HIGH🇬🇧 English

CVE-2018-20410

CVSS 7.5v3.0pub. 2018-12-24upd. 2024-11-21

WellinTech KingSCADA before 3.7.0.0.1 contains a stack-based buffer overflow. The vulnerability is triggered when sending a specially crafted packet to the AlarmServer (AEserver.exe) service listening on TCP port 12401.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Wellintech Kingscada

    APP
    Wellintech
    < 3.7.0.0.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Memory
CWE
Referencje

Powiązane podatności

CVE-2014-0787HIGH10.0ten sam produkt

Stack-based buffer overflow in WellinTech KingSCADA before 3.1.2.13 allows remote attackers to execute arbitra...

CVE-2013-2827HIGH7.5ten sam produkt

An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraph...

CVE-2013-2826MEDIUM6.4ten sam produkt

WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 perform authentica...

CVE-2022-43663HIGH8.1ten sam vendor

An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHist...

CVE-2022-45124HIGH7.5ten sam vendor

An information disclosure vulnerability exists in the User authentication functionality of WellinTech KingHist...