Vulnerabilities > Trihedral > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-06-21 CVE-2017-6053 Cross-site Scripting vulnerability in Trihedral Vtscada
A Cross-Site Scripting issue was discovered in Trihedral VTScada Versions prior to 11.2.26.
network
trihedral CWE-79
4.3
4.3
2017-06-21 CVE-2017-6045 Information Exposure vulnerability in Trihedral Vtscada
An Information Exposure issue was discovered in Trihedral VTScada Versions prior to 11.2.26.
network
low complexity
trihedral CWE-200
5.0
5.0
2016-06-09 CVE-2016-4532 Path Traversal vulnerability in Trihedral Vtscada
Directory traversal vulnerability in the WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to read arbitrary files via a crafted pathname.
network
low complexity
trihedral CWE-22
6.4
6.4
2016-06-09 CVE-2016-4510 Improper Authentication vulnerability in Trihedral Vtscada
The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to bypass authentication and read arbitrary files via unspecified vectors.
network
low complexity
trihedral CWE-287
6.4
6.4
2014-12-11 CVE-2014-9192 Numeric Errors vulnerability in Trihedral Vtscada
Integer overflow in Trihedral Engineering VTScada (formerly VTS) 6.5 through 9.x before 9.1.20, 10.x before 10.2.22, and 11.x before 11.1.07 allows remote attackers to cause a denial of service (server crash) via a crafted request, which triggers a large memory allocation.
network
low complexity
trihedral CWE-189
5.0
5.0