Skip to main content

Kingview

11 CVEs product

Monthly

CVE-2018-7471 HIGH This Week

KingView 7.5SP1 has an integer overflow during stgopenstorage API read operations. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Integer Overflow Buffer Overflow Kingview
NVD
CVSS 3.0
7.8
EPSS
0.3%
CVE-2013-6128 MEDIUM POC PATCH This Month

The KCHARTXYLib.KChartXY ActiveX control in KChartXY.ocx before 65.30.30000.10002 in WellinTech KingView before 6.53 does not properly restrict SaveToFile method calls, which allows remote attackers. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. Public exploit code available.

Privilege Escalation Path Traversal Kingview
NVD Exploit-DB
CVSS 2.0
5.8
EPSS
10.0%
CVE-2013-6127 MEDIUM POC This Month

The SUPERGRIDLib.SuperGrid ActiveX control in SuperGrid.ocx before 65.30.30000.10002 in WellinTech KingView before 6.53 does not properly restrict ReplaceDBFile method calls, which allows remote. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Path Traversal Kingview
NVD Exploit-DB
CVSS 2.0
5.8
EPSS
4.2%
CVE-2012-4711 CRITICAL POC THREAT Emergency

Buffer overflow in kingMess.exe 65.20.2003.10300 in WellinTech KingView 6.52, kingMess.exe 65.20.2003.10400 in KingView 6.53, and kingMess.exe 65.50.2011.18049 in KingView 6.55 allows remote. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 58.3%.

Buffer Overflow Denial Of Service RCE Kingview
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
58.3%
Threat
5.2
CVE-2012-4899 LOW PATCH Monitor

WellinTech KingView 6.5.3 and earlier uses a weak password-hashing algorithm, which makes it easier for local users to discover credentials by reading an unspecified file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity.

Information Disclosure Kingview
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2012-2560 MEDIUM PATCH This Month

Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Kingview
NVD
CVSS 2.0
5.0
EPSS
0.3%
CVE-2012-1832 CRITICAL PATCH Act Now

WellinTech KingView 6.53 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a crafted packet to (1) TCP or (2) UDP port 2001. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Denial Of Service RCE Kingview
NVD
CVSS 2.0
10.0
EPSS
1.4%
CVE-2012-1831 CRITICAL POC PATCH THREAT Act Now

Heap-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 18.6%.

Buffer Overflow RCE Kingview
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
18.6%
Threat
4.1
CVE-2012-1830 CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.1%.

Buffer Overflow RCE Kingview
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
12.1%
CVE-2012-1977 HIGH This Week

WellinTech KingSCADA 3.0 uses a cleartext base64 format for storage of passwords in user.db, which allows context-dependent attackers to obtain sensitive information by reading this file. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Kingview
NVD
CVSS 2.0
7.1
EPSS
0.9%
CVE-2012-1819 CRITICAL PATCH Act Now

Untrusted search path vulnerability in WellinTech KingView 6.53 allows local users to gain privileges via a Trojan horse DLL in the current working directory. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable.

Information Disclosure Kingview
NVD
CVSS 2.0
9.3
EPSS
0.5%
EPSS 0% CVSS 7.8
HIGH This Week

KingView 7.5SP1 has an integer overflow during stgopenstorage API read operations. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Integer Overflow Buffer Overflow Kingview
NVD
EPSS 10% CVSS 5.8
MEDIUM POC PATCH This Month

The KCHARTXYLib.KChartXY ActiveX control in KChartXY.ocx before 65.30.30000.10002 in WellinTech KingView before 6.53 does not properly restrict SaveToFile method calls, which allows remote attackers. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. Public exploit code available.

Privilege Escalation Path Traversal Kingview
NVD Exploit-DB
EPSS 4% CVSS 5.8
MEDIUM POC This Month

The SUPERGRIDLib.SuperGrid ActiveX control in SuperGrid.ocx before 65.30.30000.10002 in WellinTech KingView before 6.53 does not properly restrict ReplaceDBFile method calls, which allows remote. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Path Traversal Kingview
NVD Exploit-DB
EPSS 58% 5.2 CVSS 10.0
CRITICAL POC THREAT Emergency

Buffer overflow in kingMess.exe 65.20.2003.10300 in WellinTech KingView 6.52, kingMess.exe 65.20.2003.10400 in KingView 6.53, and kingMess.exe 65.50.2011.18049 in KingView 6.55 allows remote. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 58.3%.

Buffer Overflow Denial Of Service RCE +1
NVD Exploit-DB
EPSS 0% CVSS 2.1
LOW PATCH Monitor

WellinTech KingView 6.5.3 and earlier uses a weak password-hashing algorithm, which makes it easier for local users to discover credentials by reading an unspecified file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity.

Information Disclosure Kingview
NVD
EPSS 0% CVSS 5.0
MEDIUM PATCH This Month

Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Kingview
NVD
EPSS 1% CVSS 10.0
CRITICAL PATCH Act Now

WellinTech KingView 6.53 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a crafted packet to (1) TCP or (2) UDP port 2001. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Denial Of Service RCE +1
NVD
EPSS 19% 4.1 CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Heap-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 18.6%.

Buffer Overflow RCE Kingview
NVD Exploit-DB
EPSS 12% CVSS 10.0
CRITICAL POC PATCH THREAT Act Now

Stack-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.1%.

Buffer Overflow RCE Kingview
NVD Exploit-DB
EPSS 1% CVSS 7.1
HIGH This Week

WellinTech KingSCADA 3.0 uses a cleartext base64 format for storage of passwords in user.db, which allows context-dependent attackers to obtain sensitive information by reading this file. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Kingview
NVD
EPSS 1% CVSS 9.3
CRITICAL PATCH Act Now

Untrusted search path vulnerability in WellinTech KingView 6.53 allows local users to gain privileges via a Trojan horse DLL in the current working directory. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable.

Information Disclosure Kingview
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy