Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
scada web server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-12694
A Directory Traversal issue exists in SpiderControl SCADA Web Server. An attacker may be able to use a simple GET request to perform a directory traversal into system files.
Spidercontrol Scada Web Server -
10
CVSSv2
CVE-2015-1001
Multiple stack-based buffer overflows in IniNet embeddedWebServer (aka eWebServer) prior to 2.02 allow remote malicious users to execute arbitrary code via a long field in an HTTP request.
Ininet Solutions Scada Web Server -
6.4
CVSSv2
CVE-2015-1002
IniNet embeddedWebServer (aka eWebServer) prior to 2.02 mishandles URL encoding, which allows remote malicious users to write to or delete files via a crafted string.
Ininet Solutions Scada Web Server -
5
CVSSv2
CVE-2015-1003
Directory traversal vulnerability in IniNet embeddedWebServer (aka eWebServer) prior to 2.02 allows remote malicious users to read arbitrary files via a crafted pathname.
Ininet Solutions Scada Web Server -
2.1
CVSSv2
CVE-2015-1005
IniNet embeddedWebServer (aka eWebServer) prior to 2.02 for Windows CE uses cleartext for password storage, which allows context-dependent malicious users to obtain sensitive information via unspecified vectors.
Ininet Solutions Scada Web Server -
7.2
CVSSv2
CVE-2017-12728
An Improper Privilege Management issue exists in SpiderControl SCADA Web Server Version 2.02.0007 and prior. Authenticated, non-administrative local users are able to alter service executables with escalated privileges, which could allow an malicious user to execute arbitrary cod...
Spidercontrol Scada Webserver
6.8
CVSSv2
CVE-2021-43937
Elcomplus SmartPTT SCADA Server web application does not, or cannot, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.
Smartptt Scada Server 1.4
7.8
CVSSv2
CVE-2012-3011
Directory traversal vulnerability in the web server in Fultek WinTr Scada 4.0.5 and previous versions allows remote malicious users to read arbitrary files via a crafted request.
Fultek Wintr Scada
Fultek Wintr Scada 2.5
Fultek Wintr Scada 2.0.0
10
CVSSv2
CVE-2015-0984
Directory traversal vulnerability in the FTP server on Honeywell Excel Web XL1000C50 52 I/O, XL1000C100 104 I/O, XL1000C500 300 I/O, XL1000C1000 600 I/O, XL1000C50U 52 I/O UUKL, XL1000C100U 104 I/O UUKL, XL1000C500U 300 I/O UUKL, and XL1000C1000U 600 I/O UUKL controllers prior to...
Honeywell Excel Web Xl 1000c50 52 I\\/o
Honeywell Excel Web Xl 1000c1000 600 I\\/o Uukl
Honeywell Excel Web Xl 1000c500 300 I\\/o
Honeywell Excel Web Xl 1000c1000 600 I\\/o
Honeywell Excel Web Xl 1000c50u 52 I\\/o Uukl
Honeywell Excel Web Xl 1000c100u 104 I\\/o Uukl
Honeywell Excel Web Xl 1000c100 104 I\\/o
Honeywell Excel Web Xl 1000c500 300 I\\/o Uukl
2.1
CVSSv2
CVE-2020-28219
A CWE-522: Insufficiently Protected Credentials vulnerability exists in EcoStruxure Geo SCADA Expert 2019 (Original release and Monthly Updates to September 2020, from 81.7268.1 to 81.7578.1) and EcoStruxure Geo SCADA Expert 2020 (Original release and Monthly Updates to September...
Schneider-electric Ecostruxure Geo Scada Expert 2019
Schneider-electric Ecostruxure Geo Scada Expert 2020
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »