Skip to main content

Ifix

3 CVEs product

Monthly

CVE-2023-0598 CRITICAL Act Now

GE Digital Proficy iFIX 2022, GE Digital Proficy iFIX v6.1, and GE Digital Proficy iFIX v6.5 are vulnerable to code injection, which may allow an attacker to insert malicious configuration files in. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Ifix
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2018-17925 MEDIUM This Month

Multiple instances of this vulnerability (Unsafe ActiveX Control Marked Safe For Scripting) have been identified in the third-party ActiveX object provided to GE iFIX versions 2.0 - 5.8 by Gigasoft. Rated medium severity (CVSS 4.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Ifix
NVD
CVSS 3.0
4.8
EPSS
0.3%
CVE-2016-9360 MEDIUM This Month

An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy HMI/SCADA CIMPLICITY Version 9.0 and prior versions, and Proficy Historian. Rated medium severity (CVSS 6.7). No vendor patch available.

Information Disclosure Cimplicity Historian Ifix
NVD
CVSS 3.1
6.7
EPSS
0.2%
EPSS 1% CVSS 9.8
CRITICAL Act Now

GE Digital Proficy iFIX 2022, GE Digital Proficy iFIX v6.1, and GE Digital Proficy iFIX v6.5 are vulnerable to code injection, which may allow an attacker to insert malicious configuration files in. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Ifix
NVD
EPSS 0% CVSS 4.8
MEDIUM This Month

Multiple instances of this vulnerability (Unsafe ActiveX Control Marked Safe For Scripting) have been identified in the third-party ActiveX object provided to GE iFIX versions 2.0 - 5.8 by Gigasoft. Rated medium severity (CVSS 4.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Ifix
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy HMI/SCADA CIMPLICITY Version 9.0 and prior versions, and Proficy Historian. Rated medium severity (CVSS 6.7). No vendor patch available.

Information Disclosure Cimplicity Historian +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy