Kingview Security Vulnerabilities and Issues — Kingview CVE List

Lucene search

WellintechKingview

7 matches found

CVE•added 2012/05/09 10:33 a.m.•169 views

CVE-2012-1977

WellinTech KingSCADA 3.0 uses a cleartext base64 format for storage of passwords in user.db, which allows context-dependent attackers to obtain sensitive information by reading this file.

7.1CVSS6.1AI score0.0026EPSS

CVE•added 2012/07/05 3:23 a.m.•47 views

CVE-2012-1832

WellinTech KingView 6.53 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a crafted packet to (1) TCP or (2) UDP port 2001.

10CVSS8AI score0.01813EPSS

CVE•added 2012/07/05 3:23 a.m.•45 views

CVE-2012-1831

Heap-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555.

10CVSS8.2AI score0.15702EPSS

CVE•added 2012/07/05 3:23 a.m.•43 views

CVE-2012-1830

Stack-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555.

10CVSS8.2AI score0.14407EPSS

CVE•added 2012/07/05 3:23 a.m.•42 views

CVE-2012-2560

Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001.

5CVSS6.8AI score0.00427EPSS

CVE•added 2012/10/10 6:55 p.m.•42 views

CVE-2012-4899

WellinTech KingView 6.5.3 and earlier uses a weak password-hashing algorithm, which makes it easier for local users to discover credentials by reading an unspecified file.

2.1CVSS6.5AI score0.00062EPSS

CVE•added 2012/05/02 10:55 p.m.•41 views

CVE-2012-1819

Untrusted search path vulnerability in WellinTech KingView 6.53 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

9.3CVSS6.6AI score0.0067EPSS