CVE-2012-2560
published 2012-07-05CVE-2012-2560: Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001.
PriorityP431medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
2.58%
83.3th percentile
Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wellintech | kingview | <= 6.53 | — |
| wellintech | kingview | — | — |
| wellintech | kingview | — | — |
| wellintech | kingview | — | — |
| wellintech | kingview | — | — |
| wellintech | kingview | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7fxx-mvv2-63wh: Directory traversal vulnerability in WellinTech KingView 6
ghsa_unreviewed·2022-05-17
CVE-2012-2560 [MEDIUM] CWE-22 GHSA-7fxx-mvv2-63wh: Directory traversal vulnerability in WellinTech KingView 6
Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001.
CISA ICS
WellinTech KingView Multiple Vulnerabilities
cisa_ics·2014-09-02
WellinTech KingView Multiple Vulnerabilities
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
WellinTech KingView Multiple Vulnerabilities
Last RevisedSeptember 02, 2014
Alert CodeICSA-12-185-01
## Overview
Independent researchers Carlos Mario Penagos Hollman and Dillon Beresford identified multiple vulnerabilities in WellinTech’s KingView and a single vulnerability in WellinTech’s KingHistorian application. These vulnerabilities are exploitable remotely. WellinTech has created a patch and the researchers have validated that the patch resolves these vulnerabilities in the KingView and KingHistorian applications.
## Affected Products
The following products and versions
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2012-07-05
Published