Vulnerabilities > GE > Cimplicity > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-04-15 CVE-2020-6992 Improper Privilege Management vulnerability in GE Cimplicity
A local privilege escalation vulnerability has been identified in the GE Digital CIMPLICITY HMI/SCADA product v10.0 and prior.
local
low complexity
ge CWE-269
6.7
2017-02-13 CVE-2016-9360 Insufficiently Protected Credentials vulnerability in GE Cimplicity
An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy HMI/SCADA CIMPLICITY Version 9.0 and prior versions, and Proficy Historian Version 6.0 and prior versions.
local
high complexity
ge CWE-522
6.7
2016-07-15 CVE-2016-5787 Exposure of Resource to Wrong Sphere vulnerability in GE Cimplicity
General Electric (GE) Digital Proficy HMI/SCADA - CIMPLICITY before 8.2 SIM 27 mishandles service DACLs, which allows local users to modify a service configuration via unspecified vectors.
local
low complexity
ge CWE-668
6.3