VYPR
Vendor

Certec

Products
2
CVEs
6
Across products
6
Status
Private

Products

2

Recent CVEs

6
  • CVE-2017-6031HigMay 6, 2017
    risk 0.57cvss 8.8epss 0.03

    A Header Injection issue was discovered in Certec EDV GmbH atvise scada prior to Version 3.0. An "improper neutralization of HTTP headers for scripting syntax" issue has been identified, which may allow remote code execution.

  • CVE-2017-6029MedMay 6, 2017
    risk 0.35cvss 5.4epss 0.01

    A Cross-Site Scripting issue was discovered in Certec EDV GmbH atvise scada prior to Version 3.0. This may allow remote code execution.

  • CVE-2011-4881Apr 13, 2012
    risk 0.04cvss epss 0.08

    The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly check return values from functions, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted HTTP request.

  • CVE-2011-4883Apr 13, 2012
    risk 0.03cvss epss 0.03

    The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly validate values in HTTP requests, which allows remote attackers to cause a denial of service (resource consumption) via a crafted request.

  • CVE-2011-4882Apr 13, 2012
    risk 0.03cvss epss 0.03

    The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to cause a denial of service (application exit) via an unspecified command in an HTTP request.

  • CVE-2011-4880Apr 13, 2012
    risk 0.03cvss epss 0.06

    Directory traversal vulnerability in the web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to read arbitrary files via a crafted HTTP request.