Measuresoft Scadapro vulnerabilities
5 known vulnerabilities affecting measuresoft/scadapro.
Total CVEs
5
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL4MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2011-3497P2CRITICALCVSS 10.0PoC≤ 4.0.0v2.1+43 more2011-09-16
CVE-2011-3497 [CRITICAL] CWE-200 CVE-2011-3497: service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary D
service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary DLL functions via the XF function, possibly related to an insecure exposed method.
nvd
CVE-2011-3496P2CRITICALCVSS 10.0PoC≤ 4.0.0v2.1+43 more2011-09-16
CVE-2011-3496 [CRITICAL] CWE-20 CVE-2011-3496: service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary c
service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) BF, (2) OF, or (3) EF command.
nvd
CVE-2011-3490P2CRITICALCVSS 10.0PoC≤ 4.0.0v2.1+43 more2011-09-16
CVE-2011-3490 [CRITICAL] CWE-119 CVE-2011-3490: Multiple stack-based buffer overflows in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow
Multiple stack-based buffer overflows in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long command to port 11234, as demonstrated with the TF command.
nvd
CVE-2011-3495P2CRITICALCVSS 10.0PoC≤ 4.0.0v2.1+43 more2011-09-16
CVE-2011-3495 [CRITICAL] CWE-22 CVE-2011-3495: Multiple directory traversal vulnerabilities in service.exe in Measuresoft ScadaPro 4.0.0 and earlie
Multiple directory traversal vulnerabilities in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to read, modify, or delete arbitrary files via the (1) RF, (2) wF, (3) UF, or (4) NF command.
nvd
CVE-2024-3746P4MEDIUMCVSS 5.5v6.9.0.02024-04-30
CVE-2024-3746 [MEDIUM] CWE-284 CVE-2024-3746: The entire parent directory - C:\ScadaPro and its sub-directories and files are configured by defau
The entire parent directory - C:\ScadaPro and its sub-directories and
files are configured by default to allow user, including unprivileged
users, to write or overwrite files.
nvd