cbcvebase.

Measuresoft Scadapro vulnerabilities

5 known vulnerabilities affecting measuresoft/scadapro.

Total CVEs
5
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL4MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2011-3497P2CRITICALCVSS 10.0PoC≤ 4.0.0v2.1+43 more2011-09-16
CVE-2011-3497 [CRITICAL] CWE-200 CVE-2011-3497: service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary D service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary DLL functions via the XF function, possibly related to an insecure exposed method.
nvd
CVE-2011-3496P2CRITICALCVSS 10.0PoC≤ 4.0.0v2.1+43 more2011-09-16
CVE-2011-3496 [CRITICAL] CWE-20 CVE-2011-3496: service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary c service.exe in Measuresoft ScadaPro 4.0.0 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) BF, (2) OF, or (3) EF command.
nvd
CVE-2011-3490P2CRITICALCVSS 10.0PoC≤ 4.0.0v2.1+43 more2011-09-16
CVE-2011-3490 [CRITICAL] CWE-119 CVE-2011-3490: Multiple stack-based buffer overflows in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow Multiple stack-based buffer overflows in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long command to port 11234, as demonstrated with the TF command.
nvd
CVE-2011-3495P2CRITICALCVSS 10.0PoC≤ 4.0.0v2.1+43 more2011-09-16
CVE-2011-3495 [CRITICAL] CWE-22 CVE-2011-3495: Multiple directory traversal vulnerabilities in service.exe in Measuresoft ScadaPro 4.0.0 and earlie Multiple directory traversal vulnerabilities in service.exe in Measuresoft ScadaPro 4.0.0 and earlier allow remote attackers to read, modify, or delete arbitrary files via the (1) RF, (2) wF, (3) UF, or (4) NF command.
nvd
CVE-2024-3746P4MEDIUMCVSS 5.5v6.9.0.02024-04-30
CVE-2024-3746 [MEDIUM] CWE-284 CVE-2024-3746: The entire parent directory - C:\ScadaPro and its sub-directories and files are configured by defau The entire parent directory - C:\ScadaPro and its sub-directories and files are configured by default to allow user, including unprivileged users, to write or overwrite files.
nvd
Measuresoft Scadapro vulnerabilities | cvebase