Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wellintech vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-43663
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a buffer overflow. An attacker can send a malicious packet to trigger this vulnerability.
Wellintech Kinghistorian 35.01.00.05
7.5
CVSSv3
CVE-2022-45124
An information disclosure vulnerability exists in the User authentication functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can sniff network traffic to leverage this vulnerabil...
Wellintech Kinghistorian 35.01.00.05
7.5
CVSSv3
CVE-2018-20410
WellinTech KingSCADA prior to 3.7.0.0.1 contains a stack-based buffer overflow. The vulnerability is triggered when sending a specially crafted packet to the AlarmServer (AEserver.exe) service listening on TCP port 12401.
Wellintech Kingscada
NA
CVE-2014-0787
Stack-based buffer overflow in WellinTech KingSCADA prior to 3.1.2.13 allows remote malicious users to execute arbitrary code via a crafted packet.
Wellintech Kingscada 3.1
Wellintech Kingscada
1 EDB exploit
NA
CVE-2013-2826
WellinTech KingSCADA prior to 3.1.2, KingAlarm&Event prior to 3.1, and KingGraphic prior to 3.1.2 perform authentication on the KAEClientManager console rather than on the server, which allows remote malicious users to bypass intended access restrictions and discover credenti...
Wellintech Kingalarm\\&event
Wellintech Kingscada
Wellintech Kinggraphic
NA
CVE-2013-2827
An unspecified ActiveX control in WellinTech KingSCADA prior to 3.1.2, KingAlarm&Event prior to 3.1, and KingGraphic prior to 3.1.2 allows remote malicious users to download arbitrary DLL code onto a client machine and execute this code via the ProjectURL property value.
Wellintech Kingscada
Wellintech Kingalarm\\&event
Wellintech Kinggraphic
1 EDB exploit
NA
CVE-2013-6127
The SUPERGRIDLib.SuperGrid ActiveX control in SuperGrid.ocx prior to 65.30.30000.10002 in WellinTech KingView prior to 6.53 does not properly restrict ReplaceDBFile method calls, which allows remote malicious users to create or overwrite arbitrary files, and subsequently execute ...
Wellintech Kingview
Wellintech Kingview 3.0
Wellintech Kingview 6.52
1 EDB exploit
NA
CVE-2013-6128
The KCHARTXYLib.KChartXY ActiveX control in KChartXY.ocx prior to 65.30.30000.10002 in WellinTech KingView prior to 6.53 does not properly restrict SaveToFile method calls, which allows remote malicious users to create or overwrite arbitrary files, and subsequently execute arbitr...
Wellintech Kingview
1 EDB exploit
NA
CVE-2012-4711
Buffer overflow in kingMess.exe 65.20.2003.10300 in WellinTech KingView 6.52, kingMess.exe 65.20.2003.10400 in KingView 6.53, and kingMess.exe 65.50.2011.18049 in KingView 6.55 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption...
Wellintech Kingview 6.52
Wellintech Kingview 6.53
Wellintech Kingview 6.55
1 EDB exploit
NA
CVE-2012-4899
WellinTech KingView 6.5.3 and previous versions uses a weak password-hashing algorithm, which makes it easier for local users to discover credentials by reading an unspecified file.
Wellintech Kingview
Wellintech Kingview 6.5.30.2010.18018
Wellintech Kingview 65.30.17249
Wellintech Kingview 6.52
Wellintech Kingview 3.0
Wellintech Kingview 65.30.2010.18018
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »