EUVD-2019-8053

Malware in sbrugna...

EUVD-2016-6722

Malware in sbrugna...

CVE-2013-0653

Directory traversal vulnerability in substitute.bcl in the WebView CimWeb subsystem in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to read arbitrary files via a crafted packet...

CVE-2013-2785

Multiple buffer overflows in CimWebServer.exe in the WebView component in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.0 SIM 27, 8.1 before SIM 25, and 8.2 before SIM 19, and Proficy Process Systems with CIMPLICITY, allow remote attackers to execute arbitrary code via crafted...

The vulnerability of the client-server data processing and technological operations control application Proficy HMI/SCADA CIMPLICITY stems from issues with process management. This vulnerability allows attackers to escalate their privileges.

The vulnerability of the client-server data processing and technical operations control application Proficy HMI/SCADA CIMPLICITY exists due to a process management issue. Exploiting this vulnerability can allow attackers to increase their privileges within the system...

The vulnerability of the client-server data processing and technical operations control application Proficy HMI/SCADA CIMPLICITY lies in its ability to write malicious code into memory beyond the buffer limits. This allows attackers to execute arbitrary code by loading a malicious file.

The vulnerability of the client-server data processing and technical operations control application Proficy HMI/SCADA CIMPLICITY lies in the ability to write data beyond the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by loading a malicious...

The vulnerability of HMI/SCADA CONPROSYS HMI, which stems from insufficient verification of incoming requests, allows a hacker to perform an SSRF attack.

The vulnerability of HMI/SCADA CONPROSYS HMI is related to insufficient checking of incoming requests. Exploiting this vulnerability can allow a malicious actor to perform an SSRF attack remotely...

mySCADA myPRO OS Command Injection Vulnerability (CNVD-2023-38197)

mySCADA myPRO is a software application. myPRO is a professional HMI/SCADA system designed primarily for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO 8.26.0 and earlier versions, which can be exploited by an...

GE CIMPLICITY HMI/SCADA Software Buffer Overflow Vulnerability

GE CIMPLICITY HMI/SCADA Software is an automated industrial platform from General Electric GE. It provides true client-server visualization and control from a single machine to plant locations around the world, helping to manage operations and improve decision making. A buffer overflow...

Unspecified Vulnerability in AVEVA Edge

AVEVA Edge is a highly scalable and flexible HMI/SCADA software from AVEVA Software UK. A security vulnerability exists in AVEVA Edge 2020 R2 and prior versions that can be exploited by an attacker to potentially compromise the confidentiality, availability or integrity of the system. Details of...

AVEVA Edge DLL Hijacking Vulnerability

AVEVA Edge is a highly scalable and flexible HMI/SCADA software from AVEVA Software UK. A DLL hijacking vulnerability exists in AVEVA Edge 2020 R and prior versions, which could be exploited by an attacker to compromise the confidentiality, availability or integrity of a system. Details of the...

AVEVA Edge has an information disclosure vulnerability

AVEVA Edge is a highly scalable and flexible HMI/SCADA software from the UK-based Jianwei Software AVEVA. An information disclosure vulnerability exists in AVEVA Edge version 2020 R2, which can be exploited by an attacker to obtain account information for accessing external DB resource...

GE CIMPLICITY HMI/SCADA Software has an unspecified vulnerability

GE CIMPLICITY HMI/SCADA Software is an automation industrial platform from General Electric GE, Inc. It provides true client-server visualization and control from a single machine to plant locations around the world to help manage operations and improve decision making.GE CIMPLICITY HMI/SCADA...

GE CIMPLICITY HMI/SCADA Software 缓冲区错误漏洞

GE CIMPLICITY HMI/SCADA Software is an automation industrial platform from General Electric GE, Inc. It provides true client-server visualization and control from a single machine to plant locations around the world to help manage operations and improve decision making.GE CIMPLICITY HMI/SCADA...

GE CIMPLICITY HMI/SCADA Software 缓冲区错误漏洞

GE CIMPLICITY HMI/SCADA Software is an automated industrial platform from General Electric GE. It provides true client-server visualization and control from a single machine to plant locations around the world to help manage operations and improve decision making. A security vulnerability exists ...

GE CIMPLICITY

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: GE Equipment: CIMPLICITY Vulnerabilities: Access of Uninitialized Pointer, Heap-based Buffer Overflow, Untrusted Pointer Dereference, Out-of-bounds Write 2. RISK EVALUATION Successful exploitation of these vulnerabilities...

The vulnerability of the client-server data processing and technical operations control application Proficy HMI/SCADA CIMPLICITY, related to the transmission of data in an open format, allows attackers to perform spoofing attacks.

The vulnerability of the client-server data processing and technical operations control application Proficy HMI/SCADA CIMPLICITY lies in the transmission of data in an open manner. Exploiting this vulnerability can allow attackers to carry out spoofing attacks...

Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric HMI SCADA (Update B)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: ICONICS and Mitsubishi Electric Equipment: ICONICS Product Suite, Mitsubishi Electric MC Works64 Vulnerabilities: Cross-site Scripting, Incomplete List of Disallowed Inputs, Plaintext Storage of a...

Unspecified Vulnerability in mySCADA myPRO

mySCADA myPRO is an HMI/SCADA system designed primarily for the visualization and control of industrial processes. A security vulnerability exists in mySCADA myPRO that can be exploited by an attacker to crack a previously retrieved password hash...

mySCADA myPRO Operating System Command Injection Vulnerability

mySCADA myPRO is an HMI/SCADA system designed primarily for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO, which can be exploited by an attacker to inject arbitrary operating system commands...