Circarlife Scada Security Vulnerabilities and Issues — Circarlife Scada CVE List

Lucene search

CircontrolCircarlife Scada

5 matches found

CVE•added 2018/06/22 12:29 a.m.•85 views

CVE-2018-12634

CirCarLife Scada before 4.3 allows remote attackers to obtain sensitive information via a direct request for the html/log or services/system/info.html URI.

9.8CVSS8.9AI score0.90532EPSS

CVE•added 2018/09/18 8:29 p.m.•64 views

CVE-2018-16668

An issue was discovered in CIRCONTROL CirCarLife before 4.3. There is internal installation path disclosure due to the lack of authentication for /html/repository.

5.3CVSS6.3AI score0.48794EPSS

CVE•added 2018/09/18 8:29 p.m.•61 views

CVE-2018-16671

An issue was discovered in CIRCONTROL CirCarLife before 4.3. There is system software information disclosure due to lack of authentication for /html/device-id.

5.3CVSS6.1AI score0.46416EPSS

CVE•added 2018/09/18 8:29 p.m.•60 views

CVE-2018-16670

An issue was discovered in CIRCONTROL CirCarLife before 4.3. There is PLC status disclosure due to lack of authentication for /html/devstat.html.

5.3CVSS6.2AI score0.49496EPSS

CVE•added 2018/09/26 5:29 p.m.•46 views

CVE-2018-16672

An issue was discovered in CIRCONTROL CirCarLife before 4.3. Due to the storage of multiple sensitive information elements in a JSON format at /services/system/setup.json, an authenticated but unprivileged user can exfiltrate critical setup information.

6.5CVSS7.6AI score0.01682EPSS