Lucene search
IcscertCVELIST:CVE-2022-2896HistoryAug 23, 2022 - 12:00 a.m.
CVE-2022-2896 Measuresoft ScadaPro Server Use After Free
2022-08-2300:00:00
CWE-121
icscert
www.cve.org
measuresoft
scadapro server
use after free
vulnerability
all versions
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
60.2%
Measuresoft ScadaPro Server (All Versions) allows use after free while processing a specific project file.
CNA Affected
[
{
"product": "ScadaPro Server",
"vendor": "Measuresoft ",
"versions": [
{
"status": "affected",
"version": "All Versions"
}
]
}
]Related
prion
prion
Double free
2022-08-31 21:15:00
zdi
zdi
nvd
nvd
CVE-2022-2896
2022-08-31 21:15:08
cve
cve
CVE-2022-2896
2022-08-31 21:15:08
ics
ics
Measuresoft ScadaPro Server and Client
2022-08-23 12:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
60.2%
Related for CVELIST:CVE-2022-2896