exploitDog

CVE-2015-0981

Опубликовано: 14 мар. 2015

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to bypass authentication and read or write to arbitrary database fields via unspecified vectors.

Ссылки

https://ics-cert.us-cert.gov/advisories/ICSA-15-069-03
Third Party Advisory
US Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-15-069-03
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:scadaengine:bacnet_opc_server:*:*:*:*:*:*:*:*

Версия до 2.1.359.22 (включая)

EPSS

Процентиль: 64%

0.00466

Низкий

7.5 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-hcm2-p528-xx7v

github

больше 3 лет назад

The SOAP web interface in SCADA Engine BACnet OPC Server before 2.1.371.24 allows remote attackers to bypass authentication and read or write to arbitrary database fields via unspecified vectors.

EPSS

Процентиль: 64%

0.00466

Низкий

7.5 High

CVSS2

Дефекты

CWE-264