cbcvebase.
CVE-2016-4532
published 2016-06-09

CVE-2016-4532: Directory traversal vulnerability in the WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to read…

PriorityP264critical9.1CVSS 3.0
AVNACLPRNUINSUCHIHAN
EPSS
27.62%
97.8th percentile
Directory traversal vulnerability in the WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x before 11.2.02 allows remote attackers to read arbitrary files via a crafted pathname.

Affected

54 ranges· showing 25
VendorProductVersion rangeFixed in
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada
trihedralvtscada

Detection & IOCsextracted from sources · hover to see the quote

port9201/TCP
  • Monitor for path traversal patterns in HTTP requests targeting the VTScada WAP interface on port 9201/TCP — the vulnerability allows an attacker to replace the path in a request to retrieve any arbitrary file.
  • Inspect requests to the WAP interface (port 9201/TCP) for directory traversal sequences (e.g., '../') in the pathname, as the vulnerability is a directory traversal allowing remote attackers to read arbitrary files via a crafted pathname.
  • ·The WAP interface (port 9201/TCP) is a legacy feature used by only a small fraction of the VTScada installed base; exposure is limited to deployments where this interface is enabled.
  • ·Affected versions span VTScada versions after Version 8 and before Version 11.2.02; detections should be scoped to systems running these versions.

CVSS provenance

nvdv3.09.1CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:P/I:P/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.