Auto-Update: 2026-02-27T03:00:11.103498+00:00

Author: cad-safe-bot

CVE-2021/CVE-2021-44xx/CVE-2021-4456.json

@@ -0,0 +1,41 @@
+{
+  "id": "CVE-2021-4456",
+  "sourceIdentifier": "9b29abf9-4ab0-4765-b253-1875cd9b441e",
+  "published": "2026-02-27T01:16:13.553",
+  "lastModified": "2026-02-27T01:16:13.553",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact.\n\nThe functions `addr2cidr` and `cidrlookup` may return leading zeros in a CIDR string, which may in turn be parsed as octal numbers by subsequent users. In some cases an attacker may be able to leverage this to bypass access controls based on IP addresses.\n\nThe documentation advises validating untrusted CIDR strings with the `cidrvalidate` function. However, this mitigation is optional and not enforced by default. In practice, users may call `addr2cidr` or `cidrlookup` with untrusted input and without validation, incorrectly assuming that this is safe."
+    }
+  ],
+  "metrics": {},
+  "weaknesses": [
+    {
+      "source": "9b29abf9-4ab0-4765-b253-1875cd9b441e",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-704"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://blog.urth.org/2021/03/29/security-issues-in-perl-ip-address-distros/",
+      "source": "9b29abf9-4ab0-4765-b253-1875cd9b441e"
+    },
+    {
+      "url": "https://github.com/svarshavchik/Net-CIDR/commit/e3648c6bc6bdd018f90cca4149c467017d42bd10",
+      "source": "9b29abf9-4ab0-4765-b253-1875cd9b441e"
+    },
+    {
+      "url": "https://metacpan.org/dist/Net-CIDR/changes",
+      "source": "9b29abf9-4ab0-4765-b253-1875cd9b441e"
+    }
+  ]
+}

CVE-2026/CVE-2026-207xx/CVE-2026-20742.json

@@ -0,0 +1,64 @@
+{
+  "id": "CVE-2026-20742",
+  "sourceIdentifier": "ics-cert@hq.dhs.gov",
+  "published": "2026-02-27T01:16:17.317",
+  "lastModified": "2026-02-27T01:16:17.317",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An OS command injection \n\nvulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an \nauthenticated attacker to achieve remote code execution on the system by\n injecting malicious input into requests sent to the templates route."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "ics-cert@hq.dhs.gov",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
+          "baseScore": 8.0,
+          "baseSeverity": "HIGH",
+          "attackVector": "NETWORK",
+          "attackComplexity": "HIGH",
+          "privilegesRequired": "HIGH",
+          "userInteraction": "NONE",
+          "scope": "CHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 1.3,
+        "impactScore": 6.0
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "ics-cert@hq.dhs.gov",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-78"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-057-10.json",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://webapps.copeland.com/Dixell/Pages/SystemSoftwareUpdate",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-10",
+      "source": "ics-cert@hq.dhs.gov"
+    }
+  ]
+}

CVE-2026/CVE-2026-207xx/CVE-2026-20764.json

@@ -0,0 +1,64 @@
+{
+  "id": "CVE-2026-20764",
+  "sourceIdentifier": "ics-cert@hq.dhs.gov",
+  "published": "2026-02-27T02:16:18.140",
+  "lastModified": "2026-02-27T02:16:18.140",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An OS command injection \nvulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an \nauthenticated attacker to achieve remote code execution on the system by\n providing malicious input via the device hostname configuration which \nis later processed during system setup, resulting in remote code \nexecution."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "ics-cert@hq.dhs.gov",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
+          "baseScore": 8.0,
+          "baseSeverity": "HIGH",
+          "attackVector": "NETWORK",
+          "attackComplexity": "HIGH",
+          "privilegesRequired": "HIGH",
+          "userInteraction": "NONE",
+          "scope": "CHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 1.3,
+        "impactScore": 6.0
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "ics-cert@hq.dhs.gov",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-78"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-057-10.json",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://webapps.copeland.com/Dixell/Pages/SystemSoftwareUpdate",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-10",
+      "source": "ics-cert@hq.dhs.gov"
+    }
+  ]
+}

CVE-2026/CVE-2026-207xx/CVE-2026-20797.json

@@ -0,0 +1,52 @@
+{
+  "id": "CVE-2026-20797",
+  "sourceIdentifier": "ics-cert@hq.dhs.gov",
+  "published": "2026-02-27T02:16:18.343",
+  "lastModified": "2026-02-27T02:16:18.343",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "A stack based buffer overflow exists in an API route of XWEB Pro version\n 1.12.1 and prior, enabling unauthenticated attackers to cause stack \ncorruption and a termination of the program."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "ics-cert@hq.dhs.gov",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
+          "baseScore": 4.3,
+          "baseSeverity": "MEDIUM",
+          "attackVector": "ADJACENT_NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "NONE",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "LOW"
+        },
+        "exploitabilityScore": 2.8,
+        "impactScore": 1.4
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-057-10.json",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://webapps.copeland.com/Dixell/Pages/SystemSoftwareUpdate",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-10",
+      "source": "ics-cert@hq.dhs.gov"
+    }
+  ]
+}

CVE-2026/CVE-2026-209xx/CVE-2026-20902.json

@@ -0,0 +1,64 @@
+{
+  "id": "CVE-2026-20902",
+  "sourceIdentifier": "ics-cert@hq.dhs.gov",
+  "published": "2026-02-27T01:16:17.520",
+  "lastModified": "2026-02-27T01:16:17.520",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An OS command injection \n\n\n\nvulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an \nauthenticated attacker to achieve remote code execution on the system by\n injecting malicious input into the map filename field during the map \nupload action of the parameters route."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "ics-cert@hq.dhs.gov",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
+          "baseScore": 8.0,
+          "baseSeverity": "HIGH",
+          "attackVector": "NETWORK",
+          "attackComplexity": "HIGH",
+          "privilegesRequired": "HIGH",
+          "userInteraction": "NONE",
+          "scope": "CHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 1.3,
+        "impactScore": 6.0
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "ics-cert@hq.dhs.gov",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-78"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-057-10.json",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://webapps.copeland.com/Dixell/Pages/SystemSoftwareUpdate",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-10",
+      "source": "ics-cert@hq.dhs.gov"
+    }
+  ]
+}

CVE-2026/CVE-2026-209xx/CVE-2026-20910.json

@@ -0,0 +1,64 @@
+{
+  "id": "CVE-2026-20910",
+  "sourceIdentifier": "ics-cert@hq.dhs.gov",
+  "published": "2026-02-27T01:16:17.707",
+  "lastModified": "2026-02-27T01:16:17.707",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An OS command injection \nvulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an \nauthenticated attacker to achieve remote code execution on the system by\n injecting malicious input into the devices field of the firmware update\n update action to achieve remote code execution."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "ics-cert@hq.dhs.gov",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
+          "baseScore": 8.0,
+          "baseSeverity": "HIGH",
+          "attackVector": "NETWORK",
+          "attackComplexity": "HIGH",
+          "privilegesRequired": "HIGH",
+          "userInteraction": "NONE",
+          "scope": "CHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 1.3,
+        "impactScore": 6.0
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "ics-cert@hq.dhs.gov",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-78"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-057-10.json",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://webapps.copeland.com/Dixell/Pages/SystemSoftwareUpdate",
+      "source": "ics-cert@hq.dhs.gov"
+    },
+    {
+      "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-10",
+      "source": "ics-cert@hq.dhs.gov"
+    }
+  ]
+}