CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12732
https://notcve.org/view.php?id=CVE-2017-12732
A Stack-based Buffer Overflow issue was discovered in GE CIMPLICITY Versions 9.0 and prior. A function reads a packet to indicate the next packet length. The next packet length is not verified, allowing a buffer overwrite that could lead to an arbitrary remote code execution. Se ha descubierto un problema de desbordamiento de búfer basado en pila en GE CIMPLICITY en versiones 1.6.30.144 y anteriores. Un función lee un paquete para indicar la longitud del siguiente paquete. • http://www.securityfocus.com/bid/101174 https://ics-cert.us-cert.gov/advisories/ICSA-17-278-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-121: Stack-based Buffer Overflow •
CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 0CVE-2014-2355
https://notcve.org/view.php?id=CVE-2014-2355
The (1) CimView and (2) CimEdit components in GE Proficy HMI/SCADA-CIMPLICITY 8.2 and earlier allow remote attackers to gain privileges via a crafted CIMPLICITY screen (aka .CIM) file. Los componentes (1) CimView y (2) CimEdit en GE Proficy HMI/SCADA-CIMPLICITY 8.2 y anteriores permiten a atacantes remotos ganar privilegios a través de un fichero de pantalla CIMPLICITY manipulado (también conocido como .CIM). • https://ics-cert.us-cert.gov/advisories/ICSA-14-289-02 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 31%CPEs: 7EXPL: 0CVE-2014-0751 – GE Proficy CIMPLICITY CimWebServer File Upload Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-0751
Directory traversal vulnerability in CimWebServer.exe (aka the WebView component) in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary code via a crafted message to TCP port 10212, aka ZDI-CAN-1623. Vulnerabilidad de salto de directorio en CimWebServer.exe (también conocido como el componente WebView) en GE Intelligent Platforms Proficy HMI / SCADA - CIMPLICITY anterior a 8.2 SIM 24 y Proficy Process con CIMPLICITY, permite a atacantes remotos ejecutar código arbitrario a través de un mensaje manipulado a puerto TCP 10212 , también conocido como ZDI-CAN-1623. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE Proficy CIMPLICITY. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CimWebServer component. • http://ics-cert.us-cert.gov/advisories/ICSA-14-023-01 http://support.ge-ip.com/support/index?page=kbchannel&id=KB15940 http://www.securityfocus.com/bid/65117 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 38%CPEs: 7EXPL: 1CVE-2014-0750 – GE Proficy CIMPLICITY gefebt.exe File Upload Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-0750
Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary code via a crafted HTTP request, aka ZDI-CAN-1622. Vulnerabilidad de recorrido de directorios en gefebt.exe en los componentes WebView CimWeb de GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY hasta 8.2 SIM 24, y Proficy Process Systems with CIMPLICITY, permite a atacantes remotos ejecutar código de forma arbitraria a través de una petición HTTP manipulada, tambien conocido como ZDI-CAN-1622. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE Proficy CIMPLICITY. Authentication is not required to exploit this vulnerability. The specific flaw exists within the gefebt.exe component. • https://www.exploit-db.com/exploits/31987 http://ics-cert.us-cert.gov/advisories/ICSA-14-023-01 http://support.ge-ip.com/support/index?page=kbchannel&id=KB15939 http://www.securityfocus.com/bid/65124 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.1EPSS: 0%CPEs: 19EXPL: 0CVE-2013-2811
https://notcve.org/view.php?id=CVE-2013-2811
The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the (2) GE Intelligent Platforms Proficy DNP3 I/O driver before 7.20k, as used in DNPDrv.exe (aka the DNP master station server) in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY and iFIX, allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet. El driver (1) Catapult DNP3 I/O anterior a la versión 7.2.0.60 y (2) el driver GE Intelligent Platforms Proficy DNP3 I/O anterior a 7.20k, tal y como se usa en DNPDrv.exe (también conocido como servidor de estación maestro DNP) en GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY e iFIX, permite a atacantes remotos provocar una denegación de servicio (bucle infinito) a través de paquetes DNP3 TCP manipulados. • http://ics-cert.us-cert.gov/advisories/ICSA-13-297-01 http://ics-cert.us-cert.gov/advisories/ICSA-13-297-02 http://support.ge-ip.com/support/index?page=kbchannel&id=S:KB15805 http://support.ge-ip.com/support/resources/sites/GE_FANUC_SUPPORT/content/live/KB/15000/KB15805/en_US/GEIP13-04%20Security%20Advisory%20-%20Proficy%20HMI%20SCADA%20DNP3%20Driver%20from%20Catapult%20Software.pdf • CWE-20: Improper Input Validation •