CyberSec.Space Logo
Back to CVE Browser

CVE-2016-4523

Known Exploited (CISA KEV)HIGH
7.5
CVSS Severity Score
EPSS Score52.6460%
EPSS Percentile94.78th
PublishedJun 9, 2016
Last ModifiedApr 22, 2026

Vulnerability Description

The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Trihedral

Vtscada

>= 8.0.05 and < 11.2.02

References & Advisories

πŸ”— http://www.securityfocus.com/bid/91077
πŸ”— http://www.zerodayinitiative.com/advisories/ZDI-16-405
πŸ”— https://ics-cert.us-cert.gov/advisories/ICSA-16-159-01
πŸ”— http://www.securityfocus.com/bid/91077
πŸ”— http://www.zerodayinitiative.com/advisories/ZDI-16-405
πŸ”— https://ics-cert.us-cert.gov/advisories/ICSA-16-159-01
πŸ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4523

Related Vulnerabilities

CVE-2016-45329.1

Directory traversal vulnerability in the WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows ...

CVE-2016-45109.1

The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to bypass authentica...

CVE-2014-91927.8

Integer overflow in Trihedral Engineering VTScada (formerly VTS) 6.5 through 9.x before 9.1.20, 10.x before 10.2.22, and 11.x befo...

CVE-2017-140297.8

An Uncontrolled Search Path Element issue was discovered in Trihedral VTScada 11.3.03 and prior. The program will execute speciall...