CRITICAL🇵🇱 Wersja polska

CVE-2018-15362

CVSS 9.1v3.0pub. 2018-12-07upd. 2024-11-21

XXE in GE Proficy Cimplicity GDS versions 9.0 R2, 9.5, 10.0

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
  • Ge Cimplicity

    APP
    Ge
    10.09.0_r29.5
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
XXE
CWE
References

Related vulnerabilities

CVE-2023-4487HIGH7.8ten sam produkt

GE CIMPLICITY 2023 is by a process control vulnerability, which could allow a local attacker to insert malici...

CVE-2022-3092HIGH7.8ten sam produkt

GE CIMPICITY versions 2022 and prior is vulnerable to an out-of-bounds write, which could allow an attac...

CVE-2022-3084HIGH7.8ten sam produkt

GE CIMPICITY versions 2022 and prior is vulnerable when data from a faulting address controls code flow starti...

CVE-2022-2952HIGH7.8ten sam produkt

GE CIMPICITY versions 2022 and prior is vulnerable when data from a faulting address controls code flow star...

CVE-2022-2948HIGH7.8ten sam produkt

GE CIMPICITY versions 2022 and prior is vulnerable to a heap-based buffer overflow, which could allow an att...