HIGH🇵🇱 Wersja polska

CVE-2022-45124

CVSS 7.5v3.1pub. 2023-03-20upd. 2024-11-21

An information disclosure vulnerability exists in the User authentication functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can sniff network traffic to leverage this vulnerability.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Wellintech Kinghistorian

    APP
    Wellintech
    35.01.00.05
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth Bypass
CWE
References

Related vulnerabilities

CVE-2022-43663HIGH8.1ten sam produkt

An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHist...

CVE-2012-2559HIGH10.0ten sam produkt

WellinTech KingHistorian 3.0 allows remote attackers to execute arbitrary code or cause a denial of service (i...

CVE-2018-20410HIGH7.5ten sam vendor

WellinTech KingSCADA before 3.7.0.0.1 contains a stack-based buffer overflow. The vulnerability is triggered w...

CVE-2014-0787HIGH10.0ten sam vendor

Stack-based buffer overflow in WellinTech KingSCADA before 3.1.2.13 allows remote attackers to execute arbitra...

CVE-2013-2827HIGH7.5ten sam vendor

An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraph...