Skip to main content

Kinggraphic

2 CVEs product

Monthly

CVE-2013-2827 HIGH POC PATCH THREAT Act Now

An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 allows remote attackers to download arbitrary DLL code onto a client. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 60.5%.

Code Injection RCE Kingalarm Event Kinggraphic Kingscada
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
60.5%
Threat
4.8
CVE-2013-2826 MEDIUM PATCH This Month

WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 perform authentication on the KAEClientManager console rather than on the server, which allows remote. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity.

Privilege Escalation Kingalarm Event Kinggraphic Kingscada
NVD
CVSS 2.0
6.4
EPSS
0.3%
EPSS 61% 4.8 CVSS 7.5
HIGH POC PATCH THREAT Act Now

An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 allows remote attackers to download arbitrary DLL code onto a client. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 60.5%.

Code Injection RCE Kingalarm Event +2
NVD Exploit-DB
EPSS 0% CVSS 6.4
MEDIUM PATCH This Month

WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 perform authentication on the KAEClientManager console rather than on the server, which allows remote. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity.

Privilege Escalation Kingalarm Event Kinggraphic +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy