VYPR
Unrated severityNVD Advisory· Published Aug 16, 2011· Updated Jun 16, 2026

CVE-2011-3143

CVE-2011-3143

Description

Use-after-free vulnerability in Control Microsystems ClearSCADA 2005, 2007, and 2009 before R2.3 and R1.4, as used in SCX before 67 R4.5 and 68 R3.9, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified long strings that trigger heap memory corruption.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • Aveva/Clearscada3 versions
    cpe:2.3:a:aveva:clearscada:2005:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:aveva:clearscada:2005:*:*:*:*:*:*:*
    • cpe:2.3:a:aveva:clearscada:2007:*:*:*:*:*:*:*
    • cpe:2.3:a:aveva:clearscada:2009:*:*:*:*:*:*:*
  • cpe:2.3:a:schneider-electric:scx_67:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:schneider-electric:scx_67:*:*:*:*:*:*:*:*range: <r4.5
    • cpe:2.3:a:schneider-electric:scx_68:*:*:*:*:*:*:*:*range: <r3.9
  • Range: before R2.3 and R1.4

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.