Skip to main content

Kepware Server

2 CVEs product

Monthly

CVE-2023-0755 CRITICAL Act Now

The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Digital Industrial Gateway Server Kepware Server Kepware Serverex Thingworx Net Sdk +5
NVD
CVSS 3.1
9.8
EPSS
11.8%
CVE-2023-0754 CRITICAL Act Now

The affected products are vulnerable to an integer overflow or wraparound, which could allow an attacker to crash the server and remotely execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Integer Overflow RCE Digital Industrial Gateway Server Kepware Server Kepware Serverex +6
NVD
CVSS 3.1
9.8
EPSS
2.9%
EPSS 12% CVSS 9.8
CRITICAL Act Now

The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Digital Industrial Gateway Server Kepware Server +7
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

The affected products are vulnerable to an integer overflow or wraparound, which could allow an attacker to crash the server and remotely execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Integer Overflow RCE Digital Industrial Gateway Server +8
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy