Skip to main content

Scadapack 7X Remote Connect

4 CVEs product

Monthly

CVE-2020-7531 HIGH This Week

A CWE-284 Improper Access Control vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows an attacker to place executables in a specific folder and run code whenever. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Scadapack 7X Remote Connect
NVD
CVSS 3.1
7.8
EPSS
0.8%
CVE-2020-7530 HIGH This Week

A CWE-285 Improper Authorization vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows improper access to executable code folders. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Scadapack 7X Remote Connect
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2020-7529 MEDIUM This Month

A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Transversal') vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows an attacker to place. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Path Traversal Scadapack 7X Remote Connect
NVD
CVSS 3.1
5.5
EPSS
0.9%
CVE-2020-7528 HIGH This Week

A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which could allow arbitrary code execution when an attacker builds a custom .PRJ. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Deserialization Scadapack 7X Remote Connect
NVD
CVSS 3.1
7.8
EPSS
1.4%
EPSS 1% CVSS 7.8
HIGH This Week

A CWE-284 Improper Access Control vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows an attacker to place executables in a specific folder and run code whenever. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Scadapack 7X Remote Connect
NVD
EPSS 1% CVSS 8.8
HIGH This Week

A CWE-285 Improper Authorization vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows improper access to executable code folders. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Scadapack 7X Remote Connect
NVD
EPSS 1% CVSS 5.5
MEDIUM This Month

A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Transversal') vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows an attacker to place. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Path Traversal Scadapack 7X Remote Connect
NVD
EPSS 1% CVSS 7.8
HIGH This Week

A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which could allow arbitrary code execution when an attacker builds a custom .PRJ. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Deserialization Scadapack 7X Remote Connect
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy