exploitDog

CVE-2014-2355

Опубликовано: 17 янв. 2015

Источник: nvd

CVSS2: 6.6

CVSS2: 6.9

EPSS Низкий

Описание

The (1) CimView and (2) CimEdit components in GE Proficy HMI/SCADA-CIMPLICITY 8.2 and earlier allow remote attackers to gain privileges via a crafted CIMPLICITY screen (aka .CIM) file.

Ссылки

https://www.cisa.gov/news-events/ics-advisories/icsa-14-289-02
https://ics-cert.us-cert.gov/advisories/ICSA-14-289-02
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ge:intelligent_platforms_proficy_hmi\/scada_cimplicity:*:*:*:*:*:*:*:*

Версия до 8.2 (включая)

EPSS

Процентиль: 30%

0.00114

Низкий

6.6 Medium

CVSS2

6.9 Medium

CVSS2

Дефекты

CWE-119

CWE-119

Связанные уязвимости

GHSA-rhgq-mf3j-hc7r

github

больше 3 лет назад

The (1) CimView and (2) CimEdit components in GE Proficy HMI/SCADA-CIMPLICITY 8.2 and earlier allow remote attackers to gain privileges via a crafted CIMPLICITY screen (aka .CIM) file.

EPSS

Процентиль: 30%

0.00114

Низкий

6.6 Medium

CVSS2

6.9 Medium

CVSS2

Дефекты

CWE-119

CWE-119