Vulnerabilities > Scadaengine
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-03-14 | CVE-2015-0981 | Permissions, Privileges, and Access Controls vulnerability in Scadaengine Bacnet OPC Server The SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to bypass authentication and read or write to arbitrary database fields via unspecified vectors. | 7.5 |
2015-03-14 | CVE-2015-0980 | Improper Input Validation vulnerability in Scadaengine Bacnet OPC Server Format string vulnerability in BACnOPCServer.exe in the SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to execute arbitrary code via format string specifiers in a request. | 9.0 |
2015-03-14 | CVE-2015-0979 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Scadaengine Bacnet OPC Server Heap-based buffer overflow in the SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to execute arbitrary code via a crafted packet. | 9.0 |
2011-02-16 | CVE-2010-4740 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Scadaengine Bacnet OPC Client Stack-based buffer overflow in WTclient.dll in SCADA Engine BACnet OPC Client before 1.0.25 allows user-assisted remote attackers to execute arbitrary code via a crafted .csv file, related to a status log message. | 9.3 |