Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-0750
HistoryJan 25, 2014 - 10:55 p.m.

CVE-2014-0750

2014-01-2522:55:00
CWE-22
[email protected]
web.nvd.nist.gov
27
cve-2014-0750
directory traversal vulnerability
gefebt.exe
ge intelligent platforms
proficy hmi
scada
cimplicity
remote code execution
zdi-can-1622
nvd

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.398 Low

EPSS

Percentile

97.3%

JSON

Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary code via a crafted HTTP request, aka ZDI-CAN-1622.

CPENameOperatorVersion
ge:intelligent_platforms_proficy_hmi\/scada_cimplicityge intelligent platforms proficy hmi\/scada cimplicityeq8.0
ge:intelligent_platforms_proficy_process_systems_with_cimplicityge intelligent platforms proficy process systems with cimplicityeq-
ge:intelligent_platforms_proficy_hmi\/scada_cimplicityge intelligent platforms proficy hmi\/scada cimplicityeq8.1
ge:intelligent_platforms_proficy_hmi\%2fscada_cimplicityge intelligent platforms proficy hmi\%2fscada cimplicityle8.2
ge:intelligent_platforms_proficy_hmi\/scada_cimplicityge intelligent platforms proficy hmi\/scada cimplicityeq4.01
ge:intelligent_platforms_proficy_hmi\/scada_cimplicityge intelligent platforms proficy hmi\/scada cimplicityeq8.2
ge:intelligent_platforms_proficy_hmi\/scada_cimplicityge intelligent platforms proficy hmi\/scada cimplicityeq7.5

Related

seebug 1
packetstorm 1
cvelist 1
prion 1
zdt 1
zdi 1
ics 1
seebug
seebug
GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY gefebt.exe目录遍历漏洞
2014-02-10 00:00:00
packetstorm
packetstorm
GE Proficy CIMPLICITY gefebt.exe Remote Code Execution
2014-02-28 00:00:00
cvelist
cvelist
CVE-2014-0750
2014-01-25 22:00:00
prion
prion
Directory traversal
2014-01-25 22:55:00
zdt
zdt
GE Proficy CIMPLICITY gefebt.exe Remote Code Execution
2014-02-28 00:00:00
zdi
zdi
GE Proficy CIMPLICITY gefebt.exe File Upload Remote Code Execution Vulnerability
2014-02-13 00:00:00
ics
ics
GE Proficy Vulnerabilities
2018-09-06 12:00:00

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.398 Low

EPSS

Percentile

97.3%

JSON
Related for CVE-2014-0750
seebug1packetstorm1cvelist1prion1zdt1zdi1ics1