Skip to main content

Cogent Datahub

12 CVEs product

Monthly

CVE-2016-2288 HIGH POC This Week

Cogent DataHub before 7.3.10 allows local users to gain privileges by leveraging the user or guest role to modify a file. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Cogent Datahub
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.3%
CVE-2014-2354 MEDIUM This Month

Cogent DataHub before 7.3.5 does not use a salt during password hashing, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force attack. Rated medium severity (CVSS 6.0). No vendor patch available.

Information Disclosure Cogent Datahub
NVD
CVSS 2.0
6.0
EPSS
0.1%
CVE-2014-2353 HIGH This Week

Cross-site scripting (XSS) vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

XSS Cogent Datahub
NVD
CVSS 2.0
7.1
EPSS
0.5%
CVE-2014-2352 HIGH This Week

The directory specifier can include designators that can be used to traverse the directory path. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Cogent Datahub
NVD
CVSS 2.0
7.8
EPSS
0.4%
CVE-2014-3789 HIGH POC PATCH THREAT Act Now

GetPermissions.asp in Cogent Real-Time Systems Cogent DataHub before 7.3.5 allows remote attackers to execute arbitrary commands via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 71.0%.

RCE Code Injection Cogent Datahub
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
71.0%
Threat
5.1
CVE-2014-3788 HIGH PATCH This Week

Heap-based buffer overflow in the Web Server in Cogent Real-Time Systems Cogent DataHub before 7.3.5 allows remote attackers to execute arbitrary code via a negative value in the Content-Length field. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

RCE Buffer Overflow Cogent Datahub
NVD
CVSS 2.0
7.5
EPSS
3.2%
CVE-2013-0683 HIGH This Week

The DataSim and DataPid demonstration clients in Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Microsoft Cogent Datahub Opc Datahub Cascade Datahub +1
NVD
CVSS 2.0
7.1
EPSS
0.3%
CVE-2013-0682 HIGH This Week

Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend before 7.3.0 do not properly handle exceptions, which. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Microsoft RCE Cogent Datahub +3
NVD
CVSS 2.0
7.5
EPSS
1.6%
CVE-2013-0681 MEDIUM This Month

Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend before 7.3.0 allow remote attackers to cause a denial. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Microsoft Cogent Datahub Opc Datahub Cascade Datahub +1
NVD
CVSS 2.0
5.0
EPSS
0.6%
CVE-2013-0680 HIGH POC THREAT Act Now

Stack-based buffer overflow in the web server in Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 51.7%.

Buffer Overflow Denial Of Service Microsoft RCE Cogent Datahub +3
NVD
CVSS 2.0
7.5
EPSS
51.7%
Threat
4.6
CVE-2012-0310 MEDIUM This Month

CRLF injection vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier allows remote attackers to inject arbitrary HTTP headers and. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Code Injection RCE Cascade Datahub Cogent Datahub Opc Datahub
NVD
CVSS 2.0
5.8
EPSS
1.1%
CVE-2012-0309 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier allows remote attackers to inject arbitrary web. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Cascade Datahub Cogent Datahub Opc Datahub
NVD
CVSS 2.0
4.3
EPSS
0.5%
EPSS 0% CVSS 7.8
HIGH POC This Week

Cogent DataHub before 7.3.10 allows local users to gain privileges by leveraging the user or guest role to modify a file. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Cogent Datahub
NVD Exploit-DB
EPSS 0% CVSS 6.0
MEDIUM This Month

Cogent DataHub before 7.3.5 does not use a salt during password hashing, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force attack. Rated medium severity (CVSS 6.0). No vendor patch available.

Information Disclosure Cogent Datahub
NVD
EPSS 1% CVSS 7.1
HIGH This Week

Cross-site scripting (XSS) vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

XSS Cogent Datahub
NVD
EPSS 0% CVSS 7.8
HIGH This Week

The directory specifier can include designators that can be used to traverse the directory path. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Cogent Datahub
NVD
EPSS 71% 5.1 CVSS 7.5
HIGH POC PATCH THREAT Act Now

GetPermissions.asp in Cogent Real-Time Systems Cogent DataHub before 7.3.5 allows remote attackers to execute arbitrary commands via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 71.0%.

RCE Code Injection Cogent Datahub
NVD Exploit-DB
EPSS 3% CVSS 7.5
HIGH PATCH This Week

Heap-based buffer overflow in the Web Server in Cogent Real-Time Systems Cogent DataHub before 7.3.5 allows remote attackers to execute arbitrary code via a negative value in the Content-Length field. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

RCE Buffer Overflow Cogent Datahub
NVD
EPSS 0% CVSS 7.1
HIGH This Week

The DataSim and DataPid demonstration clients in Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Microsoft Cogent Datahub +3
NVD
EPSS 2% CVSS 7.5
HIGH This Week

Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend before 7.3.0 do not properly handle exceptions, which. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Microsoft +5
NVD
EPSS 1% CVSS 5.0
MEDIUM This Month

Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend before 7.3.0 allow remote attackers to cause a denial. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Microsoft Cogent Datahub +3
NVD
EPSS 52% 4.6 CVSS 7.5
HIGH POC THREAT Act Now

Stack-based buffer overflow in the web server in Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 51.7%.

Buffer Overflow Denial Of Service Microsoft +5
NVD
EPSS 1% CVSS 5.8
MEDIUM This Month

CRLF injection vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier allows remote attackers to inject arbitrary HTTP headers and. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Code Injection RCE Cascade Datahub +2
NVD
EPSS 1% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier allows remote attackers to inject arbitrary web. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Cascade Datahub Cogent Datahub +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy