Vendor
Measuresoft
Products
3
CVEs
6
Across products
183
Status
Private
Products
3- 181 CVEs
- 1 CVE
- 1 CVE
Recent CVEs
6| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2011-3497 | 0.09 | — | 0.72 | Sep 16, 2011 | service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary DLL functions via the XF function, possibly related to an insecure exposed method. | ||
| CVE-2011-3490 | 0.06 | — | 0.41 | Sep 16, 2011 | Multiple stack-based buffer overflows in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long command to port 11234, as demonstrated with the TF command. | ||
| CVE-2011-3496 | 0.04 | — | 0.13 | Sep 16, 2011 | service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) BF, (2) OF, or (3) EF command. | ||
| CVE-2011-3495 | 0.03 | — | 0.06 | Sep 16, 2011 | Multiple directory traversal vulnerabilities in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to read, modify, or delete arbitrary files via the (1) RF, (2) wF, (3) UF, or (4) NF command. | ||
| CVE-2024-3746 | 0.00 | — | 0.00 | Apr 30, 2024 | The entire parent directory - C:\ScadaPro and its sub-directories and files are configured by default to allow user, including unprivileged users, to write or overwrite files. | ||
| CVE-2012-1824 | 0.00 | — | 0.00 | May 25, 2012 | Untrusted search path vulnerability in Measuresoft ScadaPro Client before 4.0.0 and ScadaPro Server before 4.0.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory. |