VYPR

SCADA

by Webace

CVEs (3)

  • CVE-2019-10993CriJun 28, 2019
    risk 0.65cvss 9.8epss 0.11

    In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulnerabilities may allow a remote attacker to execute arbitrary code.

  • CVE-2019-10985CriJun 28, 2019
    risk 0.59cvss 9.1epss 0.03

    In WebAccess/SCADA, Versions 8.3.5 and prior, a path traversal vulnerability is caused by a lack of proper validation of a user-supplied path prior to use in file operations. An attacker can leverage this vulnerability to delete files while posing as an administrator.

  • CVE-2019-10987HigJun 28, 2019
    risk 0.58cvss 8.8epss 0.06

    In WebAccess/SCADA Versions 8.3.5 and prior, multiple out-of-bounds write vulnerabilities are caused by a lack of proper validation of the length of user-supplied data. Exploitation of these vulnerabilities may allow remote code execution.