CVE-2014-0750

Public exploit
Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary code via a crafted HTTP request, aka ZDI-CAN-1622.
Max CVSS
7.5
EPSS Score
38.43%
Published
2014-01-25
Updated
2014-02-21

CVE-2013-0653

Public exploit
Directory traversal vulnerability in substitute.bcl in the WebView CimWeb subsystem in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to read arbitrary files via a crafted packet.
Max CVSS
4.3
EPSS Score
2.17%
Published
2013-01-27
Updated
2013-01-29

CVE-2012-6663

Public exploit
General Electric D20ME devices are not properly configured and reveal plaintext passwords.
Max CVSS
7.5
EPSS Score
1.27%
Published
2020-01-23
Updated
2020-01-28

CVE-2012-2516

Public exploit
An ActiveX control in KeyHelp.ocx in KeyWorks KeyHelp Module (aka the HTML Help component), as used in GE Intelligent Platforms Proficy Historian 3.1, 3.5, 4.0, and 4.5; Proficy HMI/SCADA iFIX 5.0 and 5.1; Proficy Pulse 1.0; Proficy Batch Execution 5.6; SI7 I/O Driver 7.20 through 7.42; and other products, allows remote attackers to execute arbitrary commands via crafted input, related to a "command injection vulnerability."
Max CVSS
9.3
EPSS Score
85.98%
Published
2012-07-05
Updated
2012-07-17

