Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
scada vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2017-9661
An Uncontrolled Search Path Element issue exists in SIMPlight SCADA Software version 4.3.0.27 and prior. The uncontrolled search path element vulnerability has been identified, which may allow an malicious user to place a malicious DLL file within the search path resulting in exe...
Simplight Scada
6.8
CVSSv2
CVE-2021-41579
LCDS LAquis SCADA up to and including 4.3.1.1085 is vulnerable to a control bypass and path traversal. If an attacker can get a victim to load a malicious els project file and use the play feature, then the attacker can bypass a consent popup and write arbitrary files to OS locat...
Laquisscada Scada
6.8
CVSSv2
CVE-2020-25188
An attacker who convinces a valid user to open a specially crafted project file to exploit could execute code under the privileges of the application due to an out-of-bounds read vulnerability on the LAquis SCADA (Versions before 4.3.1.870).
Laquisscada Scada
7.5
CVSSv2
CVE-2014-0751
Directory traversal vulnerability in CimWebServer.exe (aka the WebView component) in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY prior to 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote malicious users to execute arbitrary code via a crafted mes...
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 8.0
Ge Intelligent Platforms Proficy Process Systems With Cimplicity -
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 8.1
Ge Intelligent Platforms Proficy Hmi%2fscada Cimplicity
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 4.01
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 8.2
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 7.5
1 Article
7.5
CVSSv2
CVE-2014-0750
Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY up to and including 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote malicious users to execute arbitrary code via a c...
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 8.0
Ge Intelligent Platforms Proficy Process Systems With Cimplicity -
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 8.1
Ge Intelligent Platforms Proficy Hmi%2fscada Cimplicity
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 4.01
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 8.2
Ge Intelligent Platforms Proficy Hmi/scada Cimplicity 7.5
1 EDB exploit
7.8
CVSSv2
CVE-2013-2824
Schneider Electric StruxureWare SCADA Expert Vijeo Citect 7.40, Vijeo Citect 7.20 up to and including 7.30SP1, CitectSCADA 7.20 up to and including 7.30SP1, StruxureWare PowerSCADA Expert 7.30 up to and including 7.30SR1, and PowerLogic SCADA 7.20 up to and including 7.20SR1 do n...
Schneider-electric Powerlogic Scada 7.20
Schneider-electric Struxureware Scada Expert Vijeo Citect 7.20
Schneider-electric Struxureware Scada Expert Vijeo Citect 7.30
Schneider-electric Struxureware Powerscada Expert 7.30
Schneider-electric Citectscada 7.20
Schneider-electric Struxureware Scada Expert Vijeo Citect 7.40
Schneider-electric Citectscada 7.30
5
CVSSv2
CVE-2018-5443
A SQL Injection issue exists in Advantech WebAccess/SCADA versions prior to V8.2_20170817. WebAccess/SCADA does not properly sanitize its inputs for SQL commands.
Advantech Webaccess/scada
5
CVSSv2
CVE-2018-5445
A Path Traversal issue exists in Advantech WebAccess/SCADA versions prior to V8.2_20170817. An attacker has read access to files within the directory structure of the target device.
Advantech Webaccess/scada
4.6
CVSSv2
CVE-2018-5463
A structured exception handler overflow vulnerability in Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA 4.1.0.3391 and previous versions may allow code execution.
Lcds Laquis Scada
4.3
CVSSv2
CVE-2019-10994
Processing a specially crafted project file in LAquis SCADA 4.3.1.71 may trigger an out-of-bounds read, which may allow an malicious user to obtain sensitive information. The attacker must have local access to the system. A CVSS v3 base score of 2.5 has been calculated; the CVSS ...
Laquisscada Scada 4.3.1.71
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »