cbcvebase.
CVE-2016-4523
published 2016-06-09

CVE-2016-4523: The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to cause a denial of service (out-of-bounds read…

PriorityP275high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2022-05-06
Exploited in the wild
EPSS
31.39%
98.1th percentile
The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via unspecified vectors.

Affected

1 ranges
VendorProductVersion rangeFixed in
trihedralvtscada>= 8.0.05 < 11.2.0211.2.02

Detection & IOCsextracted from sources · hover to see the quote

port9201/TCP
  • Monitor for anomalous or malformed requests to the VTScada WAP interface on Port 9201/TCP, which is the attack surface for this out-of-bounds read DoS vulnerability.
  • An attacker with low skill can exploit this remotely with no authentication required (CVSS: AV:N/AC:L/PR:N/UI:N), so any unexpected crash or out-of-bounds read on the WAP interface process should be treated as a potential exploitation attempt.
  • Alert on unexpected application crashes of the VTScada server process via the WAP interface, particularly those requiring manual relaunch, as this is the described impact of successful exploitation.
  • ·The vulnerable WAP interface is a legacy feature used by only a small fraction of VTScada deployments; confirm whether Port 9201/TCP is exposed before prioritizing detection efforts.
  • ·Affected versions span VTScada 8.x through 11.x before 11.2.02; versions at or above 11.2.02 are patched.

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vulncheck7.5HIGH
cisa7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.