Vulnerability in Wellintech Kingalarm\&event
CVE-2013-2826
WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 perform authentication on the KAEClientManager console rather than on the server, which allows remote attackers to bypass intended access restricti…
EPSS: 0.003 (50.9th percentile) — read the EPSS interpretation.
Affected products
- Wellintech Kingalarm\&event
- Wellintech Kinggraphic
- Wellintech Kingscada
- N/a — versions n/a
Weakness classification (CWE)
References
- ics-cert@hq.dhs.gov (US Government Resource, Patch, x_refsource_MISC)