WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 perform authentication on the KAEClientManager console rather than on the server, which allows remote attackers to bypass intended access restrictions and discover credentials via a crafted packet to TCP port 8130.
AV:N/AC:L/Au:N/C:P/I:P/A:NWellintech Kingalarm\&event
APPWellintech≤ 2.0.2Wellintech Kinggraphic
APPWellintech≤ 3.1Wellintech Kingscada
APPWellintech≤ 3.1
Related vulnerabilities
WellinTech KingSCADA before 3.7.0.0.1 contains a stack-based buffer overflow. The vulnerability is triggered w...
Stack-based buffer overflow in WellinTech KingSCADA before 3.1.2.13 allows remote attackers to execute arbitra...
An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraph...
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHist...
An information disclosure vulnerability exists in the User authentication functionality of WellinTech KingHist...