Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
interactive graphical scada system vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-24317
A CWE-862: Missing Authorization vulnerability exists that could cause information exposure when an attacker sends a specific message. Affected Product: Interactive Graphical SCADA System Data Server (V15.0.0.22020 and prior)
Schneider-electric Interactive Graphical Scada System Data Server
9.8
CVSSv3
CVE-2021-22802
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in remote code execution due to missing length check on user supplied data, when a constructed message is received on the network. Affected Product: Interactive Graphical SCADA System Dat...
Schneider-electric Interactive Graphical Scada System Data Collector
9.8
CVSSv3
CVE-2021-22803
A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could lead to remote code execution through a number of paths, when an attacker, writes arbitrary files to folders in context of the DC module, by sending constructed messages on the network. Aff...
Schneider-electric Interactive Graphical Scada System Data Collector
7.5
CVSSv3
CVE-2021-22804
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause disclosure of arbitrary files being read in the context of the user running IGSS, due to missing validation of user supplied data in network messages. Affected Product: Int...
Schneider-electric Interactive Graphical Scada System Data Collector
9.1
CVSSv3
CVE-2021-22805
A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of validation of network messages. Affected Product: Interactive Graphical SCADA System Data Collector (dc...
Schneider-electric Interactive Graphical Scada System Data Collector
9.1
CVSSv3
CVE-2021-22823
A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of validation of network messages. Affected Product: Interactive Graphical SCADA System Data Collector (dc...
Schneider-electric Interactive Graphical Scada System Data Collector
7.5
CVSSv3
CVE-2021-22824
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in denial of service, due to missing length check on user-supplied data from a constructed message received on the network. Affected Product: Interactive Graphical SCADA System Data Colle...
Schneider-electric Interactive Graphical Scada System Data Collector
NA
CVE-2011-1566
Directory traversal vulnerability in dc.exe 9.00.00.11059 and previous versions in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote malicious users to execute arbitrary programs via ..\ (dot dot backslash) sequences in opcodes (1) 0xa and (2) 0x17 to TCP por...
7t Igss
2 EDB exploits
NA
CVE-2011-4050
Buffer overflow in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) 9.0.0.11200 allows remote malicious users to cause a denial of service via a crafted packet to TCP port 12401.
7t Igss 9.0.0.11200
NA
CVE-2011-4053
Untrusted search path vulnerability in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) prior to 9.0.0.11291 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
7t Igss 9.0.0.11129
7t Igss 8
7t Igss 6
7t Igss 2.0
7t Igss 5.1
7t Igss 5.0
7t Igss 4.1
7t Igss 3.0
7t Igss 9
7t Igss 7
7t Igss
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »