Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
scada vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-4986
A vulnerability classified as problematic was found in Supcon InPlant SCADA up to 20230901. Affected by this vulnerability is an unknown functionality of the file Project.xml. The manipulation leads to password hash with insufficient computational effort. Local access is required...
Supcon Inplant Scada
NA
CVE-2023-32540
In Advantech WebAccss/SCADA v9.1.3 and prior, there is an arbitrary file overwrite vulnerability, which could allow an malicious user to overwrite any file in the operating system (including system files), inject code into an XLS file, and modify the file extension, which could ...
Advantech Webaccess\\/scada
7.5
CVSSv2
CVE-2017-12707
A Stack-based Buffer Overflow issue exists in SpiderControl SCADA MicroBrowser Versions 1.6.30.144 and prior. Opening a maliciously crafted html file may cause a stack overflow.
Spidercontrol Scada Microbrowser
7.2
CVSSv2
CVE-2017-12728
An Improper Privilege Management issue exists in SpiderControl SCADA Web Server Version 2.02.0007 and prior. Authenticated, non-administrative local users are able to alter service executables with escalated privileges, which could allow an malicious user to execute arbitrary cod...
Spidercontrol Scada Webserver
7.8
CVSSv2
CVE-2013-2824
Schneider Electric StruxureWare SCADA Expert Vijeo Citect 7.40, Vijeo Citect 7.20 up to and including 7.30SP1, CitectSCADA 7.20 up to and including 7.30SP1, StruxureWare PowerSCADA Expert 7.30 up to and including 7.30SR1, and PowerLogic SCADA 7.20 up to and including 7.20SR1 do n...
Schneider-electric Struxureware Scada Expert Vijeo Citect 7.20
Schneider-electric Struxureware Scada Expert Vijeo Citect 7.40
Schneider-electric Struxureware Scada Expert Vijeo Citect 7.30
Schneider-electric Citectscada 7.20
Schneider-electric Struxureware Powerscada Expert 7.30
Schneider-electric Powerlogic Scada 7.20
Schneider-electric Citectscada 7.30
5
CVSSv2
CVE-2022-24321
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause Denial of Service against the Geo SCADA server when receiving a malformed HTTP request. Affected Product: ClearSCADA (All Versions), EcoStruxure Geo SCADA Expert 2019 (All Versio...
Schneider-electric Clearscada
Schneider-electric Ecostruxure Geo Scada Expert 2019
Schneider-electric Ecostruxure Geo Scada Expert 2020
4.6
CVSSv2
CVE-2021-22741
Use of Password Hash with Insufficient Computational Effort vulnerability exists in ClearSCADA (all versions), EcoStruxure Geo SCADA Expert 2019 (all versions), and EcoStruxure Geo SCADA Expert 2020 (V83.7742.1 and prior), which could cause the revealing of account credentials wh...
Schneider-electric Clearscada
Schneider-electric Ecostruxure Geo Scada Expert 2019
Schneider-electric Ecostruxure Geo Scada Expert 2020
5
CVSSv2
CVE-2022-24318
A CWE-326: Inadequate Encryption Strength vulnerability exists that could cause non-encrypted communication with the server when outdated versions of the ViewX client are used. Affected Product: ClearSCADA (All Versions), EcoStruxure Geo SCADA Expert 2019 (All Versions), EcoStrux...
Schneider-electric Clearscada
Schneider-electric Ecostruxure Geo Scada Expert 2019
Schneider-electric Ecostruxure Geo Scada Expert 2020
4.3
CVSSv2
CVE-2022-24319
A CWE-295: Improper Certificate Validation vulnerability exists that could allow a Man-in-theMiddle attack when communications between the client and Geo SCADA web server are intercepted. Affected Product: ClearSCADA (All Versions), EcoStruxure Geo SCADA Expert 2019 (All Versions...
Schneider-electric Clearscada -
Schneider-electric Ecostruxure Geo Scada Expert 2019
Schneider-electric Ecostruxure Geo Scada Expert 2020
4.3
CVSSv2
CVE-2022-24320
A CWE-295: Improper Certificate Validation vulnerability exists that could allow a Man-in-theMiddle attack when communications between the client and Geo SCADA database server are intercepted. Affected Product: ClearSCADA (All Versions), EcoStruxure Geo SCADA Expert 2019 (All Ver...
Schneider-electric Clearscada -
Schneider-electric Ecostruxure Geo Scada Expert 2019
Schneider-electric Ecostruxure Geo Scada Expert 2020
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »