Vulnerabilities > Hexagon
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-14 | CVE-2021-32051 | SQL Injection vulnerability in Hexagon Intergraph G!Nius Hexagon G!nius Auskunftsportal before 5.0.0.0 allows SQL injection via the GiPWorkflow/Service/DownloadPublicFile id parameter. | 5.0 |
| 2014-01-19 | CVE-2013-3483 | Buffer Errors vulnerability in Hexagon Erdas ER Viewer 11.04/13.0.1.1298/13.00.0001 Stack-based buffer overflow in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ERS file. | 9.3 |
| 2014-01-19 | CVE-2013-3482 | Buffer Errors vulnerability in Hexagon Erdas ER Viewer 11.04/13.0.1.1298/13.00.0001 Stack-based buffer overflow in the rf_report_error function in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long string in an ERS file. | 9.3 |
| 2013-05-05 | CVE-2013-0726 | Buffer Errors vulnerability in Hexagon Erdas ER Viewer 11.04 Stack-based buffer overflow in the ERM_convert_to_correct_webpath function in ermapper_u.dll in ERDAS ER Viewer before 13.00.0001 allows remote attackers to execute arbitrary code via a crafted pathname in an ERS file. | 9.3 |
| 2013-04-25 | CVE-2013-0728 | Buffer Errors vulnerability in Hexagon Erdas Apollo Ecwp 13.00.0000 Multiple stack-based buffer overflows in NCSAddOn.dll in the ERDAS APOLLO ECWP plugin before 13.00.0001 for Internet Explorer, Firefox, and Chrome allow remote attackers to execute arbitrary code via a long property value. | 10.0 |