返回 CVE 瀏覽器

CVE-2016-4523

Known Exploited (CISA KEV)HIGH

7.5

CVSS Severity Score

EPSS Score52.6460%

EPSS Percentile94.78th

Published2016年6月9日

Last Modified2026年4月22日

Vulnerability Description

The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via unspecified vectors.

Affected Platforms (CPE)

📦

Trihedral

Vtscada

>= 8.0.05 and < 11.2.02

References & Advisories

🔗 http://www.securityfocus.com/bid/91077

🔗 http://www.zerodayinitiative.com/advisories/ZDI-16-405

🔗 https://ics-cert.us-cert.gov/advisories/ICSA-16-159-01

🔗 http://www.securityfocus.com/bid/91077

🔗 http://www.zerodayinitiative.com/advisories/ZDI-16-405

🔗 https://ics-cert.us-cert.gov/advisories/ICSA-16-159-01

🔗 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4523

相關漏洞威脅

CVE-2016-45329.1

Directory traversal vulnerability in the WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows ...

CVE-2016-45109.1

The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to bypass authentica...

CVE-2014-91927.8

Integer overflow in Trihedral Engineering VTScada (formerly VTS) 6.5 through 9.x before 9.1.20, 10.x before 10.2.22, and 11.x befo...

CVE-2017-140297.8

An Uncontrolled Search Path Element issue was discovered in Trihedral VTScada 11.3.03 and prior. The program will execute speciall...