CVE-2012-2515

Public exploit
Multiple stack-based buffer overflows in the KeyHelp.KeyCtrl.1 ActiveX control in KeyHelp.ocx 1.2.312 in KeyWorks KeyHelp Module (aka the HTML Help component), as used in EMC Documentum ApplicationXtender Desktop 5.4; EMC Captiva Quickscan Pro 4.6 SP1; GE Intelligent Platforms Proficy Historian 3.1, 3.5, 4.0, and 4.5; GE Intelligent Platforms Proficy HMI/SCADA iFIX 5.0 and 5.1; GE Intelligent Platforms Proficy Pulse 1.0; GE Intelligent Platforms Proficy Batch Execution 5.6; GE Intelligent Platforms SI7 I/O Driver 7.20 through 7.42; and other products, allow remote attackers to execute arbitrary code via a long string in the second argument to the (1) JumpMappedID or (2) JumpURL method.
Max CVSS
9.3
EPSS Score
88.82%
Published
2012-07-05
Updated
2012-07-17
KEPServerEX does not properly validate certificates from clients which may allow unauthenticated users to connect.
Max CVSS
7.5
EPSS Score
0.06%
Published
2023-11-30
Updated
2023-12-06
KEPServerEX is vulnerable to a buffer overflow which may allow an attacker to crash the product being accessed or leak information.
Max CVSS
9.1
EPSS Score
0.07%
Published
2023-11-30
Updated
2023-12-06
GE CIMPLICITY 2023 is by a process control vulnerability, which could allow a local attacker to insert malicious configuration files in the expected web server execution path to escalate privileges and gain full control of the HMI software.
Max CVSS
7.8
EPSS Score
0.04%
Published
2023-09-05
Updated
2023-09-09
All versions of GE Digital CIMPLICITY that are not adhering to SDG guidance and accepting documents from untrusted sources are vulnerable to memory corruption issues due to insufficient input validation, including issues such as out-of-bounds reads and writes, use-after-free, stack-based buffer overflows, uninitialized pointers, and a heap-based buffer overflow. Successful exploitation could allow an attacker to execute arbitrary code.
Max CVSS
9.8
EPSS Score
0.13%
Published
2023-07-19
Updated
2023-07-28
ToolboxST prior to version 7.10 is affected by a deserialization vulnerability. An attacker with local access to an HMI or who has conducted a social engineering attack on an authorized operator could execute code in a Toolbox user's context through the deserialization of an untrusted configuration file. Two CVSS scores have been provided to capture the differences between the two aforementioned attack vectors.  Customers are advised to update to ToolboxST 7.10 which can be found in ControlST 7.10. If unable to update at this time customers should ensure they are following the guidance laid out in GE Gas Power's Secure Deployment Guide (GEH-6839). Customers should ensure they are not running ToolboxST as an Administrative user. 
Max CVSS
7.8
EPSS Score
0.06%
Published
2023-04-11
Updated
2023-04-20
General Electric MiCOM S1 Agile is vulnerable to an attacker achieving code execution by placing malicious DLL files in the directory of the application.
Max CVSS
7.3
EPSS Score
N/A
Published
2023-11-07
Updated
2023-11-14
The affected products are vulnerable to an improper validation of array index, which could allow an attacker to crash the server and remotely execute arbitrary code.
Max CVSS
9.8
EPSS Score
0.17%
Published
2023-02-23
Updated
2023-03-03
The affected products are vulnerable to an integer overflow or wraparound, which could allow an attacker to crash the server and remotely execute arbitrary code.
Max CVSS
9.8
EPSS Score
0.14%
Published
2023-02-23
Updated
2023-03-03
GE Digital Proficy iFIX 2022, GE Digital Proficy iFIX v6.1, and GE Digital Proficy iFIX v6.5 are vulnerable to code injection, which may allow an attacker to insert malicious configuration files in the expected web server execution path and gain full control of the HMI software.
Max CVSS
9.8
EPSS Score
0.14%
Published
2023-03-16
Updated
2023-03-23
Even if the authentication fails for local service authentication, the requested command could still execute regardless of authentication status.
Max CVSS
9.8
EPSS Score
0.19%
Published
2023-01-18
Updated
2023-01-25
An unauthorized user could alter or write files with full control over the path and content of the file.
Max CVSS
7.5
EPSS Score
0.05%
Published
2023-01-18
Updated
2023-01-25
An unauthorized user could possibly delete any file on the system.
Max CVSS
8.1
EPSS Score
0.07%
Published
2023-01-18
Updated
2023-07-07
An issue was discovered on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. The debug port accessible via TCP (a qconn service) lacks access control.
Max CVSS
9.8
EPSS Score
0.20%
Published
2023-01-17
Updated
2023-01-26
An issue was discovered in FC46-WebBridge on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. Direct access to the API is possible on TCP port 8888 via programs located in the cgi-bin folder without any authentication.
Max CVSS
9.8
EPSS Score
0.17%
Published
2023-01-17
Updated
2023-01-26
An issue was discovered in FC46-WebBridge on GE Grid Solutions MS3000 devices before 3.7.6.25p0_3.2.2.17p0_4.7p0. A vulnerability in the web server allows arbitrary files and configurations to be read via directory traversal over TCP port 8888.
Max CVSS
7.5
EPSS Score
0.14%
Published
2023-01-17
Updated
2023-01-30
An unauthorized user could be able to read any file on the system, potentially exposing sensitive information.
Max CVSS
7.5
EPSS Score
0.06%
Published
2023-01-18
Updated
2023-07-06
An unauthorized user with network access and the decryption key could decrypt sensitive data, such as usernames and passwords.
Max CVSS
7.5
EPSS Score
0.14%
Published
2023-01-18
Updated
2023-07-21
An HTTP response splitting vulnerability exists in the AM Gateway Challenge-Response dialog of WorkstationST (<v07.09.15) and could allow an attacker to compromise a victim's browser/session. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than if the attack were conducted on the software in isolation. WorkstationST v07.09.15 can be found in ControlST v07.09.07 SP8 and greater.
Max CVSS
6.1
EPSS Score
0.07%
Published
2022-08-25
Updated
2022-08-29
A reflected cross-site scripting (XSS) vulnerability exists in the iHistorian Data Display of WorkstationST (<v07.09.15) could allow an attacker to compromise a victim's browser. WorkstationST is only deployed in specific, controlled environments rendering attack complexity significantly higher than if the attack were conducted on the software in isolation. WorkstationST v07.09.15 can be found in ControlST v07.09.07 SP8 and greater.
Max CVSS
6.1
EPSS Score
0.07%
Published
2022-08-25
Updated
2022-08-29
Certain General Electric Renewable Energy products store cleartext credentials in flash memory. This affects iNET and iNET II before 8.3.0.
Max CVSS
4.6
EPSS Score
0.05%
Published
2022-12-26
Updated
2023-01-05
128 vulnerabilities found
1 2 3 4 5 6
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!