Lucene search
+L

108 matches found

ICS
ICS
added 2023/07/27 12:0 a.m.30 views

PTC KEPServerEX

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: PTC Equipment: KEPServerEX Vulnerability: Uncontrolled Resource Consumption 2. RISK EVALUATION Successful exploitation of this vulnerability could result in the affected device crashing. 3. TECHNICAL...

7.5CVSS7.6AI score0.0077EPSS
Exploits0References8
OSV
OSV
added 2023/03/29 7:15 p.m.7 views

CVE-2022-2848

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lac...

9.1CVSS6.2AI score0.03366EPSS
Exploits0References2
NVD
NVD
added 2023/03/29 7:15 p.m.38 views

CVE-2022-2848

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lac...

9.1CVSS9.5AI score0.03366EPSS
Exploits0References2
NVD
NVD
added 2023/03/29 7:15 p.m.39 views

CVE-2022-2825

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lac...

9.8CVSS9.7AI score0.03402EPSS
Exploits0References2
OSV
OSV
added 2023/03/29 7:15 p.m.8 views

CVE-2022-2825

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lac...

9.8CVSS6.2AI score0.03402EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/03/29 12:0 a.m.9 views

CVE-2022-2825

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lac...

9.8CVSS7.2AI score0.03402EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/03/29 12:0 a.m.47 views

CVE-2022-2825

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lac...

9.8CVSS9.8AI score0.03402EPSS
Exploits0References2
CVE
CVE
added 2023/03/29 12:0 a.m.68 views

CVE-2022-2848

CVE-2022-2848 affects Kepware KEPServerEX 6.11.718.0. A heap-based buffer overflow occurs during handling of text encoding conversions due to improper length validation of user-supplied data, allowing remote code execution in the context of SYSTEM. The vulnerability is network-exploitable with no...

9.1CVSS9.4AI score0.03366EPSS
Exploits0References2Affected Software8
Cvelist
Cvelist
added 2023/03/29 12:0 a.m.42 views

CVE-2022-2848

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX 6.11.718.0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lac...

9.1CVSS9.5AI score0.03366EPSS
Exploits0References2
CVE
CVE
added 2023/03/29 12:0 a.m.67 views

CVE-2022-2825

The CVE-2022-2825 issue affects Kepware KEPServerEX 6.11.718.0, with a stack-based buffer overflow in the handling of text encoding conversions caused by improper validation of the length of user-supplied data. It allows remote attackers to execute arbitrary code with SYSTEM privileges without au...

9.8CVSS9.6AI score0.03402EPSS
Exploits0References2Affected Software8
Zero Day Initiative
Zero Day Initiative
added 2022/10/21 12:0 a.m.39 views

(Pwn2Own) Kepware KEPServerEX Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lack of proper...

9.1CVSS5.9AI score0.03366EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/10/21 12:0 a.m.58 views

(Pwn2Own) Kepware KEPServerEX Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kepware KEPServerEX. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of text encoding conversions. The issue results from the lack of proper...

9.8CVSS5.9AI score0.03402EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/08/30 12:0 a.m.6 views

Kepware KEPServerEX 安全漏洞

Kepware Kepserverex is a software application from Kepware USA that communicates with a wide range of industrial equipment. The software supports more than 150 communication protocols and supports the delivery of reliable real-time data to organizations through a single platform. A security...

9.8CVSS7.2AI score0.03402EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/08/30 12:0 a.m.9 views

PT-2022-4524 · Kepware · Kepserverex

Name of the Vulnerable Software and Affected Versions: Kepware KEPServerEX version 6.11.718.0 Description: This issue allows remote attackers to execute arbitrary code on affected installations. Authentication is not required to exploit this issue. The specific flaw exists within the handling of...

9.1CVSS7.8AI score0.03366EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/08/30 12:0 a.m.9 views

PT-2022-4525 · Ptc +1 · Thingworx Kepware Edge +4

Name of the Vulnerable Software and Affected Versions: Kepware KEPServerEX version 6.11.718.0 ThingWorx Kepware Server affected versions not specified ThingWorx Industrial Connectivity affected versions not specified ThingWorx Kepware Edge affected versions not specified PTC OPC-Aggregator affect...

10CVSS8.1AI score0.03402EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/08/30 12:0 a.m.9 views

Kepware KEPServerEX 缓冲区错误漏洞

Kepware Kepserverex is a software application from Kepware USA that communicates with a wide range of industrial equipment. The software supports more than 150 communication protocols and supports the delivery of reliable real-time data to organizations through a single platform. A buffer error...

9.1CVSS7.3AI score0.03366EPSS
Exploits0References5
ICS
ICS
added 2022/08/30 12:0 a.m.133 views

PTC Kepware KEPServerEX (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: PTC Equipment: Kepware KEPServerEX Vulnerabilities: Heap-based Buffer Overflow, Stack-based Buffer Overflow 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled...

10AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/05/17 12:0 a.m.39 views

PTC OPC UA Server Multiple vulnerabilities

Binary data ptcopcuamultivulns.nbin...

9.8CVSS9.3AI score0.10062EPSS
Exploits0References6
OSV
OSV
added 2021/01/14 12:15 a.m.3 views

CVE-2020-27265

KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregator: All versions, Rockwell Automation KEPServer Enterprise, GE Digital Industrial Gateway Server: v7.68.804 and v7.66, Software Toolbox TOP Server: All 6.x versions are...

9.8CVSS7.8AI score0.10062EPSS
Exploits0References1
NVD
NVD
added 2021/01/14 12:15 a.m.28 views

CVE-2020-27265

KEPServerEX: v6.0 to v6.9, ThingWorx Kepware Server: v6.8 and v6.9, ThingWorx Industrial Connectivity: All versions, OPC-Aggregator: All versions, Rockwell Automation KEPServer Enterprise, GE Digital Industrial Gateway Server: v7.68.804 and v7.66, Software Toolbox TOP Server: All 6.x versions are...

9.8CVSS9.6AI score0.10062EPSS
Exploits0References1
Rows per page
Query Builder