE-2025-13957: Hard-coded Credentials in Schneider EcoStruxure DCE

Hard-coded credentials in Schneider Electric EcoStruxure Data Center Expert v9.0 and prior (CVE-2025-13957) allow information disclosure and RCE if SOCKS Proxy is

Runtime Rebel Intel
5 min read·Mar 17, 2026
VU
CRITICAL
Vulnerabilities

CVE-2026-3611: Critical Auth Bypass in Honeywell IQ4x BMS Controllers

CISA warns of a critical authentication bypass (CVE-2026-3611) in Honeywell IQ4x BMS Controllers, allowing unauthenticated attackers administrative access and potential

Runtime Rebel Intel
5 min read·Mar 10, 2026
VU
HIGH
Vulnerabilities

Honeywell IQ4 Vulnerability: Assessing Internet Exposure & Impact

A researcher claims thousands of internet-exposed Honeywell IQ4 building controllers are vulnerable. Understand the potential impact and mitigation strategies.

Runtime Rebel Intel
4 min read·Mar 3, 2026
VU
MEDIUM
Vulnerabilities

Multiple DoS/RCE Vulnerabilities in Yokogawa CENTUM VP R6, R7

CISA alerts to multiple medium-severity vulnerabilities in Yokogawa CENTUM VP R6 and R7, allowing DoS and RCE via crafted packets in critical infrastructure

Runtime Rebel Intel
4 min read·Feb 26, 2026
VU
CRITICAL
Vulnerabilities

Critical RCE Flaws in InSAT MasterSCADA BUK-TS Affect ICS

Two critical vulnerabilities (SQLi, OS Command Injection) in InSAT MasterSCADA BUK-TS lead to remote code execution, impacting critical infrastructure sectors globally.

Runtime Rebel Intel
4 min read·Feb 25, 2026