Sdg Technologies Pnpscada vulnerabilities
2 known vulnerabilities affecting sdg_technologies/pnpscada.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2023-1934P2HIGHCVSS 7.5PoCv2.*2023-05-12
CVE-2023-1934 [HIGH] CWE-89 CVE-2023-1934: The PnPSCADA system, a product of SDG Technologies CC, is afflicted by a critical unauthenticated er
The PnPSCADA system, a product of SDG Technologies CC, is afflicted by a critical unauthenticated error-based PostgreSQL Injection vulnerability. Present within the hitlogcsv.jsp endpoint, this security flaw permits unauthenticated attackers to engage with the underlying database seamlessly and passively. Consequently, malicious actors could gain access
nvd
CVE-2024-2882P3CRITICALCVSS 9.3fixed in 42024-06-27
CVE-2024-2882 [CRITICAL] CWE-862 CVE-2024-2882: SDG Technologies PnPSCADA allows a remote attacker to attach various entities without requiring syst
SDG Technologies PnPSCADA allows a remote attacker to attach various entities without requiring system authentication. This breach could potentially lead to unauthorized control, data manipulation, and access to sensitive information within the SCADA system.
nvd