Published: 26/02/2022 Updated: 08/08/2023

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

CVSS v3 Base Score: 9.1 | Impact Score: 5.2 | Exploitability Score: 3.9

VMScore: 570

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P

On ICL ScadaFlex II SCADA Controller SC-1 and SC-2 1.03.07 devices, unauthenticated remote attackers can overwrite, delete, or create files.

Vulnerable Product	Search on Vulmon	Subscribe to Product
iclinks scadaflex_ii_firmware 1.01.01
iclinks scadaflex_ii_firmware 1.01.14
iclinks scadaflex_ii_firmware 1.02.01
iclinks scadaflex_ii_firmware 1.02.15
iclinks scadaflex_ii_firmware 1.02.20
iclinks scadaflex_ii_firmware 1.03.07
iclinks weblib 1.13
iclinks weblib 1.14
iclinks weblib 1.16
iclinks weblib 1.22
iclinks weblib 1.24

ICL ScadaFlex II SCADA Controllers SC-1/SC-2 version 10307 is vulnerable to unauthenticated file write/overwrite and deletion This allows an attacker to execute critical file CRUD operations on the device that can potentially allow system access and impact availability ...

CWE-306 http://files.iclinks.com/datasheets/Scadaflex%20II/Scadaflex%20SC-1%20&%20SC-2_A1_compressed.pdf https://packetstormsecurity.com/files/166103/ICL-ScadaFlex-II-SCADA-Controllers-SC-1-SC-2-1.03.07-Remote-File-Modification.html https://nvd.nist.gov https://packetstormsecurity.com/files/166103/ICL-ScadaFlex-II-SCADA-Controllers-SC-1-SC-2-1.03.07-Remote-File-Modification.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-25359

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect