Vtscada@* Security Vulnerabilities and Issues — Vtscada@* CVE List

Lucene search

TrihedralVtscada*

5 matches found

CVE•added 2017/11/06 10:29 p.m.•45 views

CVE-2017-14031

An Improper Access Control issue was discovered in Trihedral VTScada 11.3.03 and prior. A local, non-administrator user has privileges to read and write to the file system of the target machine.

7.8CVSS7.4AI score0.00035EPSS

CVE•added 2017/11/06 10:29 p.m.•44 views

CVE-2017-14029

An Uncontrolled Search Path Element issue was discovered in Trihedral VTScada 11.3.03 and prior. The program will execute specially crafted malicious dll files placed on the target machine.

9.3CVSS7.5AI score0.00145EPSS

CVE•added 2017/06/21 7:29 p.m.•42 views

CVE-2017-6053

A Cross-Site Scripting issue was discovered in Trihedral VTScada Versions prior to 11.2.26. A cross-site scripting vulnerability may allow JavaScript code supplied by the attacker to execute within the user's browser.

6.1CVSS5.9AI score0.0017EPSS

CVE•added 2017/06/21 7:29 p.m.•40 views

CVE-2017-6043

A Resource Consumption issue was discovered in Trihedral VTScada Versions prior to 11.2.26. The client does not properly validate the input or limit the amount of resources that are utilized by an attacker, which can be used to consume more resources than are available.

7.8CVSS7.4AI score0.00552EPSS

CVE•added 2017/06/21 7:29 p.m.•37 views

CVE-2017-6045

An Information Exposure issue was discovered in Trihedral VTScada Versions prior to 11.2.26. Some files are exposed within the web server application to unauthenticated users. These files may contain sensitive configuration information.

7.5CVSS7.4AI score0.00522EPSS