Trihedral Vtscada
9 CVEs affecting Trihedral Vtscada. Latest disclosed: 2022-11-02. Critical: 2, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-4532 | Critical | 9.1 | 2016-06-09 | Directory traversal vulnerability in the WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to read arbi… |
CVE-2016-4510 | Critical | 9.1 | 2016-06-09 | The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to bypass authentication and read arbitrary files… |
CVE-2017-14031 | High | 7.8 | 2017-11-06 | An Improper Access Control issue was discovered in Trihedral VTScada 11.3.03 and prior. A local, non-administrator user has privileges to read and write to the… |
CVE-2017-14029 | High | 7.8 | 2017-11-06 | An Uncontrolled Search Path Element issue was discovered in Trihedral VTScada 11.3.03 and prior. The program will execute specially crafted malicious dll files… |
CVE-2022-3181 | High | 7.5 | 2022-11-02 | An Improper Input Validation vulnerability exists in Trihedral VTScada version 12.0.38 and prior. A specifically malformed HTTP request could cause the affecte… |
CVE-2017-6045 | High | 7.5 | 2017-06-21 | An Information Exposure issue was discovered in Trihedral VTScada Versions prior to 11.2.26. Some files are exposed within the web server application to unauth… |
CVE-2017-6043 | High | 7.5 | 2017-06-21 | A Resource Consumption issue was discovered in Trihedral VTScada Versions prior to 11.2.26. The client does not properly validate the input or limit the amount… |
CVE-2017-6053 | Medium | 6.1 | 2017-06-21 | A Cross-Site Scripting issue was discovered in Trihedral VTScada Versions prior to 11.2.26. A cross-site scripting vulnerability may allow JavaScript code supp… |
CVE-2014-9192 | | 2014-12-11 | Integer overflow in Trihedral Engineering VTScada (formerly VTS) 6.5 through 9.x before 9.1.20, 10.x before 10.2.22, and 11.x before 11.1.07 allows remote atta… |