Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:57 a.m.16 views

CVE-2020-12004

The affected product lacks proper authentication required to query the server on the Ignition 8 Gateway versions prior to 8.0.10 and Ignition 7 Gateway versions prior to 7.9.14, allowing an attacker to obtain sensitive information...

7.5CVSS6.7AI score0.13639EPSS
Exploits4References1
0daydb
0daydb
added 2020/06/28 1:9 a.m.303 views

Inductive Automation Ignition - Remote Code Execution

This Metasploit module exploits a Java deserialization vulnerability in the Inductive Automation Ignition SCADA... This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Inductive Automation Ignition...

6.8CVSS0.6AI score0.73317EPSS
Exploits14
Circl
Circl
added 2020/06/25 4:25 p.m.49 views

CVE-2020-12004

creationtimestamp| type| source ---|---|--- 2020-06-25 16:25:27+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/scada/inductiveignitionrce.rb 2024-10-31 02:05:38+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1355 2025-02-0...

7.5CVSS6.5AI score0.13639EPSS
Exploits4References2
Packet Storm
Packet Storm
added 2020/06/25 12:0 a.m.544 views

Inductive Automation Ignition Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Inductive Automation Ignition Remote Code Execution', 'Description' = %q This module exploits a Java deserialization vulnerability in the Inducti...

5CVSS0.4AI score0.20208EPSS
Exploits4
NVD
NVD
added 2020/06/09 6:15 p.m.17 views

CVE-2020-12004

The affected product lacks proper authentication required to query the server on the Ignition 8 Gateway versions prior to 8.0.10 and Ignition 7 Gateway versions prior to 7.9.14, allowing an attacker to obtain sensitive information...

7.5CVSS0.13639EPSS
Exploits4References2
CVE
CVE
added 2020/06/09 5:16 p.m.106 views

CVE-2020-12004

CVE-2020-12004 affects Inductive Automation Ignition Gateway (Ignition 8.x before 8.0.10 and Ignition 7.x before 7.9.14). The issue is an authentication gap in the gateway’s project/data access endpoints (notably actions like getDiffs in the gateway administration), which allows an attacker to qu...

7.5CVSS7.5AI score0.13639EPSS
Exploits4References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2020/06/09 12:0 a.m.25 views

CVE-2020-12004

The affected product lacks proper authentication required to query the server on the Ignition 8 Gateway versions prior to 8.0.10 and Ignition 7 Gateway versions prior to 7.9.14, allowing an attacker to obtain sensitive information. Recent assessments: cdelafuente-r7 at June 26, 2020 11:13am UTC...

7.5CVSS8.5AI score0.20208EPSS
Exploits4References3
Rows per page
Query Builder