Skip to main content

Intelligent Platforms Proficy Hmi Scada Cimplicity

10 CVEs product

Monthly

CVE-2017-12732 MEDIUM This Month

A Stack-based Buffer Overflow issue was discovered in GE CIMPLICITY Versions 9.0 and prior. Rated medium severity (CVSS 6.8). No vendor patch available.

Buffer Overflow RCE Stack Overflow Intelligent Platforms Proficy Hmi Scada Cimplicity
NVD
CVSS 3.0
6.8
EPSS
0.2%
CVE-2014-2355 MEDIUM This Month

The (1) CimView and (2) CimEdit components in GE Proficy HMI/SCADA-CIMPLICITY 8.2 and earlier allow remote attackers to gain privileges via a crafted CIMPLICITY screen (aka .CIM) file. Rated medium severity (CVSS 6.6). No vendor patch available.

Buffer Overflow Intelligent Platforms Proficy Hmi Scada Cimplicity
NVD
CVSS 2.0
6.6
EPSS
0.1%
CVE-2014-0751 MEDIUM This Month

The CIMPLICITY Web-based access component, CimWebServer, does not check the location of shell files being loaded into the system. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Path Traversal RCE Intelligent Platforms Proficy Hmi 2Fscada Cimplicity Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Process Systems With Cimplicity
NVD
CVSS 2.0
6.8
EPSS
1.2%
CVE-2014-0750 HIGH POC THREAT Act Now

Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 37.6%.

Path Traversal RCE Intelligent Platforms Proficy Hmi 2Fscada Cimplicity Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Process Systems With Cimplicity
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
37.6%
Threat
4.1
CVE-2013-2823 MEDIUM This Month

The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent. Rated medium severity (CVSS 4.7). No vendor patch available.

Denial Of Service Catapult Dnp3 I O Driver Intelligent Platforms Proficy Dnp3 I O Driver Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Hmi Scada Ifix
NVD
CVSS 2.0
4.7
EPSS
0.1%
CVE-2013-2811 HIGH This Week

The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Catapult Dnp3 I O Driver Intelligent Platforms Proficy Dnp3 I O Driver Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Hmi Scada Ifix
NVD
CVSS 2.0
7.1
EPSS
1.3%
CVE-2013-2785 CRITICAL Act Now

Multiple buffer overflows in CimWebServer.exe in the WebView component in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.0 SIM 27, 8.1 before SIM 25, and 8.2 before SIM 19, and. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Process Systems With Cimplicity
NVD
CVSS 2.0
9.3
EPSS
5.3%
CVE-2013-0654 CRITICAL Act Now

CimWebServer in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary commands or cause a. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Process Systems With Cimplicity Intelligent Platforms Proficy Process Systems
NVD
CVSS 2.0
9.3
EPSS
0.7%
CVE-2013-0653 MEDIUM POC This Month

Directory traversal vulnerability in substitute.bcl in the WebView CimWeb subsystem in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Path Traversal Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Process Systems With Cimplicity Intelligent Platforms Proficy Process Systems
NVD
CVSS 2.0
4.3
EPSS
9.5%
CVE-2012-4689 MEDIUM This Month

Integer overflow in CimWebServer.exe in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to cause a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Process Systems With Cimplicity Intelligent Platforms Proficy Process Systems
NVD
CVSS 2.0
4.3
EPSS
0.5%
EPSS 0% CVSS 6.8
MEDIUM This Month

A Stack-based Buffer Overflow issue was discovered in GE CIMPLICITY Versions 9.0 and prior. Rated medium severity (CVSS 6.8). No vendor patch available.

Buffer Overflow RCE Stack Overflow +1
NVD
EPSS 0% CVSS 6.6
MEDIUM This Month

The (1) CimView and (2) CimEdit components in GE Proficy HMI/SCADA-CIMPLICITY 8.2 and earlier allow remote attackers to gain privileges via a crafted CIMPLICITY screen (aka .CIM) file. Rated medium severity (CVSS 6.6). No vendor patch available.

Buffer Overflow Intelligent Platforms Proficy Hmi Scada Cimplicity
NVD
EPSS 1% CVSS 6.8
MEDIUM This Month

The CIMPLICITY Web-based access component, CimWebServer, does not check the location of shell files being loaded into the system. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Path Traversal RCE Intelligent Platforms Proficy Hmi 2Fscada Cimplicity +2
NVD
EPSS 38% 4.1 CVSS 7.5
HIGH POC THREAT Act Now

Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 37.6%.

Path Traversal RCE Intelligent Platforms Proficy Hmi 2Fscada Cimplicity +2
NVD Exploit-DB
EPSS 0% CVSS 4.7
MEDIUM This Month

The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent. Rated medium severity (CVSS 4.7). No vendor patch available.

Denial Of Service Catapult Dnp3 I O Driver Intelligent Platforms Proficy Dnp3 I O Driver +2
NVD
EPSS 1% CVSS 7.1
HIGH This Week

The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Catapult Dnp3 I O Driver Intelligent Platforms Proficy Dnp3 I O Driver +2
NVD
EPSS 5% CVSS 9.3
CRITICAL Act Now

Multiple buffer overflows in CimWebServer.exe in the WebView component in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.0 SIM 27, 8.1 before SIM 25, and 8.2 before SIM 19, and. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Intelligent Platforms Proficy Hmi Scada Cimplicity +1
NVD
EPSS 1% CVSS 9.3
CRITICAL Act Now

CimWebServer in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary commands or cause a. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Process Systems With Cimplicity +1
NVD
EPSS 10% CVSS 4.3
MEDIUM POC This Month

Directory traversal vulnerability in substitute.bcl in the WebView CimWeb subsystem in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Path Traversal Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Process Systems With Cimplicity +1
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Integer overflow in CimWebServer.exe in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to cause a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Intelligent Platforms Proficy Hmi Scada Cimplicity Intelligent Platforms Proficy Process Systems With Cimplicity +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy