Vulnerabilities > Wellintech > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-20 | CVE-2022-45124 | Improper Authentication vulnerability in Wellintech Kinghistorian 35.01.00.05 An information disclosure vulnerability exists in the User authentication functionality of WellinTech KingHistorian 35.01.00.05. | 7.5 |
| 2014-01-15 | CVE-2013-2827 | Code Injection vulnerability in Wellintech Kingalarm&Event, Kinggraphic and Kingscada An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 allows remote attackers to download arbitrary DLL code onto a client machine and execute this code via the ProjectURL property value. | 7.5 |
| 2012-05-09 | CVE-2012-1977 | Credentials Management vulnerability in Wellintech Kingview 3.0 WellinTech KingSCADA 3.0 uses a cleartext base64 format for storage of passwords in user.db, which allows context-dependent attackers to obtain sensitive information by reading this file. | 7.1 |