Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-2785
HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-2785

2022-10-0316:14:59
CWE-119
[email protected]
web.nvd.nist.gov
21
cve-2013-2785
buffer overflow
cimwebserver.exe
ge intelligent platforms
proficy hmi/scada
cimplicity
remote code execution
tcp
port 10212
zdi-can-1621
zdi-can-1624

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.6%

JSON

Multiple buffer overflows in CimWebServer.exe in the WebView component in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.0 SIM 27, 8.1 before SIM 25, and 8.2 before SIM 19, and Proficy Process Systems with CIMPLICITY, allow remote attackers to execute arbitrary code via crafted data in packets to TCP port 10212, aka ZDI-CAN-1621 and ZDI-CAN-1624.

Affected configurations

NVD
Node
geintelligent_platforms_proficy_hmi\/scada_cimplicityMatch8.0
OR
geintelligent_platforms_proficy_hmi\/scada_cimplicityMatch8.1
OR
geintelligent_platforms_proficy_hmi\/scada_cimplicityMatch8.2
OR
geintelligent_platforms_proficy_process_systems_with_cimplicityMatch-

Related

cvelist 1
zdi 2
prion 1
ics 1
nvd 1
cvelist
cvelist
CVE-2013-2785
2022-10-03 16:14:59
zdi
zdi
GE Proficy CIMPLICITY CimWebServer Broadcase/Init Remote Code Execution Vulnerability
2013-07-26 00:00:00
GE Proficy CIMPLICITY CimWebServer Password Decode Remote Code Execution Vulnerability
2013-07-26 00:00:00
prion
prion
Buffer overflow
2013-07-31 13:20:00
ics
ics
GE Proficy HMI/SCADA CIMPLICITY WebView Improper Input Validation
2013-08-01 12:00:00
nvd
nvd
CVE-2013-2785
2013-07-31 13:20:28

8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.6%

JSON
Related for CVE-2013-2785
cvelist1zdi2prion1ics1nvd1