CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-5519

Malware in sbrugna...

9.1CVSS9.3AI score0.08529EPSS

Exploits0References4

CISA KEV Catalog•added 2022/04/15 12:0 a.m.•10 views

Trihedral VTScada (formerly VTS) Denial-of-Service Vulnerability

The WAP interface in Trihedral VTScada formerly VTS allows remote attackers to cause a denial-of-service DoS...

7.5CVSS7.5AI score0.65426EPSS

In wildExploits0

VulnCheck KEV•added 2022/01/12 12:0 a.m.•1 views

VulnCheck KEV: CVE-2016-4523

The WAP interface in Trihedral VTScada formerly VTS allows remote attackers to cause a denial-of-service DoS...

7.5CVSS7.2AI score0.65426EPSS

Exploits0References1

NVD•added 2016/06/09 10:59 a.m.•10 views

CVE-2016-4523

7.5CVSS7.4AI score0.65426EPSS

Exploits0References4

OSV•added 2016/06/09 10:59 a.m.•1 views

CVE-2016-4523

7.5CVSS5.8AI score0.65426EPSS

Exploits0References4

OSV•added 2016/06/09 10:59 a.m.•1 views

CVE-2016-4510

The WAP interface in Trihedral VTScada formerly VTS 8.x through 11.x before 11.2.02 allows remote attackers to bypass authentication and read arbitrary files via unspecified vectors...

9.1CVSS5.9AI score0.00691EPSS

Exploits0References3

NVD•added 2016/06/09 10:59 a.m.•9 views

CVE-2016-4510

The WAP interface in Trihedral VTScada formerly VTS 8.x through 11.x before 11.2.02 allows remote attackers to bypass authentication and read arbitrary files via unspecified vectors...

9.1CVSS9.3AI score0.00691EPSS

Exploits0References3

Prion•added 2016/06/09 10:59 a.m.•7 views

Authentication flaw

The WAP interface in Trihedral VTScada formerly VTS 8.x through 11.x before 11.2.02 allows remote attackers to bypass authentication and read arbitrary files via unspecified vectors...

6.4CVSS7.5AI score0.00691EPSS

Exploits0References3Affected Software1

Prion•added 2016/06/09 10:59 a.m.•8 views

Out-of-bounds

5CVSS7AI score0.65426EPSS

Exploits0References3Affected Software1

Cvelist•added 2016/06/09 10:0 a.m.•19 views

CVE-2016-4523

7.4AI score0.65426EPSS

Exploits0References3

CVE•added 2016/06/09 10:0 a.m.•49 views

CVE-2016-4510

Trihedral VTScada (VTScada/VTS) WAP interface (versions 8.x–before 11.2.02) allows remote authentication bypass and arbitrary-file read via unspecified vectors. CVE-2016-4510 is rated CVSS v3.0 COVID 9.1 (CRITICAL) with network access and low attack complexity. Availability of public exploits is ...

9.1CVSS9.2AI score0.00691EPSS

Exploits0References3Affected Software1

CVE•added 2016/06/09 10:0 a.m.•991 views

CVE-2016-4523

CVE-2016-4523 affects Trihedral VTScada (VTS) WAP interface on Windows, with VTScada versions 8.x through 11.x prior to 11.2.02. The vulnerability allows remote attackers to cause a denial of service via an out-of-bounds read that crashes the application. Public disclosures and mitigations descri...

7.5CVSS7.2AI score0.65426EPSS

In wildExploits0References4Affected Software1

ATTACKERKB•added 2016/06/09 12:0 a.m.•28 views

CVE-2016-4523

The WAP interface in Trihedral VTScada formerly VTS 8.x through 11.x before 11.2.02 allows remote attackers to cause a denial of service out-of-bounds read and application crash via unspecified vectors. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker...

7.5CVSS5.7AI score0.65426EPSS

In wildExploits0References4

ICS•added 2016/03/11 7:0 a.m.•29 views

Trihedral Engineering Limited VTScada Vulnerabilities

OVERVIEW An anonymous researcher has identified several vulnerabilities in Trihedral Engineering Ltd.’s Trihedral VTScada and reported them to Zero Day Initiative ZDI, which reported them to NCCIC/ICS-CERT. Trihedral Engineering Ltd. has produced a new version to mitigate these vulnerabilities...

9.1CVSS9.2AI score0.65426EPSS

Exploits0References10

OpenVAS•added 2009/07/08 12:0 a.m.•28 views

Nagios 'statuswml.cgi' Remote Arbitrary Shell Command Injection Vulnerability

Nagios is prone to a remote command-injection vulnerability because it fails to adequately sanitize user-supplied input data. Remote attackers can exploit this issue to execute arbitrary shell commands with the privileges of the user running the application. Note that for an exploit to succeed,...

7.5CVSS7.4AI score0.93259EPSS

Exploits14References1

FreeBSD•added 2009/05/29 12:0 a.m.•34 views

nagios -- Command Injection Vulnerability

Secunia reports: A vulnerability has been reported in Nagios, which can be exploited by malicious users to potentially compromise a vulnerable system. Input passed to the "ping" parameter in statuswml.cgi is not properly sanitised before being used to invoke the ping command. This can be exploite...

7.5CVSS6.9AI score0.93259EPSS

Exploits14References2

Exploit DB•added 2009/05/22 12:0 a.m.•33 views

Nagios 3.0.6 - 'statuswml.cgi' Arbitrary Shell Command Injection

source: https://www.securityfocus.com/bid/35464/info Nagios is prone to a remote command-injection vulnerability because it fails to adequately sanitize user-supplied input data. Remote attackers can exploit this issue to execute arbitrary shell commands with the privileges of the user running th...

7.4AI score

Exploits0

exploitpack•added 2009/05/22 12:0 a.m.•11 views

Nagios 3.0.6 - statuswml.cgi Arbitrary Shell Command Injection

Nagios 3.0.6 - statuswml.cgi Arbitrary Shell Command Injection source: https://www.securityfocus.com/bid/35464/info Nagios is prone to a remote command-injection vulnerability because it fails to adequately sanitize user-supplied input data. Remote attackers can exploit this issue to execute...

0.6AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by