Skip to main content

Citectscada

4 CVEs product

Monthly

CVE-2019-10981 HIGH PATCH This Week

In Vijeo Citect 7.30 and 7.40, and CitectSCADA 7.30 and 7.40, a vulnerability has been identified that may allow an authenticated local user access to Citect user credentials. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Insufficiently Protected Credentials vulnerability could allow attackers to obtain user credentials due to weak protection mechanisms.

Information Disclosure Citectscada Scada Expert Vijeo Citect
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2013-2824 HIGH PATCH This Week

Schneider Electric StruxureWare SCADA Expert Vijeo Citect 7.40, Vijeo Citect 7.20 through 7.30SP1, CitectSCADA 7.20 through 7.30SP1, StruxureWare PowerSCADA Expert 7.30 through 7.30SR1, and. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Schneider Electric Citectscada Powerlogic Scada Struxureware Powerscada Expert +1
NVD
CVSS 2.0
7.8
EPSS
0.2%
CVE-2013-2796 MEDIUM PATCH This Month

Schneider Electric Vijeo Citect 7.20 and earlier, CitectSCADA 7.20 and earlier, and PowerLogic SCADA 7.20 and earlier allow remote attackers to read arbitrary files, send HTTP requests to intranet. Rated medium severity (CVSS 6.9).

Privilege Escalation Denial Of Service Schneider Electric XXE Citectscada +2
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2013-3075 CRITICAL POC THREAT Emergency

Multiple buffer overflows in ActUWzd.dll 1.0.0.1 in Mitsubishi MX Component 3, as distributed in Citect CitectFacilities 7.10 and CitectScada 7.10r1, allow remote attackers to execute arbitrary code. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 29.7%.

Buffer Overflow RCE Mitsubishi Mx Component Citectfacilities Citectscada
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
29.7%
Threat
4.4
EPSS 0% CVSS 7.8
HIGH PATCH This Week

In Vijeo Citect 7.30 and 7.40, and CitectSCADA 7.30 and 7.40, a vulnerability has been identified that may allow an authenticated local user access to Citect user credentials. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Insufficiently Protected Credentials vulnerability could allow attackers to obtain user credentials due to weak protection mechanisms.

Information Disclosure Citectscada Scada Expert Vijeo Citect
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Schneider Electric StruxureWare SCADA Expert Vijeo Citect 7.40, Vijeo Citect 7.20 through 7.30SP1, CitectSCADA 7.20 through 7.30SP1, StruxureWare PowerSCADA Expert 7.30 through 7.30SR1, and. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Schneider Electric Citectscada +3
NVD
EPSS 0% CVSS 6.9
MEDIUM PATCH This Month

Schneider Electric Vijeo Citect 7.20 and earlier, CitectSCADA 7.20 and earlier, and PowerLogic SCADA 7.20 and earlier allow remote attackers to read arbitrary files, send HTTP requests to intranet. Rated medium severity (CVSS 6.9).

Privilege Escalation Denial Of Service Schneider Electric +4
NVD
EPSS 30% 4.4 CVSS 10.0
CRITICAL POC THREAT Emergency

Multiple buffer overflows in ActUWzd.dll 1.0.0.1 in Mitsubishi MX Component 3, as distributed in Citect CitectFacilities 7.10 and CitectScada 7.10r1, allow remote attackers to execute arbitrary code. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 29.7%.

Buffer Overflow RCE Mitsubishi Mx Component +2
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy