Lucene search
K

182 matches found

NVD
NVD
added 2022/10/11 9:15 p.m.28 views

CVE-2022-38138

The Triangle Microworks IEC 61850 Library Any client or server using the C language library with a version number of 11.2.0 or earlier and any client or server using the C++, C, or Java language library with a version number of 5.0.1 or earlier and 60870-6 ICCP/TASE.2 Library Any client or server...

7.5CVSS0.00764EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/10/11 12:0 a.m.5 views

CVE-2022-38138

The Triangle Microworks IEC 61850 Library Any client or server using the C language library with a version number of 11.2.0 or earlier and any client or server using the C++, C, or Java language library with a version number of 5.0.1 or earlier and 60870-6 ICCP/TASE.2 Library Any client or server...

7.5CVSS7.4AI score0.00764EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/10/11 12:0 a.m.31 views

CVE-2022-38138

The Triangle Microworks IEC 61850 Library Any client or server using the C language library with a version number of 11.2.0 or earlier and any client or server using the C++, C, or Java language library with a version number of 5.0.1 or earlier and 60870-6 ICCP/TASE.2 Library Any client or server...

7.5CVSS7.6AI score0.00764EPSS
Exploits0References1
CISA
CISA
added 2022/09/06 12:0 a.m.14 views

CISA Releases Five Industrial Control Systems Advisories

CISA has released five Industrial Control Systems ICS advisories on September 06, 2022. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories fo...

1.3AI score
Exploits0References5
CNNVD
CNNVD
added 2022/09/06 12:0 a.m.8 views

多款Triangle Microworks产品缓冲区错误漏洞

Triangle Microworks TMW IEC 61850 Software Library and Triangle Microworks TMW IEC 60870-6 ICCP/TASE.2 Software Library are both SCADA communication protocol software libraries from Triangle Microworks, Inc. Triangle Microworks TMW IEC 60870-6 ICCP/TASE.2 Software Library are SCADA communication...

7.5CVSS7.8AI score0.00764EPSS
Exploits0References4
ICS
ICS
added 2022/09/06 12:0 a.m.57 views

Triangle Microworks Libraries

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Triangle Microworks Equipment: TMW IEC 61850 Software Library and TMW IEC 60870-6 ICCP/TASE.2 Software Library Vulnerability: Access of Uninitialized Pointer 2. RISK EVALUATION Successful exploitation...

7.5CVSS7.9AI score0.00764EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/01/25 12:0 a.m.6 views

PT-2022-6556 · Triangle Microworks · Scada Data Gateway

Name of the Vulnerable Software and Affected Versions: Triangle MicroWorks SCADA Data Gateway affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. Although authentication is required to exploit this issue, the existin...

9CVSS7.8AI score0.02298EPSS
Exploits0References7
Zero Day Initiative
Zero Day Initiative
added 2020/04/16 12:0 a.m.29 views

(Pwn2Own) Triangle MicroWorks SCADA Data Gateway DNP3 Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of data set elements. The issue results from the lac...

9.8CVSS3.9AI score0.05226EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/04/16 12:0 a.m.31 views

(Pwn2Own) Triangle Microworks SCADA Data Gateway DNP3 GET_FILE_INFO Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Triangle Microworks SCADA Data Gateway. Authentication is not required to exploit this vulnerability. The specific flaw exists with the handling of opcodes for GETFILEINFO. The issue results from the...

9.8CVSS4.5AI score0.02568EPSS
Exploits0References1
OSV
OSV
added 2020/04/15 7:15 p.m.5 views

CVE-2020-10613

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers to disclose sensitive information due to the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated structure. Authentication is no...

7.5CVSS5.7AI score0.02493EPSS
Exploits0References2
OSV
OSV
added 2020/04/15 7:15 p.m.5 views

CVE-2020-10615

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers cause a denial-of-service condition due to a lack of proper validation of the length of user-supplied data, prior to copying it to a fixed-length stack-based buffer. Authentication ...

7.5CVSS5.9AI score0.02568EPSS
Exploits0References2
OSV
OSV
added 2020/04/15 7:15 p.m.5 views

CVE-2020-6996

Triangle MicroWorks DNP3 Outstation LibrariesDNP3 Outstation .NET Protocol components and DNP3 Outstation ANSI C source code libraries are affected:3.16.00 through 3.25.01. A specially crafted message may cause a stack-based buffer overflow. Authentication is not required to exploit this...

9.8CVSS7.8AI score0.01349EPSS
Exploits0References1
NVD
NVD
added 2020/04/15 7:15 p.m.14 views

CVE-2020-6996

Triangle MicroWorks DNP3 Outstation LibrariesDNP3 Outstation .NET Protocol components and DNP3 Outstation ANSI C source code libraries are affected:3.16.00 through 3.25.01. A specially crafted message may cause a stack-based buffer overflow. Authentication is not required to exploit this...

9.8CVSS9.7AI score0.01349EPSS
Exploits0References1
OSV
OSV
added 2020/04/15 7:15 p.m.4 views

CVE-2020-10611

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type confusion condition. Authentication is not required to exploit this...

9.8CVSS7.6AI score0.05226EPSS
Exploits0References2
NVD
NVD
added 2020/04/15 7:15 p.m.14 views

CVE-2020-10615

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers cause a denial-of-service condition due to a lack of proper validation of the length of user-supplied data, prior to copying it to a fixed-length stack-based buffer. Authentication ...

7.5CVSS8AI score0.02568EPSS
Exploits0References2
NVD
NVD
added 2020/04/15 7:15 p.m.20 views

CVE-2020-10611

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type confusion condition. Authentication is not required to exploit this...

9.8CVSS9.8AI score0.05226EPSS
Exploits0References2
Prion
Prion
added 2020/04/15 7:15 p.m.21 views

Stack overflow

Triangle MicroWorks DNP3 Outstation LibrariesDNP3 Outstation .NET Protocol components and DNP3 Outstation ANSI C source code libraries are affected:3.16.00 through 3.25.01. A specially crafted message may cause a stack-based buffer overflow. Authentication is not required to exploit this...

7.5CVSS9.5AI score0.01349EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/04/15 7:15 p.m.13 views

Stack overflow

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers cause a denial-of-service condition due to a lack of proper validation of the length of user-supplied data, prior to copying it to a fixed-length stack-based buffer. Authentication ...

5CVSS7.6AI score0.02568EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/04/15 6:46 p.m.62 views

CVE-2020-6996

CVE-2020-6996 affects Triangle MicroWorks DNP3 Outstation Libraries (DNP3 Outstation .NET Protocol components and DNP3 Outstation ANSI C source) in versions 3.16.00–3.25.01. Root cause: stack-based buffer overflow triggered by a specially crafted message, with no authentication required. Impact: ...

9.8CVSS9.4AI score0.01349EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/15 6:46 p.m.47 views

CVE-2020-6996

Triangle MicroWorks DNP3 Outstation LibrariesDNP3 Outstation .NET Protocol components and DNP3 Outstation ANSI C source code libraries are affected:3.16.00 through 3.25.01. A specially crafted message may cause a stack-based buffer overflow. Authentication is not required to exploit this...

9.6AI score0.01349EPSS
Exploits0References1
Rows per page
Query Builder